1 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 921.198819] RSP: 002b:00007f36e3657ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 921.200659] RAX: ffffffffffffffda RBX: 00007f36e612c970 RCX: 00007f36e6095a04 [ 921.202379] RDX: 0000000000000002 RSI: 00007f36e3658000 RDI: 00000000ffffff9c [ 921.204126] RBP: 00007f36e3658000 R08: 0000000000000000 R09: ffffffffffffffff [ 921.205828] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 921.207524] R13: 0000000000000004 R14: 0000000020000488 R15: 0000000000000003 [ 921.209249] CPU: 0 PID: 10351 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 921.210726] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 921.212507] Call Trace: [ 921.213071] dump_stack+0x107/0x167 [ 921.213848] should_fail.cold+0x5/0xa [ 921.214653] ? create_object.isra.0+0x3a/0xa30 [ 921.215623] should_failslab+0x5/0x20 [ 921.216440] kmem_cache_alloc+0x5b/0x310 [ 921.217298] create_object.isra.0+0x3a/0xa30 [ 921.218239] kmemleak_alloc_percpu+0xa0/0x100 [ 921.219221] pcpu_alloc+0x4e2/0x1240 [ 921.220014] ? io_tctx_exit_cb+0xf0/0xf0 [ 921.220874] percpu_ref_init+0x31/0x3d0 [ 921.221713] io_uring_setup+0x47a/0x2980 [ 921.222580] ? __mutex_unlock_slowpath+0xe1/0x600 [ 921.223600] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 921.224657] ? wait_for_completion_io+0x270/0x270 [ 921.225690] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 921.226799] ? syscall_enter_from_user_mode+0x1d/0x50 [ 921.227880] do_syscall_64+0x33/0x40 00:56:02 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x3000000, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:56:02 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000380)={0x3, 0x80, 0x6, 0xe0, 0x2, 0x0, 0x0, 0x0, 0x3, 0x4, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x6, 0x4, @perf_bp={&(0x7f0000000340), 0x1}, 0x0, 0x6, 0x1, 0x2, 0x9, 0x3, 0xffff, 0x0, 0x0, 0x0, 0x5}, 0xffffffffffffffff, 0xd, r0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000700)=""/222, 0xde}], 0x1}, 0x0) r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r4, 0x3, 0x0, 0x8000) syz_io_uring_setup(0x5621, &(0x7f0000000180)={0x0, 0x89b, 0x0, 0x1, 0x1fa, 0x0, r4}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000280)) mmap$IORING_OFF_CQ_RING(&(0x7f0000fef000/0x11000)=nil, 0x11000, 0x0, 0x30, r1, 0x8000000) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(0x0, r3, &(0x7f0000000080)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x40, 0x0, &(0x7f0000000000)="b3a7a244c956f1fe2eccf21d9a5857e202cd2e254aeabda3072fc8a09fd30c75893683a3c84446fa45f7799918714df3eafcf175b47cc0b6c342c17db0857cf4ba05b8c04e61595f2cad67a00590ee", 0x100, 0x0, 0x1}, 0x0) [ 921.228678] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 921.229946] RIP: 0033:0x7f707acaeb19 [ 921.230728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 921.234638] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 921.236280] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 921.237793] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 921.239299] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 921.240801] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 921.242299] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 921.253632] FAULT_INJECTION: forcing a failure. [ 921.253632] name failslab, interval 1, probability 0, space 0, times 0 [ 921.256175] CPU: 0 PID: 10343 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 921.257634] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 921.259382] Call Trace: [ 921.259936] dump_stack+0x107/0x167 [ 921.260700] should_fail.cold+0x5/0xa [ 921.261498] ? ___slab_alloc+0x155/0x700 [ 921.262352] ? create_object.isra.0+0x3a/0xa30 [ 921.263320] should_failslab+0x5/0x20 [ 921.264117] kmem_cache_alloc+0x5b/0x310 [ 921.264979] create_object.isra.0+0x3a/0xa30 [ 921.265899] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 921.266988] kmem_cache_alloc+0x159/0x310 [ 921.267887] ? mempool_free_pages+0x20/0x20 [ 921.268788] mempool_alloc+0x148/0x360 [ 921.269609] ? mempool_resize+0x7d0/0x7d0 [ 921.270473] ? lock_downgrade+0x6d0/0x6d0 00:56:03 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x4000000, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 921.271367] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 921.272602] bio_alloc_bioset+0x36e/0x600 [ 921.273481] ? bvec_alloc+0x2f0/0x2f0 [ 921.274289] ? iov_iter_npages+0x1fd/0xa70 [ 921.275205] iomap_dio_bio_actor+0x518/0xef0 [ 921.276145] iomap_dio_actor+0x36f/0x560 [ 921.276993] ? __x64_sys_sendfile64+0x1d1/0x210 [ 921.277969] ? do_syscall_64+0x33/0x40 [ 921.278797] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 921.279922] iomap_apply+0x289/0x810 [ 921.280709] ? iomap_dio_rw+0x90/0x90 [ 921.281523] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 921.282767] ? mark_held_locks+0x9e/0xe0 [ 921.283635] ? filemap_check_errors+0xa5/0x150 [ 921.284601] __iomap_dio_rw+0x6cd/0x1110 [ 921.285452] ? iomap_dio_rw+0x90/0x90 [ 921.286280] ? iomap_dio_bio_actor+0xef0/0xef0 [ 921.287264] ? ext4_orphan_add+0x253/0x9e0 [ 921.288150] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 921.289189] ? ext4_empty_dir+0xae0/0xae0 [ 921.290062] ? jbd2__journal_start+0xf3/0x7e0 [ 921.291023] iomap_dio_rw+0x31/0x90 [ 921.291801] ext4_file_write_iter+0xe0e/0x1530 [ 921.292774] ? ext4_file_read_iter+0x4c0/0x4c0 [ 921.293729] ? kasan_save_stack+0x32/0x40 [ 921.294598] ? kasan_save_stack+0x1b/0x40 [ 921.295489] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 921.296555] ? iter_file_splice_write+0x165/0xc90 [ 921.297563] ? direct_splice_actor+0x10f/0x170 [ 921.298519] ? splice_direct_to_actor+0x387/0x980 [ 921.299547] ? do_splice_direct+0x1c4/0x290 [ 921.300458] ? do_sendfile+0x553/0x11e0 [ 921.301291] ? __x64_sys_sendfile64+0x1d1/0x210 [ 921.302279] ? do_syscall_64+0x33/0x40 [ 921.303108] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 921.304230] do_iter_readv_writev+0x476/0x750 [ 921.305182] ? _cond_resched+0x10/0x30 [ 921.306000] ? new_sync_write+0x660/0x660 [ 921.306880] ? avc_policy_seqno+0x9/0x70 [ 921.307731] ? selinux_file_permission+0x92/0x520 [ 921.308742] ? security_file_permission+0xb1/0xe0 [ 921.309762] do_iter_write+0x191/0x700 [ 921.310589] ? trace_hardirqs_on+0x5b/0x180 [ 921.311517] vfs_iter_write+0x70/0xa0 [ 921.312318] iter_file_splice_write+0x726/0xc90 [ 921.313320] ? generic_splice_sendpage+0x140/0x140 [ 921.314371] ? security_file_permission+0xb1/0xe0 [ 921.315390] ? generic_splice_sendpage+0x140/0x140 [ 921.316429] direct_splice_actor+0x10f/0x170 [ 921.317437] splice_direct_to_actor+0x387/0x980 [ 921.318527] ? pipe_to_sendpage+0x380/0x380 [ 921.319453] ? do_splice_to+0x160/0x160 [ 921.320288] ? security_file_permission+0xb1/0xe0 [ 921.321315] do_splice_direct+0x1c4/0x290 [ 921.322191] ? splice_direct_to_actor+0x980/0x980 [ 921.323204] ? avc_policy_seqno+0x9/0x70 [ 921.324066] ? security_file_permission+0xb1/0xe0 [ 921.325093] do_sendfile+0x553/0x11e0 [ 921.325900] ? do_pwritev+0x270/0x270 [ 921.326707] ? wait_for_completion_io+0x270/0x270 [ 921.327731] ? rcu_read_lock_any_held+0x75/0xa0 [ 921.328709] ? vfs_write+0x354/0xb10 [ 921.329502] __x64_sys_sendfile64+0x1d1/0x210 [ 921.330439] ? __ia32_sys_sendfile+0x220/0x220 [ 921.331407] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 921.332506] ? syscall_enter_from_user_mode+0x1d/0x50 [ 921.333592] do_syscall_64+0x33/0x40 [ 921.334372] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 921.335460] RIP: 0033:0x7fe85904db19 [ 921.336243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 921.340100] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 921.341704] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 921.343215] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 921.344711] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 921.346209] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 921.347713] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 00:56:03 executing program 7: r0 = fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) wait4(r0, &(0x7f0000000080), 0x2, &(0x7f00000000c0)) [ 921.374239] loop5: detected capacity change from 0 to 41948160 00:56:03 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x5000000, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:56:03 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) (fail_nth: 28) 00:56:03 executing program 6: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000300)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') execveat(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=[&(0x7f0000000140)='system_u:object_r:sshd_exec_t:s0\x00'], &(0x7f0000000380)=[&(0x7f00000002c0)='security.selinux\x00'], 0x1500) r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x105142, 0x8) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x3, 0x0, 0x8000) write$P9_RREADLINK(r3, &(0x7f0000000400)=ANY=[@ANYRES16=r0], 0x10) r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r4, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r4, 0x3, 0x0, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xca1, 0xffff}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000680)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$addseals(r5, 0x409, 0x8) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000280), &(0x7f0000000340)='system_u:object_r:sshd_exec_t:s0\x00', 0x21, 0x2) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0) r7 = dup(r6) ioctl$FITRIM(r7, 0xc0185879, &(0x7f00000003c0)={0x0, 0x7ff, 0x5}) sendfile(r1, r2, 0x0, 0x100000001) [ 921.547257] FAULT_INJECTION: forcing a failure. [ 921.547257] name failslab, interval 1, probability 0, space 0, times 0 [ 921.550693] CPU: 1 PID: 10477 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 921.552330] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 921.554222] Call Trace: [ 921.554837] dump_stack+0x107/0x167 [ 921.555679] should_fail.cold+0x5/0xa [ 921.556564] ? __d_alloc+0x2a/0x990 [ 921.557379] should_failslab+0x5/0x20 [ 921.558264] kmem_cache_alloc+0x5b/0x310 [ 921.559205] __d_alloc+0x2a/0x990 [ 921.560009] ? mark_lock+0xf5/0x2df0 [ 921.560861] d_alloc+0x46/0x240 [ 921.561614] d_alloc_parallel+0xe9/0x1a30 [ 921.562551] ? __d_lookup+0x396/0x760 [ 921.563423] ? lock_downgrade+0x6d0/0x6d0 [ 921.564405] ? find_held_lock+0x2c/0x110 [ 921.565360] ? __d_lookup_rcu+0x6d0/0x6d0 [ 921.566306] ? __d_lookup+0x3bf/0x760 [ 921.567197] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 921.568421] lookup_open.isra.0+0x962/0x1270 [ 921.569426] ? vfs_tmpfile+0x350/0x350 [ 921.570355] ? __mnt_want_write+0x196/0x280 [ 921.571360] path_openat+0x972/0x2770 [ 921.572260] ? path_lookupat+0x860/0x860 [ 921.573181] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 921.574383] ? lock_acquire+0x197/0x470 [ 921.575317] ? find_held_lock+0x2c/0x110 [ 921.576256] do_filp_open+0x190/0x3e0 [ 921.577143] ? may_open_dev+0xf0/0xf0 [ 921.578019] ? do_raw_spin_lock+0x121/0x260 [ 921.579027] ? rwlock_bug.part.0+0x90/0x90 [ 921.579992] ? _raw_spin_unlock+0x1a/0x30 [ 921.580948] ? alloc_fd+0x2e7/0x670 [ 921.581792] do_sys_openat2+0x171/0x4d0 [ 921.582704] ? build_open_flags+0x6f0/0x6f0 [ 921.583711] ? rcu_read_lock_any_held+0x75/0xa0 [ 921.584784] __x64_sys_openat+0x13f/0x1f0 [ 921.585741] ? __ia32_sys_open+0x1c0/0x1c0 [ 921.586723] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 921.587921] ? syscall_enter_from_user_mode+0x1d/0x50 [ 921.589095] do_syscall_64+0x33/0x40 [ 921.589950] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 921.591118] RIP: 0033:0x7f36e6095a04 [ 921.591965] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 921.596184] RSP: 002b:00007f36e3657ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 921.597913] RAX: ffffffffffffffda RBX: 00007f36e612c970 RCX: 00007f36e6095a04 [ 921.599593] RDX: 0000000000000002 RSI: 00007f36e3658000 RDI: 00000000ffffff9c [ 921.601226] RBP: 00007f36e3658000 R08: 0000000000000000 R09: ffffffffffffffff [ 921.602851] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 921.604455] R13: 0000000000000004 R14: 0000000020000488 R15: 0000000000000003 00:56:03 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 10) 00:56:03 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x6000000, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 921.711567] FAULT_INJECTION: forcing a failure. [ 921.711567] name failslab, interval 1, probability 0, space 0, times 0 [ 921.714157] CPU: 1 PID: 10530 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 921.715839] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 921.717597] Call Trace: [ 921.718162] dump_stack+0x107/0x167 [ 921.718958] should_fail.cold+0x5/0xa [ 921.719768] ? percpu_ref_init+0xd8/0x3d0 [ 921.720645] should_failslab+0x5/0x20 [ 921.721451] kmem_cache_alloc_trace+0x55/0x320 [ 921.722423] ? io_tctx_exit_cb+0xf0/0xf0 [ 921.723293] percpu_ref_init+0xd8/0x3d0 [ 921.724145] io_uring_setup+0x47a/0x2980 [ 921.725009] ? __mutex_unlock_slowpath+0xe1/0x600 [ 921.726032] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 921.727116] ? wait_for_completion_io+0x270/0x270 [ 921.728167] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 921.729281] ? syscall_enter_from_user_mode+0x1d/0x50 [ 921.730381] do_syscall_64+0x33/0x40 [ 921.731182] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 921.732263] RIP: 0033:0x7f707acaeb19 [ 921.733050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 921.736948] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 921.738571] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 921.740099] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 921.741617] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 921.743142] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 921.744652] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:56:03 executing program 0: ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, 0x0) r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x90101, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) utimes(0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1, {0x9}}, './file0\x00'}) r3 = openat(r2, &(0x7f0000000200)='./file0\x00', 0x40800, 0x188) mount$cgroup(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f00000001c0)={[{@subsystem='freezer'}, {@clone_children}]}) r4 = openat(r3, &(0x7f0000000000)='./file0\x00', 0x400, 0x3c) execveat(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000800)=[&(0x7f0000000240)='cgroup\x00', &(0x7f0000000300)='cgroup\x00', &(0x7f0000000340)='/dev/snapshot\x00', &(0x7f0000000380)='/dev/snapshot\x00', &(0x7f00000003c0)=')+\'\x00', &(0x7f0000000400)='clone_children', &(0x7f0000000440)='freezer', &(0x7f0000000740)='freezer', &(0x7f0000000780)='\\\xa8\'\x00', &(0x7f00000007c0)='\x00'], &(0x7f00000008c0)=[&(0x7f0000000880)='clone_children'], 0x400) r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) pipe2(&(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f00000004c0)=ANY=[@ANYBLOB="010000200000b900df030000", @ANYRES64=r6, @ANYBLOB]) ioctl$VFAT_IOCTL_READDIR_SHORT(r5, 0x82307202, &(0x7f0000000500)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) fsmount(r0, 0x1, 0x71) fsmount(0xffffffffffffffff, 0x1, 0x1) stat(&(0x7f0000000180)='./file0\x00', &(0x7f0000001c00)) openat$null(0xffffffffffffff9c, &(0x7f0000000280), 0x940, 0x0) [ 921.790072] loop6: detected capacity change from 0 to 41948160 [ 921.885120] loop6: detected capacity change from 0 to 41948160 [ 922.074048] loop5: detected capacity change from 0 to 41948160 00:56:18 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 57) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:56:18 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x7000000, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:56:18 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) (fail_nth: 29) 00:56:18 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 11) 00:56:18 executing program 7: r0 = fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) dup(0xffffffffffffffff) syz_open_dev$loop(&(0x7f0000000080), 0x2, 0x109000) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ptrace$getregset(0x4204, r0, 0x6, &(0x7f0000000180)={&(0x7f00000000c0)=""/145, 0x91}) fallocate(r2, 0x3, 0x0, 0x8000) kcmp(0x0, r0, 0x3, r1, r2) [ 936.480225] FAULT_INJECTION: forcing a failure. [ 936.480225] name failslab, interval 1, probability 0, space 0, times 0 [ 936.482817] CPU: 1 PID: 10598 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 936.484289] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 936.486038] Call Trace: [ 936.486600] dump_stack+0x107/0x167 [ 936.487379] should_fail.cold+0x5/0xa [ 936.488180] ? create_object.isra.0+0x3a/0xa30 [ 936.489144] should_failslab+0x5/0x20 00:56:18 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f00000002c0), 0x7}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0xc, 0xffffffffffffffff, 0x8) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) getpgrp(0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000006780), 0x8000, 0x0) close_range(r0, r1, 0x0) fcntl$lock(0xffffffffffffffff, 0x5, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x102, 0x0, '\x00', [{}, {0x800, 0x0, 0x400000000000000}], ['\x00']}) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000001c0)={'ip6tnl0\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="3c00000001000000030015c1e10000030000000220000001dee8fc131fc92b570000000100008068fb93f20624d998bb2382fbef2e605d20efd13ad8020454fe726d5ec494d8000000000000b7382cb035aee7d07675"]}) sendmsg$nl_generic(r0, &(0x7f0000000400)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="d400000014000268e872002a36e58c2516000000309195bcedd4a355ffd0b57d36c80aa3cd5c00a209ab410588e2acf39f612a058aca019d424c1cfefa9bd84118e7b9a3dc7b648488e3b314280151f16e53c3b34d356001432e0e37dbfac2e264d49dde22ffb05d71782e4588a229646935c65a7de9a29480903c642a26553943488705f8f9389f0dc82f10989f62b3874701ee49da692b47f3a2374ddcf5407ac1d8d6ece93e8156a83bca75748906b35121f4bfbcd532464798ecfcbf0151eccc1703000000e09aefabad56510f51901f721fb776488673f91400"/230], 0xd4}, 0x1, 0x0, 0x0, 0x8010}, 0x0) recvmmsg$unix(r0, &(0x7f0000006600)=[{{&(0x7f0000000440)=@abs, 0x6e, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0x1000}], 0x1, &(0x7f0000000540)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x90}}, {{&(0x7f0000001740), 0x6e, &(0x7f0000001b40)=[{&(0x7f00000017c0)=""/127, 0x7f}, {&(0x7f0000001840)=""/173, 0xad}, {&(0x7f0000001900)=""/155, 0x9b}, {&(0x7f0000000600)=""/49, 0x31}, {&(0x7f0000001e00)=""/4096, 0x1000}, {&(0x7f00000019c0)=""/78, 0x4e}, {&(0x7f0000001a40)=""/180, 0xb4}, {&(0x7f0000001b00)=""/21, 0x15}], 0x8, &(0x7f0000001bc0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x120}}, {{&(0x7f0000001d00)=@abs, 0x6e, &(0x7f0000003280)=[{&(0x7f0000002e00)=""/175, 0xaf}, {&(0x7f0000002ec0)=""/163, 0xa3}, {&(0x7f0000002f80)=""/31, 0x1f}, {&(0x7f0000002fc0)=""/184, 0xb8}, {&(0x7f0000003080)=""/222, 0xde}, {&(0x7f0000003180)=""/53, 0x35}, {&(0x7f00000031c0)=""/129, 0x81}], 0x7, &(0x7f0000003300)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78}}, {{&(0x7f0000003380), 0x6e, &(0x7f0000003940)=[{&(0x7f0000003400)=""/55, 0x37}, {&(0x7f0000003440)=""/100, 0x64}, {&(0x7f00000034c0)=""/200, 0xc8}, {&(0x7f00000035c0)=""/214, 0xd6}, {&(0x7f00000036c0)=""/243, 0xf3}, {&(0x7f00000037c0)=""/184, 0xb8}, {&(0x7f0000003880)=""/177, 0xb1}], 0x7, &(0x7f00000039c0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}], 0xb8}}, {{&(0x7f0000003a80), 0x6e, &(0x7f0000004fc0)=[{&(0x7f0000003b00)=""/21, 0x15}, {&(0x7f0000003b40)=""/4096, 0x1000}, {&(0x7f0000004b40)=""/204, 0xcc}, {&(0x7f0000004c40)=""/232, 0xe8}, {&(0x7f0000004d40)=""/103, 0x67}, {&(0x7f0000004dc0)=""/86, 0x56}, {&(0x7f0000004e40)=""/40, 0x28}, {&(0x7f0000004e80)=""/18, 0x12}, {&(0x7f0000004ec0)=""/233, 0xe9}], 0x9, &(0x7f0000005080)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x30}}, {{&(0x7f00000050c0), 0x6e, &(0x7f0000006540)=[{&(0x7f0000005140)=""/130, 0x82}, {&(0x7f0000005200)=""/4096, 0x1000}, {&(0x7f0000006200)=""/174, 0xae}, {&(0x7f00000062c0)=""/55, 0x37}, {&(0x7f0000006300)=""/210, 0xd2}, {&(0x7f0000006400)=""/166, 0xa6}, {&(0x7f00000064c0)=""/74, 0x4a}], 0x7, &(0x7f00000065c0)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}], 0x6, 0x0, 0x0) r3 = dup(r0) perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x8, 0x1f, 0x6b, 0x6, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x800, 0x1, @perf_bp={&(0x7f0000000200), 0x1}, 0x2612, 0xdc, 0x9, 0x2, 0x3, 0x6b3, 0x5, 0x0, 0xf0000000, 0x0, 0x5}, r2, 0xffffffffffffffff, r3, 0x8) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x36, &(0x7f00000004c0)=@routing={0x1, 0x4, 0x1, 0x6, 0x0, [@loopback, @private0]}, 0x28) ioctl$TUNSETPERSIST(0xffffffffffffffff, 0x400454cb, 0x1) prlimit64(0x0, 0x3, &(0x7f0000000180)={0xfffffffffffffffb, 0x16b7}, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/clients\x00', 0x0, 0x0) unshare(0x48020200) 00:56:18 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x121042, 0xa3) socket$inet6_udplite(0xa, 0x2, 0x88) r2 = openat(r0, &(0x7f0000000280)='./file1\x00', 0x8001, 0x17b) sendfile(r1, r2, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xb, 0x1f012, r0, 0x0) [ 936.490261] kmem_cache_alloc+0x5b/0x310 [ 936.491256] create_object.isra.0+0x3a/0xa30 [ 936.492188] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 936.493268] kmem_cache_alloc+0x159/0x310 [ 936.494158] __d_alloc+0x2a/0x990 [ 936.494883] ? mark_lock+0xf5/0x2df0 [ 936.495675] d_alloc+0x46/0x240 [ 936.496370] d_alloc_parallel+0xe9/0x1a30 [ 936.497245] ? __d_lookup+0x396/0x760 [ 936.498038] ? lock_downgrade+0x6d0/0x6d0 00:56:18 executing program 5: epoll_create(0x1) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x4000fd64, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000005c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 936.498918] ? find_held_lock+0x2c/0x110 [ 936.499908] ? __d_lookup_rcu+0x6d0/0x6d0 [ 936.500785] ? __d_lookup+0x3bf/0x760 [ 936.501587] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 936.502685] lookup_open.isra.0+0x962/0x1270 [ 936.503633] ? vfs_tmpfile+0x350/0x350 [ 936.504477] ? __mnt_want_write+0x196/0x280 [ 936.505400] path_openat+0x972/0x2770 [ 936.506213] ? path_lookupat+0x860/0x860 [ 936.507084] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 936.508184] ? lock_acquire+0x197/0x470 [ 936.509016] ? find_held_lock+0x2c/0x110 [ 936.509873] do_filp_open+0x190/0x3e0 [ 936.510669] ? may_open_dev+0xf0/0xf0 [ 936.511492] ? do_raw_spin_lock+0x121/0x260 [ 936.512399] ? rwlock_bug.part.0+0x90/0x90 [ 936.513297] ? _raw_spin_unlock+0x1a/0x30 [ 936.514165] ? alloc_fd+0x2e7/0x670 [ 936.514950] do_sys_openat2+0x171/0x4d0 [ 936.515788] ? build_open_flags+0x6f0/0x6f0 [ 936.516699] ? rcu_read_lock_any_held+0x75/0xa0 [ 936.517682] __x64_sys_openat+0x13f/0x1f0 [ 936.518556] ? __ia32_sys_open+0x1c0/0x1c0 [ 936.519468] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 936.520576] ? syscall_enter_from_user_mode+0x1d/0x50 [ 936.521668] do_syscall_64+0x33/0x40 [ 936.522462] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 936.523555] RIP: 0033:0x7f36e6095a04 [ 936.524370] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 936.528257] RSP: 002b:00007f36e3657ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 936.529855] RAX: ffffffffffffffda RBX: 00007f36e612c970 RCX: 00007f36e6095a04 [ 936.531353] RDX: 0000000000000002 RSI: 00007f36e3658000 RDI: 00000000ffffff9c [ 936.532857] RBP: 00007f36e3658000 R08: 0000000000000000 R09: ffffffffffffffff [ 936.534353] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 936.535869] R13: 0000000000000004 R14: 0000000020000488 R15: 0000000000000003 [ 936.573318] FAULT_INJECTION: forcing a failure. [ 936.573318] name failslab, interval 1, probability 0, space 0, times 0 [ 936.575847] CPU: 1 PID: 10634 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 936.577328] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 936.579099] Call Trace: [ 936.579659] dump_stack+0x107/0x167 [ 936.580433] should_fail.cold+0x5/0xa [ 936.581251] ? create_object.isra.0+0x3a/0xa30 [ 936.582216] should_failslab+0x5/0x20 [ 936.583038] kmem_cache_alloc+0x5b/0x310 [ 936.583902] create_object.isra.0+0x3a/0xa30 [ 936.584828] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 936.585910] kmem_cache_alloc_trace+0x151/0x320 [ 936.586901] ? io_tctx_exit_cb+0xf0/0xf0 [ 936.587772] percpu_ref_init+0xd8/0x3d0 [ 936.588631] io_uring_setup+0x47a/0x2980 [ 936.589488] ? __mutex_unlock_slowpath+0xe1/0x600 [ 936.590518] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 936.591594] ? wait_for_completion_io+0x270/0x270 [ 936.592639] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 936.593751] ? syscall_enter_from_user_mode+0x1d/0x50 [ 936.594847] do_syscall_64+0x33/0x40 [ 936.595639] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 936.596722] RIP: 0033:0x7f707acaeb19 [ 936.597509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 936.601395] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 936.603019] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 936.604517] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 936.606028] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 936.607538] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 936.609038] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 936.622861] FAULT_INJECTION: forcing a failure. [ 936.622861] name failslab, interval 1, probability 0, space 0, times 0 00:56:18 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x8000000, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 936.625370] CPU: 1 PID: 10637 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 936.627064] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 936.628807] Call Trace: [ 936.629379] dump_stack+0x107/0x167 [ 936.630149] should_fail.cold+0x5/0xa [ 936.630960] ? bvec_alloc+0x148/0x2f0 [ 936.631758] should_failslab+0x5/0x20 [ 936.632558] kmem_cache_alloc+0x5b/0x310 [ 936.633427] bvec_alloc+0x148/0x2f0 [ 936.634201] bio_alloc_bioset+0x40a/0x600 [ 936.635084] ? bvec_alloc+0x2f0/0x2f0 [ 936.635894] ? iov_iter_npages+0x1fd/0xa70 [ 936.636791] iomap_dio_bio_actor+0x518/0xef0 [ 936.637745] iomap_dio_actor+0x36f/0x560 [ 936.638610] ? __x64_sys_sendfile64+0x1d1/0x210 [ 936.639605] ? do_syscall_64+0x33/0x40 [ 936.640423] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 936.641549] iomap_apply+0x289/0x810 [ 936.642338] ? iomap_dio_rw+0x90/0x90 [ 936.643149] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 936.644370] ? mark_held_locks+0x9e/0xe0 [ 936.645235] ? filemap_check_errors+0xa5/0x150 [ 936.646206] __iomap_dio_rw+0x6cd/0x1110 [ 936.647259] ? iomap_dio_rw+0x90/0x90 [ 936.648094] ? iomap_dio_bio_actor+0xef0/0xef0 [ 936.649021] ? ext4_orphan_add+0x253/0x9e0 [ 936.649882] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 936.650879] ? ext4_empty_dir+0xae0/0xae0 [ 936.651734] ? jbd2__journal_start+0xf3/0x7e0 [ 936.652651] iomap_dio_rw+0x31/0x90 [ 936.653410] ext4_file_write_iter+0xe0e/0x1530 [ 936.654353] ? ext4_file_read_iter+0x4c0/0x4c0 [ 936.655301] ? kasan_save_stack+0x32/0x40 [ 936.656142] ? kasan_save_stack+0x1b/0x40 [ 936.656982] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 936.658015] ? iter_file_splice_write+0x165/0xc90 [ 936.659005] ? direct_splice_actor+0x10f/0x170 [ 936.659948] ? splice_direct_to_actor+0x387/0x980 [ 936.660939] ? do_splice_direct+0x1c4/0x290 [ 936.661829] ? do_sendfile+0x553/0x11e0 [ 936.662642] ? __x64_sys_sendfile64+0x1d1/0x210 [ 936.664030] ? do_syscall_64+0x33/0x40 [ 936.665020] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 936.666374] do_iter_readv_writev+0x476/0x750 [ 936.667532] ? _cond_resched+0x10/0x30 [ 936.668378] ? new_sync_write+0x660/0x660 [ 936.669262] ? avc_policy_seqno+0x9/0x70 [ 936.670114] ? selinux_file_permission+0x92/0x520 [ 936.671145] ? security_file_permission+0xb1/0xe0 [ 936.672170] do_iter_write+0x191/0x700 [ 936.672992] ? trace_hardirqs_on+0x5b/0x180 [ 936.673904] vfs_iter_write+0x70/0xa0 [ 936.674705] iter_file_splice_write+0x726/0xc90 [ 936.675709] ? generic_splice_sendpage+0x140/0x140 [ 936.676768] ? security_file_permission+0xb1/0xe0 [ 936.677786] ? generic_splice_sendpage+0x140/0x140 [ 936.678817] direct_splice_actor+0x10f/0x170 [ 936.679748] splice_direct_to_actor+0x387/0x980 [ 936.680728] ? pipe_to_sendpage+0x380/0x380 [ 936.681634] ? do_splice_to+0x160/0x160 [ 936.682476] ? security_file_permission+0xb1/0xe0 [ 936.683504] do_splice_direct+0x1c4/0x290 [ 936.684379] ? splice_direct_to_actor+0x980/0x980 [ 936.685388] ? avc_policy_seqno+0x9/0x70 [ 936.686247] ? security_file_permission+0xb1/0xe0 [ 936.687275] do_sendfile+0x553/0x11e0 [ 936.688087] ? do_pwritev+0x270/0x270 [ 936.688899] ? wait_for_completion_io+0x270/0x270 [ 936.689917] ? rcu_read_lock_any_held+0x75/0xa0 [ 936.690890] ? vfs_write+0x354/0xb10 [ 936.691687] __x64_sys_sendfile64+0x1d1/0x210 [ 936.692628] ? __ia32_sys_sendfile+0x220/0x220 [ 936.693598] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 936.694699] ? syscall_enter_from_user_mode+0x1d/0x50 [ 936.695795] do_syscall_64+0x33/0x40 [ 936.696577] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 936.697658] RIP: 0033:0x7fe85904db19 [ 936.698447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 936.702317] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 936.703926] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 936.705422] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 936.707294] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 936.709154] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 936.710706] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 00:56:18 executing program 7: fork() r0 = fcntl$getown(0xffffffffffffffff, 0x9) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000180)=ANY=[@ANYBLOB="01000000010000001800000057645936dea4717c99a3e34db454409b37831a1f0748d1b3a77a3e48c75ba806ce", @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYBLOB="000000002e2f66696c653000b7d6c52dd9bc9a98db8af8eeae9b7ef70174eacd175aeedfaac50c6938a377ae56d34e1cd176b5909b903c9bef814858480e62fd9390cbd363"]) openat$incfs(r1, &(0x7f00000000c0)='.log\x00', 0x2000, 0x80) ptrace(0x4207, r0) waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) 00:56:18 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001ffffffff00000000000000000000000000000000000000000200002000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000001c00"/112], 0xb8}}, 0x0) 00:56:18 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 12) 00:56:18 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) (fail_nth: 30) 00:56:18 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80}, 0x0, 0x0, 0x0, 0x7, 0x0, 0xfffffffc}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0xf, 0xffffffffffffffff, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f0000000140), 0x2800, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) pread64(r1, &(0x7f00000020c0)=""/4082, 0xff2, 0x3) perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x6, 0x2, 0x0, 0x1, 0x0, 0x0, 0xc5821, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1, @perf_config_ext={0x5, 0xffffffff}, 0x208c, 0x5, 0x6, 0x4, 0x7, 0x6, 0x2, 0x0, 0x100, 0x0, 0x7f}, 0x0, 0x0, r0, 0x3) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r2, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}]}, 0x1c}}, 0x0) r3 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x24, 0x18, 0x109, 0x0, 0x0, {0xa}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x8, 0x2, 0x0, 0x0, @u32}]}, 0x24}}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x4) ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, 0x0) write$binfmt_elf64(r3, &(0x7f00000001c0)=ANY=[], 0xfdef) unlinkat(r4, &(0x7f0000000300)='./file0\x00', 0x200) 00:56:18 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x9000000, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:56:18 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0xff, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000bc0)=ANY=[@ANYRES32=0x0], 0x98}}, 0x0) close_range(r1, r0, 0x0) fcntl$addseals(r1, 0x409, 0x8) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000440)=0x7, 0x4) syz_open_dev$tty1(0xc, 0x4, 0x1) r2 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd_index=0x3, 0x5, &(0x7f0000000140)="ef3003e7d4d5730dd9bc0d2116cbd2ec2d4cef0397c67262d0882d05da47c1147ab3a8e1b3dfac797791d00529f0be39c7c3024d4751fcbfb4d3ec4b7b6dc1", 0x3f, 0xc, 0x1}, 0x9) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r3 = add_key$keyring(&(0x7f0000000080), 0x0, 0x0, 0x0, r2) add_key$keyring(&(0x7f0000000000), &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, r2) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000500)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) request_key(&(0x7f00000002c0)='id_legacy\x00', &(0x7f0000000340)={'syz', 0x2}, &(0x7f0000000380)='\x00', r3) futimesat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={{0x0, 0x2710}, {0x0, 0x2710}}) r4 = add_key(&(0x7f0000000200)='keyring\x00', &(0x7f00000004c0)={'syz', 0x1}, &(0x7f0000000540)="18726d0eed55eaa57fc580dc3a0b12e0a5ee08da294ac8119c4c73f93694f2a935d17a81959d084839f846dca8739131e4a9c45c6509af44529537eae3b5a4793a9a0aacfd7a75f2b566b874939829b82a35d20d1985a92c5d7ba971251e89286f64438db33a7f05fb0d1707fd3fa27a56032a79c1d09558fbbfcb2e5f36d3e7e1c749ad35c2064fa087cf6359507a36eb69853e0cdd920cbb7586aedf5a2e5a9a1a6b8d11c08a14918b01d07c92179dfae1ef58835b5fa4be28fbd3b3eac1c9f3cf74fbe25748c55d23902439133eecfafb2e0f", 0xd4, 0xfffffffffffffffa) add_key(0x0, 0x0, 0x0, 0x0, r4) add_key$keyring(&(0x7f0000000100), &(0x7f0000000240)={'syz', 0x2}, 0x0, 0x0, 0x0) syz_open_procfs(0xffffffffffffffff, 0x0) [ 936.889658] FAULT_INJECTION: forcing a failure. [ 936.889658] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 936.892237] CPU: 0 PID: 10760 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 936.893694] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 936.895458] Call Trace: [ 936.896023] dump_stack+0x107/0x167 [ 936.896798] should_fail.cold+0x5/0xa [ 936.896825] __alloc_pages_nodemask+0x182/0x600 [ 936.896848] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 936.896876] ? cap_capable+0x1cd/0x230 [ 936.896903] alloc_pages_current+0x187/0x280 [ 936.896922] __get_free_pages+0xc/0xa0 [ 936.896941] io_uring_setup+0xe27/0x2980 [ 936.896968] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 936.896984] ? wait_for_completion_io+0x270/0x270 [ 936.897025] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 936.897046] ? syscall_enter_from_user_mode+0x1d/0x50 [ 936.897067] do_syscall_64+0x33/0x40 [ 936.897087] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 936.897099] RIP: 0033:0x7f707acaeb19 [ 936.897118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 936.897128] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 936.897149] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 936.897160] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 936.897171] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 936.897182] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 936.897192] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 936.902170] FAULT_INJECTION: forcing a failure. [ 936.902170] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 936.902225] CPU: 0 PID: 10770 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 936.902235] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 936.902241] Call Trace: [ 936.902262] dump_stack+0x107/0x167 [ 936.902284] should_fail.cold+0x5/0xa [ 936.902310] _copy_to_user+0x2e/0x180 [ 936.902337] simple_read_from_buffer+0xcc/0x160 [ 936.902364] proc_fail_nth_read+0x198/0x230 [ 936.902389] ? proc_sessionid_read+0x230/0x230 [ 936.902407] ? security_file_permission+0xb1/0xe0 [ 936.902435] ? proc_sessionid_read+0x230/0x230 [ 936.902456] vfs_read+0x228/0x620 [ 936.902483] ksys_read+0x12d/0x260 [ 936.902504] ? vfs_write+0xb10/0xb10 [ 936.902528] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 936.902549] ? syscall_enter_from_user_mode+0x1d/0x50 [ 936.902572] do_syscall_64+0x33/0x40 [ 936.902592] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 936.902605] RIP: 0033:0x7f36e609569c [ 936.902623] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 936.902634] RSP: 002b:00007f36e3658170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 936.902655] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007f36e609569c [ 936.902666] RDX: 000000000000000f RSI: 00007f36e36581e0 RDI: 0000000000000003 [ 936.902678] RBP: 00007f36e36581d0 R08: 0000000000000000 R09: ffffffffffffffff [ 936.902689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 936.902701] R13: 00007ffec7156a8f R14: 00007f36e3658300 R15: 0000000000022000 [ 937.189822] Bluetooth: hci1: command 0x0406 tx timeout 00:56:31 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 58) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:56:31 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:56:31 executing program 0: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x3, 0x0, 0x8000) sendfile(0xffffffffffffffff, r0, 0x0, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x202, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000580)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000480)) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1400f08d4cc4010d00000000e8ff0000000000001a5532503956b97bd0e18db449d6d3e5d9aa7b0da32dd6da3b9dfacd9cead6fcc0e6c9d9bbd5d43a0ee7e6758b228e43a2a466a89d0b154fe285432aafa5ad20b32c22f95f7c346c3a57ce9664bbfe92f564c9ff5f269094ae96eeb2fc117dc7773d"], 0x14}}, 0x0) read(0xffffffffffffffff, &(0x7f0000000400)=""/68, 0x44) [ 949.828842] FAULT_INJECTION: forcing a failure. [ 949.828842] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 949.830512] CPU: 0 PID: 10855 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 949.831423] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 949.832513] Call Trace: [ 949.832864] dump_stack+0x107/0x167 [ 949.833345] should_fail.cold+0x5/0xa [ 949.833852] __alloc_pages_nodemask+0x182/0x600 [ 949.834464] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 949.835269] ? cap_capable+0x1cd/0x230 [ 949.835787] alloc_pages_current+0x187/0x280 [ 949.836375] __get_free_pages+0xc/0xa0 [ 949.836888] io_uring_setup+0xf9a/0x2980 [ 949.837434] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 949.838103] ? wait_for_completion_io+0x270/0x270 [ 949.838746] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 949.839453] ? syscall_enter_from_user_mode+0x1d/0x50 [ 949.840130] do_syscall_64+0x33/0x40 [ 949.840628] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 949.841311] RIP: 0033:0x7f707acaeb19 [ 949.841799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 949.844202] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 949.845214] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 949.846157] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 949.847107] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 949.848034] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 949.848965] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:56:31 executing program 7: fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000080)={0x0, 0x0}) ptrace(0x4207, r0) 00:56:31 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0xa000000, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:56:31 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 13) 00:56:31 executing program 5: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) syz_io_uring_setup(0x3dd6, &(0x7f0000000600)={0x0, 0x18ba, 0x20, 0x1, 0x9e}, &(0x7f0000ff3000/0x3000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000380)) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) r3 = syz_open_dev$vcsu(&(0x7f0000000040), 0x0, 0x8000) syz_io_uring_setup(0x3288, &(0x7f0000000500)={0x0, 0x970d, 0x4, 0x0, 0x3a7, 0x0, r3}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000440), &(0x7f0000000580)) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x2) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000000780)) syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) write$bt_hci(0xffffffffffffffff, &(0x7f0000001200)=ANY=[@ANYBLOB="0104080100016a3ef3027cbad9c2b3ccafd2b3120242a0f32b3da54dc5b0afe45040ed43456789cf1105437efa494a12b701c8c3426b8bd8b4e359a13d6256e0dcea2264001dfba4009f2b8117a93288ef0176cbbe8f4b1f1d11f70732afa6935ac4221a2d2b6b751bb0cfd4342405fdc18e4f538af22605944d0eee904335ba2a7d9322521421162709a84c2396a88a9e53"], 0x6) ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x36, &(0x7f00000006c0)=ANY=[@ANYBLOB="000600000000000001040000000001003f27bfbaee9384acc194db5e0212fa866035729354d71dcc1fec512f778fe70fb2d4781cc61c000000000000000cafb053dd0940644bc759df66bcc2339bb04f1b62d9ecede57710534d38c99a133b20f1a0f51a963c4aca379e440d435ef1a657843c7e1fc9a6923d67608d834e00"/137], 0x40) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f0000000200)=0x1f) ioctl$FIBMAP(r0, 0x1, &(0x7f00000003c0)=0xa9) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000005c0)=@default_ap_ssid, 0x6, 0x2) syz_genetlink_get_family_id$fou(&(0x7f00000001c0), r2) 00:56:31 executing program 6: r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2, 0x30, 0xffffffffffffffff, 0x10000000) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000)) syz_io_uring_submit(0x0, r0, &(0x7f00000000c0)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, {0x10}}, 0x9efd) write$binfmt_elf64(r1, &(0x7f00000001c0)=ANY=[], 0xfdef) r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000000080)={{0x1, 0x1, 0x18, r2, {0x4}}, './file1\x00'}) r4 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r5, 0x0, 0x20) ftruncate(0xffffffffffffffff, 0xd1) statx(0xffffffffffffff9c, 0x0, 0x0, 0x10, 0x0) lstat(&(0x7f0000000780)='./file1\x00', &(0x7f00000007c0)) openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x60882, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000002c0)={{0x1, 0x1, 0x18}, './file1\x00'}) perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2200, 0xc9a, 0x0, 0x0, 0x0, 0x800000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000018c0)={0x14, 0x1d, 0x403, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 00:56:31 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0xb000000, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 949.886764] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 949.894049] FAULT_INJECTION: forcing a failure. [ 949.894049] name failslab, interval 1, probability 0, space 0, times 0 [ 949.896658] CPU: 1 PID: 10859 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 949.898215] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 949.900075] Call Trace: [ 949.900671] dump_stack+0x107/0x167 [ 949.901488] should_fail.cold+0x5/0xa [ 949.902345] ? kmem_cache_alloc+0x2a6/0x310 [ 949.903330] ? create_object.isra.0+0x3a/0xa30 [ 949.904341] should_failslab+0x5/0x20 [ 949.905192] kmem_cache_alloc+0x5b/0x310 [ 949.906096] ? mempool_alloc+0x155/0x360 [ 949.907020] create_object.isra.0+0x3a/0xa30 00:56:31 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 14) [ 949.908023] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 949.909280] kmem_cache_alloc+0x159/0x310 [ 949.910224] bvec_alloc+0x148/0x2f0 [ 949.911046] bio_alloc_bioset+0x40a/0x600 [ 949.911994] ? bvec_alloc+0x2f0/0x2f0 [ 949.912852] ? iov_iter_npages+0x1fd/0xa70 [ 949.913809] iomap_dio_bio_actor+0x518/0xef0 [ 949.914814] iomap_dio_actor+0x36f/0x560 [ 949.915728] ? __x64_sys_sendfile64+0x1d1/0x210 [ 949.916771] ? do_syscall_64+0x33/0x40 [ 949.917642] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 949.918842] iomap_apply+0x289/0x810 [ 949.919699] ? iomap_dio_rw+0x90/0x90 [ 949.920565] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 949.921864] ? mark_held_locks+0x9e/0xe0 [ 949.922799] ? filemap_check_errors+0xa5/0x150 [ 949.923843] __iomap_dio_rw+0x6cd/0x1110 [ 949.924756] ? iomap_dio_rw+0x90/0x90 [ 949.925630] ? iomap_dio_bio_actor+0xef0/0xef0 [ 949.926655] ? ext4_orphan_add+0x253/0x9e0 [ 949.927613] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 949.928717] ? ext4_empty_dir+0xae0/0xae0 [ 949.929644] ? jbd2__journal_start+0xf3/0x7e0 [ 949.930659] iomap_dio_rw+0x31/0x90 [ 949.931487] ext4_file_write_iter+0xe0e/0x1530 [ 949.932531] ? ext4_file_read_iter+0x4c0/0x4c0 [ 949.933550] ? kasan_save_stack+0x32/0x40 [ 949.934479] ? kasan_save_stack+0x1b/0x40 [ 949.935419] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 949.936554] ? iter_file_splice_write+0x165/0xc90 [ 949.937626] ? direct_splice_actor+0x10f/0x170 [ 949.938644] ? splice_direct_to_actor+0x387/0x980 [ 949.939722] ? do_splice_direct+0x1c4/0x290 [ 949.940687] ? do_sendfile+0x553/0x11e0 [ 949.941575] ? __x64_sys_sendfile64+0x1d1/0x210 [ 949.942615] ? do_syscall_64+0x33/0x40 [ 949.943499] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 949.944699] do_iter_readv_writev+0x476/0x750 [ 949.945732] ? _cond_resched+0x10/0x30 [ 949.946062] FAULT_INJECTION: forcing a failure. [ 949.946062] name failslab, interval 1, probability 0, space 0, times 0 [ 949.946612] ? new_sync_write+0x660/0x660 [ 949.948958] ? avc_policy_seqno+0x9/0x70 [ 949.949869] ? selinux_file_permission+0x92/0x520 [ 949.950952] ? security_file_permission+0xb1/0xe0 [ 949.952055] do_iter_write+0x191/0x700 [ 949.952933] ? trace_hardirqs_on+0x5b/0x180 [ 949.953908] vfs_iter_write+0x70/0xa0 [ 949.954765] iter_file_splice_write+0x726/0xc90 [ 949.955836] ? generic_splice_sendpage+0x140/0x140 [ 949.956955] ? security_file_permission+0xb1/0xe0 [ 949.958045] ? generic_splice_sendpage+0x140/0x140 [ 949.959159] direct_splice_actor+0x10f/0x170 [ 949.960148] splice_direct_to_actor+0x387/0x980 [ 949.961194] ? pipe_to_sendpage+0x380/0x380 [ 949.962163] ? do_splice_to+0x160/0x160 [ 949.963052] ? security_file_permission+0xb1/0xe0 [ 949.964158] do_splice_direct+0x1c4/0x290 [ 949.965088] ? splice_direct_to_actor+0x980/0x980 [ 949.966164] ? avc_policy_seqno+0x9/0x70 [ 949.967090] ? security_file_permission+0xb1/0xe0 [ 949.968181] do_sendfile+0x553/0x11e0 [ 949.969055] ? do_pwritev+0x270/0x270 [ 949.969949] ? wait_for_completion_io+0x270/0x270 [ 949.971039] ? rcu_read_lock_any_held+0x75/0xa0 [ 949.972089] ? vfs_write+0x354/0xb10 [ 949.972928] __x64_sys_sendfile64+0x1d1/0x210 [ 949.973941] ? __ia32_sys_sendfile+0x220/0x220 [ 949.974969] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 949.976157] ? syscall_enter_from_user_mode+0x1d/0x50 [ 949.977328] do_syscall_64+0x33/0x40 [ 949.978166] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 949.979335] RIP: 0033:0x7fe85904db19 [ 949.980173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 949.984297] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 949.986011] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 949.987622] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 949.989220] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 949.990813] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 949.992415] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 [ 949.994038] CPU: 0 PID: 10967 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 949.994900] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 949.995931] Call Trace: [ 949.996263] dump_stack+0x107/0x167 [ 949.996713] should_fail.cold+0x5/0xa [ 949.997195] ? io_uring_setup+0x17ed/0x2980 [ 949.997739] should_failslab+0x5/0x20 [ 949.998216] kmem_cache_alloc_trace+0x55/0x320 [ 949.998799] ? alloc_pages_current+0x18f/0x280 [ 949.999389] io_uring_setup+0x17ed/0x2980 [ 949.999913] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 950.000557] ? wait_for_completion_io+0x270/0x270 [ 950.001175] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 950.001833] ? syscall_enter_from_user_mode+0x1d/0x50 [ 950.002469] do_syscall_64+0x33/0x40 [ 950.002927] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 950.003560] RIP: 0033:0x7f707acaeb19 [ 950.004018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 950.006261] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 950.007198] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 950.008070] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 950.008940] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 950.009813] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 950.010676] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:56:31 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000002, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:56:31 executing program 7: r0 = fork() getpgid(r0) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000003100)=[{{&(0x7f0000000080)=@abs, 0x6e, &(0x7f0000000480)=[{&(0x7f0000000100)=""/5, 0x5}, {&(0x7f0000000140)=""/231, 0xe7}, {&(0x7f0000000240)=""/34, 0x22}, {&(0x7f0000000280)=""/187, 0xbb}, {&(0x7f0000000340)=""/107, 0x6b}, {&(0x7f00000003c0)=""/176, 0xb0}], 0x6, &(0x7f0000000500)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x40}}, {{&(0x7f0000000540), 0x6e, &(0x7f0000000640)=[{&(0x7f00000005c0)=""/73, 0x49}], 0x1}}, {{&(0x7f0000000680), 0x6e, &(0x7f00000018c0)=[{&(0x7f0000000700)=""/138, 0x8a}, {&(0x7f00000007c0)=""/4096, 0x1000}, {&(0x7f00000017c0)=""/233, 0xe9}], 0x3, &(0x7f0000001900)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000001940)=@abs, 0x6e, &(0x7f0000002bc0)=[{&(0x7f00000019c0)=""/77, 0x4d}, {&(0x7f0000001a40)=""/5, 0x5}, {&(0x7f0000001a80)=""/121, 0x79}, {&(0x7f0000001b00)=""/4096, 0x1000}, {&(0x7f0000002b00)=""/145, 0x91}], 0x5, &(0x7f0000003280)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000100000000000000001000000010000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="f51bfdffffffa64f8826ce073198400f145651203e2e921ebf2d94", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x148}}, {{&(0x7f0000002dc0)=@abs, 0x6e, &(0x7f00000030c0)=[{&(0x7f0000002e40)=""/109, 0x6d}, {&(0x7f0000002ec0)=""/231, 0xe7}, {&(0x7f0000002fc0)=""/200, 0xc8}], 0x3}}], 0x5, 0x2, &(0x7f0000003240)) fallocate(r2, 0x0, 0x121, 0x3) waitid(0x1, r1, &(0x7f0000000000), 0x2, 0x0) 00:56:31 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000ac0)={0x17412c500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x42) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x8008, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@version_L}], [{@func={'func', 0x3d, 'MMAP_CHECK'}}, {@dont_hash}, {@dont_measure}, {@dont_measure}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@fowner_eq={'fowner', 0x3d, 0xee01}}, {@obj_type={'obj_type', 0x3d, ']}%(W-,\'.#,%-@(,+'}}, {@measure}]}}) 00:56:31 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0xf000000, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 950.129081] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 950.130860] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 950.138464] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 00:56:31 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000003, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 950.194013] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 950.195952] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 950.201110] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 00:56:32 executing program 7: fork() r0 = getpgrp(0x0) pidfd_open(r0, 0x0) waitid(0x0, r0, &(0x7f0000000000), 0x1, 0x0) 00:56:44 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 59) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:56:44 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000004, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:56:44 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x10000000, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:56:44 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 15) 00:56:44 executing program 0: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x14000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xd21, 0x7}, 0x200, 0x6f80, 0x0, 0x8, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/unix\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f00000004c0)=""/4089, 0xff9}], 0x1) syz_open_procfs(0x0, 0x0) prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ffc000/0x3000)=nil) mremap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000, 0x0, &(0x7f0000ffe000/0x1000)=nil) mlock(&(0x7f0000ffa000/0x6000)=nil, 0x6000) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000440)='/proc/partitions\x00', 0x0, 0x0) pread64(r1, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) r2 = syz_open_dev$vcsu(&(0x7f0000000140), 0x8, 0xc0) mremap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x3000, 0x3, &(0x7f0000ffd000/0x3000)=nil) fsetxattr$security_ima(r2, &(0x7f00000000c0), &(0x7f0000000680)=ANY=[@ANYBLOB="0200000000000000072d78977d5a96e6b6d6ce4b43b8cb4f0bf0f5cb3f1ba75b8e8a82afbc77c35bc241bad603741da16ca9a1599795570fbb661525f5873f0396d8acd8a962ba8014"], 0x14, 0x1) 00:56:44 executing program 7: fork() r0 = getpgrp(0x0) pidfd_open(r0, 0x0) waitid(0x1, r0, &(0x7f0000000000), 0x2, 0x0) 00:56:44 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb9, 0x0, @perf_config_ext={0x0, 0x7}, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000080)=0x1000) socket$inet6_udplite(0xa, 0x2, 0x88) creat(&(0x7f0000000040)='./file0\x00', 0x0) open_tree(0xffffffffffffffff, 0x0, 0xd800) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) openat(0xffffffffffffffff, 0x0, 0x0, 0xe0) syz_open_procfs(0xffffffffffffffff, 0x0) r2 = fsopen(&(0x7f00000006c0)='autofs\x00', 0x0) fsconfig$FSCONFIG_SET_FD(r2, 0x6, 0x0, 0x0, 0xffffffffffffffff) mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x20000, &(0x7f0000000100)=ANY=[@ANYBLOB="2912dfc5ae6fb4c4105dca04c33dc7c0c2fe504993bd895594f15e33c7f1f495162a188c464d6752b205de4f8ba05b0beb0b93db2e49fe4c0aeb22b03729567e93c7d6d3000000", @ANYRESHEX=r1]) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x20000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0xffffffff81000000}, 0x0, 0xfffffffffffffffd, 0x2, 0x6, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x6}, 0x0, 0x0, 0x1002, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syncfs(r3) 00:56:44 executing program 5: ftruncate(0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000140)='./file1\x00', 0x101000, 0x0) statx(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x402}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x69) io_setup(0x3, &(0x7f0000000000)=0x0) r2 = inotify_init1(0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) inotify_add_watch(r2, &(0x7f0000000000)='./file0\x00', 0x43) r4 = dup3(r3, r2, 0x0) r5 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r1, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) socket$inet6_udp(0xa, 0x2, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_submit(0x0, 0x1, &(0x7f00000006c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}]) ioctl$AUTOFS_DEV_IOCTL_FAIL(r5, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xfe78, 0x704}}, './file0\x00'}) r7 = syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/net\x00') r8 = syz_open_procfs(0x0, &(0x7f0000000340)='net/rpc\x00') io_submit(0x0, 0x3, &(0x7f0000000480)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4, r4, &(0x7f0000000200)="282c76276317de3c99973d6bbf61c55f211ebf066bc7d3b4ba966df32c33e57757efba7e48e20f5a1e3eb10b119f635643ee15ad9c0ab42b828ccd1b13a0eacd70f166cb8dd72a862f68ebcf6bd3612f5093485098ed4f0749a97e62d2294e9eb3cd345ff01b13c93c8b85dacb856fc1a8536748f076b2038b46b9a1350f182314d2bc1e6d718a2ca95994a5786802c90badc3b2fad4377b51c89e1b81c8f48609f6280132432ec3cefbe1", 0xab, 0x1, 0x0, 0x1}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x8, 0x8000, r6, &(0x7f0000000180)="8a62239c16345061", 0x8, 0x3, 0x0, 0x3, r4}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x2, 0x1, r7, &(0x7f00000003c0)="4bda35417475eafe945a18d18af119165bd99a599296a9c5f158e1ece82a80f1fed94509ad2f0039e4f4ab43671c82bf8b629a58612bd70cbcad783643e94013685a58a79f38dd85ee5aebcda46c57b6891b8acfcac2349556337127d10f68647e3a79a94f9c7f4575b5788cd0f501912ee0335699aa1d032a", 0x79, 0x1, 0x0, 0x2, r8}]) [ 962.421228] FAULT_INJECTION: forcing a failure. [ 962.421228] name failslab, interval 1, probability 0, space 0, times 0 [ 962.423687] CPU: 1 PID: 11209 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 962.425135] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 962.426888] Call Trace: [ 962.427458] dump_stack+0x107/0x167 [ 962.428233] should_fail.cold+0x5/0xa [ 962.429041] ? create_object.isra.0+0x3a/0xa30 [ 962.430292] should_failslab+0x5/0x20 [ 962.431106] kmem_cache_alloc+0x5b/0x310 [ 962.432024] create_object.isra.0+0x3a/0xa30 [ 962.433105] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 962.434355] kmem_cache_alloc_trace+0x151/0x320 [ 962.435512] ? alloc_pages_current+0x18f/0x280 [ 962.435989] FAULT_INJECTION: forcing a failure. [ 962.435989] name failslab, interval 1, probability 0, space 0, times 0 [ 962.436484] io_uring_setup+0x17ed/0x2980 [ 962.436515] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 962.440732] ? wait_for_completion_io+0x270/0x270 [ 962.441764] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 962.442875] ? syscall_enter_from_user_mode+0x1d/0x50 [ 962.443965] do_syscall_64+0x33/0x40 [ 962.444763] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 962.445838] RIP: 0033:0x7f707acaeb19 [ 962.446650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 962.450519] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 962.452113] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 962.453602] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 962.455104] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 962.456606] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 962.458100] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 962.459639] CPU: 0 PID: 11207 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 962.461113] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 962.462864] Call Trace: [ 962.463432] dump_stack+0x107/0x167 [ 962.464194] should_fail.cold+0x5/0xa [ 962.464997] ? kmem_cache_alloc+0x2a6/0x310 [ 962.465894] ? create_object.isra.0+0x3a/0xa30 [ 962.466846] should_failslab+0x5/0x20 [ 962.467661] kmem_cache_alloc+0x5b/0x310 [ 962.468513] create_object.isra.0+0x3a/0xa30 [ 962.469435] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 962.470497] kmem_cache_alloc+0x159/0x310 [ 962.471384] bvec_alloc+0x148/0x2f0 [ 962.472161] bio_alloc_bioset+0x40a/0x600 [ 962.473031] ? bvec_alloc+0x2f0/0x2f0 [ 962.473825] ? iov_iter_npages+0x1fd/0xa70 [ 962.474717] iomap_dio_bio_actor+0x518/0xef0 [ 962.475658] iomap_dio_actor+0x36f/0x560 [ 962.476500] ? __x64_sys_sendfile64+0x1d1/0x210 [ 962.477476] ? do_syscall_64+0x33/0x40 [ 962.478288] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 962.479416] iomap_apply+0x289/0x810 [ 962.480204] ? iomap_dio_rw+0x90/0x90 [ 962.481002] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 962.482225] ? mark_held_locks+0x9e/0xe0 [ 962.483091] ? filemap_check_errors+0xa5/0x150 [ 962.484072] __iomap_dio_rw+0x6cd/0x1110 [ 962.484937] ? iomap_dio_rw+0x90/0x90 [ 962.485745] ? iomap_dio_bio_actor+0xef0/0xef0 [ 962.486704] ? ext4_orphan_add+0x253/0x9e0 [ 962.487617] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 962.488655] ? ext4_empty_dir+0xae0/0xae0 [ 962.489532] ? jbd2__journal_start+0xf3/0x7e0 [ 962.490489] iomap_dio_rw+0x31/0x90 [ 962.491273] ext4_file_write_iter+0xe0e/0x1530 [ 962.492249] ? ext4_file_read_iter+0x4c0/0x4c0 [ 962.493210] ? kasan_save_stack+0x32/0x40 [ 962.494084] ? kasan_save_stack+0x1b/0x40 [ 962.494955] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 962.496031] ? iter_file_splice_write+0x165/0xc90 [ 962.497043] ? direct_splice_actor+0x10f/0x170 [ 962.498002] ? splice_direct_to_actor+0x387/0x980 [ 962.499023] ? do_splice_direct+0x1c4/0x290 [ 962.499936] ? do_sendfile+0x553/0x11e0 [ 962.500771] ? __x64_sys_sendfile64+0x1d1/0x210 [ 962.501749] ? do_syscall_64+0x33/0x40 [ 962.502584] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 962.503728] do_iter_readv_writev+0x476/0x750 [ 962.504674] ? _cond_resched+0x10/0x30 [ 962.505498] ? new_sync_write+0x660/0x660 [ 962.506371] ? avc_policy_seqno+0x9/0x70 [ 962.507241] ? selinux_file_permission+0x92/0x520 [ 962.508261] ? security_file_permission+0xb1/0xe0 [ 962.509299] do_iter_write+0x191/0x700 [ 962.510125] ? trace_hardirqs_on+0x5b/0x180 [ 962.511045] vfs_iter_write+0x70/0xa0 [ 962.511861] iter_file_splice_write+0x726/0xc90 [ 962.512859] ? generic_splice_sendpage+0x140/0x140 [ 962.513911] ? security_file_permission+0xb1/0xe0 [ 962.514927] ? generic_splice_sendpage+0x140/0x140 [ 962.515969] direct_splice_actor+0x10f/0x170 [ 962.516894] splice_direct_to_actor+0x387/0x980 [ 962.517885] ? pipe_to_sendpage+0x380/0x380 [ 962.518796] ? do_splice_to+0x160/0x160 [ 962.519648] ? security_file_permission+0xb1/0xe0 [ 962.520675] do_splice_direct+0x1c4/0x290 [ 962.521550] ? splice_direct_to_actor+0x980/0x980 [ 962.522562] ? avc_policy_seqno+0x9/0x70 [ 962.523449] ? security_file_permission+0xb1/0xe0 [ 962.524481] do_sendfile+0x553/0x11e0 [ 962.525302] ? do_pwritev+0x270/0x270 [ 962.526109] ? wait_for_completion_io+0x270/0x270 [ 962.527130] ? rcu_read_lock_any_held+0x75/0xa0 [ 962.528126] ? vfs_write+0x354/0xb10 [ 962.528918] __x64_sys_sendfile64+0x1d1/0x210 [ 962.529861] ? __ia32_sys_sendfile+0x220/0x220 [ 962.530833] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 962.531979] ? syscall_enter_from_user_mode+0x1d/0x50 [ 962.533079] do_syscall_64+0x33/0x40 [ 962.533864] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 962.534944] RIP: 0033:0x7fe85904db19 [ 962.535738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 962.539631] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 962.541245] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 962.542758] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 962.544275] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 962.545789] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 962.547301] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 [ 962.591389] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 962.593454] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 962.594900] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 962.596328] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 962.597974] print_req_error: 758 callbacks suppressed [ 962.597994] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 19 prio class 0 [ 962.602451] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 962.603977] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 962.606444] Buffer I/O error on dev sr0, logical block 0, async page read [ 962.608569] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 962.609965] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 962.612577] Buffer I/O error on dev sr0, logical block 1, async page read [ 962.614250] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 962.615475] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 6 prio class 0 [ 962.617748] Buffer I/O error on dev sr0, logical block 2, async page read [ 962.619574] Buffer I/O error on dev sr0, logical block 3, async page read [ 962.621283] Buffer I/O error on dev sr0, logical block 4, async page read [ 962.623003] Buffer I/O error on dev sr0, logical block 5, async page read [ 962.624745] Buffer I/O error on dev sr0, logical block 6, async page read [ 962.626471] Buffer I/O error on dev sr0, logical block 7, async page read 00:56:44 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x11000000, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:56:44 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000005, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:56:44 executing program 0: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x14000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xd21, 0x7}, 0x200, 0x6f80, 0x0, 0x8, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/unix\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f00000004c0)=""/4089, 0xff9}], 0x1) syz_open_procfs(0x0, 0x0) prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ffc000/0x3000)=nil) mremap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000, 0x0, &(0x7f0000ffe000/0x1000)=nil) mlock(&(0x7f0000ffa000/0x6000)=nil, 0x6000) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000440)='/proc/partitions\x00', 0x0, 0x0) pread64(r1, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) r2 = syz_open_dev$vcsu(&(0x7f0000000140), 0x8, 0xc0) mremap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x3000, 0x3, &(0x7f0000ffd000/0x3000)=nil) fsetxattr$security_ima(r2, &(0x7f00000000c0), &(0x7f0000000680)=ANY=[@ANYBLOB="0200000000000000072d78977d5a96e6b6d6ce4b43b8cb4f0bf0f5cb3f1ba75b8e8a82afbc77c35bc241bad603741da16ca9a1599795570fbb661525f5873f0396d8acd8a962ba8014"], 0x14, 0x1) 00:56:44 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 16) [ 962.753128] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 962.755720] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 962.757525] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 962.759279] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 962.761249] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 30 prio class 0 [ 962.764928] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 962.766268] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 962.768582] Buffer I/O error on dev sr0, logical block 0, async page read [ 962.771596] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 962.772820] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 962.775333] Buffer I/O error on dev sr0, logical block 1, async page read [ 962.777166] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 962.779830] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 962.782523] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 962.784023] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 962.787333] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 962.788561] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 962.791549] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 962.793231] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 962.794955] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 00:56:44 executing program 7: r0 = fork() waitid(0x2, r0, &(0x7f0000000000), 0x80000000, 0x0) getuid() 00:56:44 executing program 5: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4303, 0x20001, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x5}, 0x0, 0xffffffff00000000, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r0, 0xffffffffffffffff, 0x0}, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x20000, 0x31) openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x101080, 0x0) io_uring_register$IORING_REGISTER_PROBE(0xffffffffffffffff, 0x8, &(0x7f0000000340)=ANY=[@ANYRES64], 0x8) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) write(r2, &(0x7f0000000500)="68dacd8efe3f5cb66789ead9b182104fa8001e0000000000001e947e0d738912a331de4db0b19fb4cb6cbdca9462129aabd2e91928bd59148dd4c89a0000000200000070b48abccbb016c091bb83f3db6479ebecd82904153e0b70eebc7f57bf4e9931792a4b", 0x66) pwritev2(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000400)="12921bf3f5ac55ac7d28c406d20fdb57b92e02bc6d105b5a992db3168e2353a5175206a54884181734fe4452c48ebfc978fd8c28444a1f2b9352006e207b7d6ec5a950954898ae5ea30ed79c9d0b97cecb27e177f6504ed3adae766d48eccd922c2f885900831bc34e61089c800d62108e98cf3a72dc4619ef62ff4415c9026d8749923f1c30c555570bf1330467f1c1312222c3799758ab497de9459ddae35109616bb59d179de5d5d58024a3638d9c9c3f8f0569e2951f0853a6a4050cd4218deee03629", 0xc5}, {&(0x7f0000000580)="7c4752c85348964b0d522062d891c1281097c68f296156e66b8a2009f5f44fa29f1e66f8899e7c3f003f4a79c48a2796046fa7d4a0b3e0711cef52fea12907c99317aad6321deba9f855c1dec1f08ee6e0fe80a4d88e14da9b982445023cb817cf5e56ac4482acbf210cee2531a16e98766d7eba01dd44f4cf12d872137844a608e2d1a7dd4d9296854edfdef56d24ebc488e88db9b3310367350ee27f81b3716fc4e2c7ce17f0bb2c789bf3442b1bcdd9d7fc4e594fea74f2d2003f046668ecf8819b5de45ad800fe86cfd0c69f5d3458a91d9aa7365c973b7cfc5705ee0d43a9ded8011728cbfc67653b060e2fad46abc62d61108c8d0e8e9b19d4", 0xfc}, {&(0x7f00000001c0)="9659ec4752e76d2857e018517a8f8b08ad", 0x11}, {&(0x7f0000000680)="caff9731d65e75ad790a78ca9faefff1b25dcecead9df5a5aad8bfb68438f652d7205aaee5a37e79c4221426a6db7925206071a8e2024ad086553bd325cdbeb725381e3a22b592f2c71a0f36a03dae7f8e9376092847a101d1dc03a6c865a4d3226b65147a7f6e271fb7222c753d810283d7c0ff6010536139dcc28a935d590bf9698413a429a042d58b4a1aa214898fbb9c940bea3169f27bf2dbdb4d9f22da70ea22bc070e331ee4785d4250cc1e29c0dc181863717ffb44892391fb3ef8efbbd862c89ea94f1b186974fd01432f46bba63f0427bf1df3f3a853c1bbf11f4b20ede4baf82cefbe3b892af3fba8b463ae6e739c1c", 0xf5}], 0x4, 0x8, 0x2, 0x1) openat$random(0xffffffffffffff9c, &(0x7f00000002c0), 0x240000, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_buf(r3, 0x1, 0x1f, &(0x7f0000001140)=""/244, &(0x7f0000000000)=0xf4) ioctl$FIOCLEX(0xffffffffffffffff, 0x5451) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) fsetxattr$trusted_overlay_nlink(r2, &(0x7f0000000000), &(0x7f0000000040)={'U+', 0x9e}, 0x16, 0x1) futimesat(0xffffffffffffffff, 0x0, 0x0) [ 962.919494] FAULT_INJECTION: forcing a failure. [ 962.919494] name failslab, interval 1, probability 0, space 0, times 0 [ 962.922187] CPU: 0 PID: 11332 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 962.923656] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 962.925390] Call Trace: [ 962.925954] dump_stack+0x107/0x167 [ 962.926727] should_fail.cold+0x5/0xa [ 962.927540] ? copy_process+0x3305/0x78b0 [ 962.928410] should_failslab+0x5/0x20 [ 962.929209] kmem_cache_alloc_node+0x55/0x330 [ 962.930156] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 962.931281] copy_process+0x3305/0x78b0 [ 962.932119] ? stack_trace_save+0x8c/0xc0 [ 962.932992] ? lock_acquire+0x197/0x470 [ 962.933833] ? io_sq_thread_park+0x79/0xd0 [ 962.934723] ? lock_release+0x680/0x680 [ 962.935579] ? __cleanup_sighand+0xb0/0xb0 [ 962.936470] ? kernel_text_address+0xf2/0x120 [ 962.937416] ? find_held_lock+0x2c/0x110 [ 962.938276] ? io_uring_setup+0x1c23/0x2980 [ 962.939186] ? lock_downgrade+0x6d0/0x6d0 [ 962.940082] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 962.941118] create_io_thread+0xb6/0xf0 [ 962.941954] ? pidfd_prepare+0x80/0x80 [ 962.942787] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 962.943846] io_uring_setup+0x1d79/0x2980 [ 962.944721] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 962.945781] ? wait_for_completion_io+0x270/0x270 [ 962.946816] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 962.947925] ? syscall_enter_from_user_mode+0x1d/0x50 [ 962.949005] do_syscall_64+0x33/0x40 [ 962.949784] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 962.950856] RIP: 0033:0x7f707acaeb19 [ 962.951644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 962.955506] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 962.957108] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 962.958615] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 962.960122] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 962.961795] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 962.963300] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:56:44 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x12010000, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:56:44 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000006, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 963.044376] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 00:56:58 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 60) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:56:58 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000380), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x920420, &(0x7f00000000c0)=ANY=[]) setfsgid(0xee01) syz_io_uring_submit(0x0, 0x0, 0x0, 0x3) mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x0) setresuid(0x0, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x44000, &(0x7f0000001500)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@posixacl}, {@mmap}], [{@fowner_gt}, {@euid_eq}]}}) openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x80000, 0x0) syz_io_uring_setup(0x52dd, &(0x7f0000000200)={0x0, 0xedea, 0x0, 0x0, 0x2df}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_setup(0x1d, &(0x7f0000000300), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000080)=0x0, &(0x7f0000000200)=0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000280)=@in6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}}, 0x0) connect$inet6(r3, &(0x7f0000000540)={0xa, 0x0, 0x0, @mcast2, 0x8000}, 0x1c) pwrite64(r3, &(0x7f0000000500)="74fcb63bc329eddaecaa51bc38b18b020247643597abee60849de8b22ee8aba516c5c7d4ae14275640c9213f588a84360edd74f73fb85e8da15d23b70f6ef18c1cb3e6664a2fe95d8587c982e195803e6574fe1e9bb361c0eb2a8a39bd5941ed70537f64253bb8d67a8e027bdbc5b0bb1db5558e3986e3802855dc1ed6728ec965bc0db0c11ea963ab89bcbb0d9682f3fbc978babf37daccef274647e30ab1ae36110c2beadc98eaeeed69241d41bf815653f99c8ad3a1208e4dea4a8e39aa6ebb76c75799a374fa1135a09fa2ea4153149f5cecf4a852680629f8b06cb17f03d89df99964b896313402dcf882db238c0ab4e58feaf6cc353b8a4d8ee63cd55a7f908584315a34d0c924111ddf516a4f617e806869937c9a1d92c0936e8cf622a5d9278035cc3aefb490bbc690b3c359c56a416ff011150c60443deb36f56ce5110eea9d228cce5ce7830ea416a44e2af45bab7c0f6fa7df222cbaa9ea6dc466a02e1b05d22a999fc11908a90262ab8c4f158cad8abf00564a5726158ce65fc546432a73e9bd5cf7a0fc46ac8cb1897d01e93687239566f993c0a56ab1fd2293df29c1eca4379468204f3be51a63fcbeecfe040c67e1663fc5e2bb43be7fe96e0b28dcf5a3aaa1262c2fd2ba8959cae3713c8cbf354fd8079066b83e466b744c82f852c6322f54446fef2e98db148c5765fd1c0f9281b49b55a5855141a410fce58849beaed8bd8a4fab25260d2999e57caf643a967f2bd1ba97fac891911b2654d408fcf49273aea5ab3802fbeb7592901b83da00567af698b629ad87e3642837e33d6f829e983e773500488490d8eed55728669e30f6c5f6f505c5cecc48c327aa976ea5fd4a938973e9f25b7670c6ad0564b3b0c08b1e3da9cc3792ae07c25216e93bc2b21641206c967ea0101d6da2bb3a692b474afd54c3b3551a7e3da531e85080b60cf2eb815d428700313b8808de485da006f87f92aa89f93e5c516d126c62294820b8e1cec75e96086e3b072361b7167c862aca7c094da82d18222f9f7eec4ddddfb384914d21c6d5c95f7016fab212fd0dfc436cb63612a28dc3c268722807ec2b6ca389becaa29301266750df24d3924ff94bd83af6b45fb897545b4306fdde0a7a3d065b379db3d3e530c6b0c1fca446fb79d89e5ca4b37bee4e308ab5e7929787aff875afab89ab6f6fdc1c7227664fd4d3c9c5c4e6855aea587e5adc59c1d301bfea0812e416381caa41a7120001229867264a07577e5299169fd585997febaf40aff8705deb5507cc2c9385da4cd7be76865d58cc730cf62e7b8c585df6faa432816267cafa69a83100dc6460f05deb14183b072df4c598dcb624e31a883aa5b9999b538b5ceae9a0829f1aede949770238f4ddea7d6734814a4ed5a0d3d87dcac6c2b5da59b6952419d60510e344d8474436b7d2c3f85d3e99d8e7564a92751c93a89c51769f4cafc16d7f90e9526a3286440288217d6f328f2dd4c77e3376257baaf57f0d299b0891e8023c4cb7120aa3bf9a7e08281f67281877f32bf98b6b68073637b83fd2544b4d9947694733dc557dc7f1509aa855f726db210023da247fefebd10f1f3f6708e29572d9eca4bb57e5d1a476315f707f4aa3079375d03e135e4c0342f4e42a3123b085effae148f7d8a5f7414f7e3fb06a030879e41636ac87a6dc5d4cfbcb86a3f3f78eecc09b2787273596422ccfdb974b0a5d3af17588012d62a4658c46e11ad894db1458e26366d2e63a63ac3bb66cdadc9fff8a976fce727dfb9ad4d63d85b801e81ed6d18d7a17cf58965bc60d6956bb1dd52f59a486bdb804ff80661de235885c421207c71ca2dbadc70c5e1c2397c7b1a13339f9e4db0af75d8493934643514ea9fdf22ec952229730593b877d36e01b003ba358c4856f4768983562db2a7500283cf8219f19d9c57c013bc674548672d5ebbc9b1f205af27601f8351cf96d71f96fb25e75a34b8aa6749aab0edf737d5329ab178e8285775b6225204046484d8fefa9dc6f03ff7e314214b4e60a431c76a9dabda6842fa3b1be5b5c239169574eb8dffb706d2c3648a57a2662fdb4ca8facaaa4396c3d6eb2ec6e77ee984d2cf5a117bf8f59acb43d7b2b1b67b3577f8a5407dbd3c3bd3b4130d8ce3c4727b45e7611f5c79be68af1c9506395e2aefb8c505734f544123800c85ca372c9471909ea4894abb4b27d9ddc378b00fcbec202fcaba21ba8fec596688ffd3611801028a46c2dd7cf58722cdecfe268e61729cb74c4b5e3a3acd82c5572118c8e1924f4487fda0f974968a5a7310d493275077644cfa1bdf08f78112bc3a945043dd8dd0772019da842d862a9902609e478a1e81fea5c53f4b17425af0583ad4b2c2a8f5ecd6ab10c8bad97c28b3e98347241d9fa58b013a7bc3f51858d614e2e748b4f53fe588597d5c94b06b6813844928c317237cee7427d4b75afad5dbbd4d6a16e4b039075dee26fcd226cb81af52bc2fd33b5760c929ca09867ad4fcceca35260d34be080cb040dba80e042d144c10bca9522989ca3f93385bc4ff4568d709abb2878df5b2adb5565d0a3f4ee7d27810a7e724ac20e581709e3be516394d8d21ae560117401e26171d21ffcd812b0809bbf133ba054caf347021b549a69cf36ff9d023ecdb3fb4334f363db6848abef544eec0698c89c49e80cc41443d18fb8197d0ceb43989d57857048e7400db6df0c160156dca8a09f5cf63cd76a5b32219fdb4db4af758be1ce603683ba8e672d6533b691f02054f345cc2566690d349a7ed21cf7caec6c38418d4b02b6d4a149760cef1d78df8a4bca443cd27ba5b68bfce3d0ad7232cc24bf105abb3d2e522acb19629112fa553dd2f243acff6343bab1a71024790c11cde2ad1c93590f091afb3b91f265b06eb6cb15dd03d43a9c0fc4aa919206c8da41d800e2b1f20b57004766ccb24b99988e41d347928c3caa1c23223e02a46ec2959335ff2505ba14622622c033d5323c23924aa05b44ffc60ff6adb5dbd686debbbc9766b13748655b8657d1f783dfecfc0b9197d5a5af62b4d99ce398ba4a4539262097c511029492b4c5202794415e34bf156e7ef8c01ede847844d826351acc7d2bd8a5be8184fd95639031575c4eb8374072c311d3b25b75e40ec6293a89fa9a77da6f98de14aadf4d73dae859647e6404369007f4ad7f51e80d8dc5bab7edf55b6a46b6f3479eabe74024a123a7f1d4c49408066a58e2899884149e9da7ec005d30dce071a41db5095723cc354b6352700f6ac2cd9a586ef993168a3a7ababd8297154866c7cd82fc7878d584134ff0855d9e86c8adc64c4af741902d0966b1ae8b6288b8fea750d9984a95400e5afd4084cb12a80d7436720341ffda3ff7a4728c72a0050b91a41845517fcfba64780b8cbd3ea8e32184ff362d225f3451cdaf858553cc316d334ce7a5a612624f1ce471fa59e9d4af7815d6952876a3cf06de114691a940ba9d98b3e42df02861ce9980720f8db8839a97a15ee4539f83ac9a1cda0cbcc206aa62eaa68fc58372065f8b1e4027962e28eb39b67385b0eaeeaceb769ebdd3b996533fe935665a14e33133d5a1e815e67af89bef9a2d0576520b484e966e97be1640297434f291ecb925c399e9150c22efd201210f396d8df09d72c63e631711655d170cf6148645fff95412bbfff2c4b052a9ebaba1a8d3604b419accd8f378dfafdc093ce56bdb58f55a8bc5cb73b04e60fe1156a70df10819d4deda1bc308b0c76468f26e900b0c827661ad3c14cf3b35ab4c19591192645abd7ec996a82b8850b181c6bbed7625154212c1fde9558f714f8b1469a8f6841b0977b56d4bfbd13849acc7659a3519a73a564557b8376753738a6b0cabe5f9354bb7bb75e93edb6b8f253dd150ab144470c28a6f719ca38dfba5f1d4fea9929d249c20d5b94bf34812cdf8d1ba70ff5c2ae337bc9b5832da2c651f4f32d840bbd7f15625e6ab490a2af34be8e63db7c4cf592149c90da2240753aebeec2c6494945c78fec0ec7062ace97b74b8d191272e79baebe269fa72eaddc7ad017ba16a3f0b06029d9dabf1774a0e53937d97f453480525bb7d1064c37aa7e3d16b3889d13bfc6ae829b9a684ca46a20a5f62188396ac7574310143ddeea26c284d8da397bec8750a96ccb4ad80d02da90118c2f94447765cf5757f9241afd0219e24b177cacbc0a4392e27bbe4cb23c4a53609e61b1fc2e2826dd57a4886075c3fa8a619db5b51e95c50ada4f25a257023f186f28a5f9e966d3e1199b18472221d5a9acac38ebcdca4e98b33a2b854241a8e03977e85f5843160cade3b449ca0c14e11a3bb8c787639f0e6be595648b10172c02de77f0ea98042eb680f46eb6c93d8d39fdc16e44f746f8dcb96183230f38befb2d5830e2ce9d8aa181f6f2b5ea77d7d9dcc378ea578bc395c204321c2e4add43fe0f41be9179647e0117814c9e688df43eab69ce3d1bd3ad8f86d38d08b91fc23bb51098cd8fbbbc89404b42ffafdd5dec2fac386d98e1850d30328b22846e2b652bdbb39bbe9759f59227800094d5a5dc61d3bee3ca45188ce261aac79947f3c3d963e70f39a2c39128cd914ccbe0ae7c137e3ca9349d23d6db6161369c11e07c71770202491fbf9be4b6bb8d57eaf04bb2008c91ebeef935f6c72e947339dac8bc077116b153816480b604aa936987a4cecd1f0566aa976a6a0ded2ba688967e91344afde8c63702a65012dab36bd77e85c694d84ecd111a6e0969681d748952a4b8781f3026b33bd6b16dcc290af8cd3aa3d5a2032eb7811f0299c5e04a860d589d2e6d753e89f7b7075f9029f84c69605dac63222c13a2cfa5f5180ab5739653380a986f5c48d87b65965351f26589bb911f5fd3aa7a44308bc85c0212b4f98addc2d804c79f6178105a4539286eebc555b59e5ac61c0aeadb6f598fea0a262ebd8b8fea067cc30b2f886e50365bb38a77e682a9a1ff780b4963976e442a19336ab14ccd727c1e0dadf64a10d59ddd03c2207ecd93f7cc9ecf46dd09777f34c317dfd3f9d503042308d110ef8ab67784c65b13f93d11de26bcf0681b21cb49a0ece535e2be5f2fcadfc1e7a608264c23afca1ff8b3155ca4fd6251f312948d687f3d68b968583951903b4f11ba10c24e6272b6a7e360deb118f316ac6272e12c82f6fbbea1026bcad91eaea6fa764ed4d000bd6be1242f5c321766bc2cd6c45a5af5b091e8bd0801766f229544b334f4983f41914c15aa5b9e64cf024d1fcdcaae6facea753c7136f6763033dbff886275355e9baa899393844e95127d166e2d83e73ef2c8c7238c2779c7e78418a59fecfa9753878603969838317e126200c42345663e562b3fb34e390364bc3049b57bd85a3e527fbc5098c08ab84c3ab9b8b76ddf06278999f42ecfeba2bf53e108720b9a291261f575cdc07a58e35e8fdb6bd594c6ccde3a9bb7f9cc58b99deeb7dd9629d316953a913c165df9968497c335a2132fb84efa13608aca4ce35e468df5111957b29e5ef07034be78ec82dcd9bf89340a3957e184b5c38670241741ae3b985d96560b6c69b804c5374d6907732fdde973a2e3ca8f7f1ccac2939b6c9aef33348db2f32b017aee7c972ea757fd6cb76f684477ec5bc95a9dda0b1a4a61905062db92064b73c0bc567ac9e9482580e2ba8d2592409ae314689d6ed676cbc9f7096b167b96c9713f747d6b1a6bedaa8559f39c5001693ceb8a23e39c2da1d3831910a8aa6bcb7baa4b2629a5cb278843dd11cdb3e7ccaaddf9a317280", 0x1000, 0xfffffffffffffffc) mkdir(&(0x7f00000001c0)='./file0\x00', 0x1da) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) unlinkat(r0, &(0x7f00000004c0)='./file0\x00', 0x200) ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(0xffffffffffffffff, 0xc080661a, &(0x7f0000000140)={@desc={0x1, 0x0, @desc1}}) 00:56:58 executing program 7: fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000080)={0x0, 0x0}) r1 = getpgrp(0x0) pidfd_open(r1, 0x0) waitid(0x0, r1, 0x0, 0x1000000, &(0x7f00000000c0)) ptrace(0x10, r0) 00:56:58 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x3f000000, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:56:58 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000007, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:56:58 executing program 5: prctl$PR_SET_IO_FLUSHER(0x39, 0x1) syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$inet_mreqn(r0, 0x0, 0x21, 0xffffffffffffffff, &(0x7f0000000480)) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000040)) 00:56:58 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(0xffffffffffffffff, 0x8982, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)={0xc}) connect$inet6(r1, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) finit_module(r1, &(0x7f0000000040)='\xb3\x01\x00\x00\x00]m\x0e\x93\xcf\xcd%\x91\x114\x80\x84\x8e3\x99\xd66\'|\x90&\x81\x81\xa5\xb9\xa4\xa5!\x82jno\x0fr\xbc\x8e\xee\x00'/57, 0x3) open_by_handle_at(r1, &(0x7f00000003c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x3) connect$inet6(r1, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000400), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) sendmmsg$inet6(r1, &(0x7f0000004d00), 0x2f, 0x0) 00:56:58 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 17) [ 976.831102] FAULT_INJECTION: forcing a failure. [ 976.831102] name failslab, interval 1, probability 0, space 0, times 0 [ 976.833825] CPU: 0 PID: 11452 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 976.833863] FAULT_INJECTION: forcing a failure. [ 976.833863] name failslab, interval 1, probability 0, space 0, times 0 [ 976.835431] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 976.835440] Call Trace: [ 976.835467] dump_stack+0x107/0x167 [ 976.835495] should_fail.cold+0x5/0xa [ 976.841931] ? kmem_cache_alloc+0x2a6/0x310 [ 976.842924] ? create_object.isra.0+0x3a/0xa30 [ 976.843988] should_failslab+0x5/0x20 [ 976.844867] kmem_cache_alloc+0x5b/0x310 [ 976.845810] ? mempool_alloc+0x155/0x360 [ 976.846692] create_object.isra.0+0x3a/0xa30 [ 976.847701] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 976.848880] kmem_cache_alloc+0x159/0x310 [ 976.849842] bvec_alloc+0x148/0x2f0 [ 976.850641] bio_alloc_bioset+0x40a/0x600 [ 976.851593] ? bvec_alloc+0x2f0/0x2f0 [ 976.852486] ? iov_iter_npages+0x1fd/0xa70 [ 976.853487] iomap_dio_bio_actor+0x518/0xef0 [ 976.854531] iomap_dio_actor+0x36f/0x560 [ 976.855477] ? __x64_sys_sendfile64+0x1d1/0x210 [ 976.856552] ? do_syscall_64+0x33/0x40 [ 976.857410] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 976.858589] iomap_apply+0x289/0x810 [ 976.859483] ? iomap_dio_rw+0x90/0x90 [ 976.860370] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 976.861657] ? mark_held_locks+0x9e/0xe0 [ 976.862522] ? filemap_check_errors+0xa5/0x150 [ 976.863496] __iomap_dio_rw+0x6cd/0x1110 [ 976.864348] ? iomap_dio_rw+0x90/0x90 [ 976.865173] ? iomap_dio_bio_actor+0xef0/0xef0 [ 976.866133] ? ext4_orphan_add+0x253/0x9e0 [ 976.867020] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 976.868068] ? ext4_empty_dir+0xae0/0xae0 [ 976.868937] ? jbd2__journal_start+0xf3/0x7e0 [ 976.869896] iomap_dio_rw+0x31/0x90 [ 976.870663] ext4_file_write_iter+0xe0e/0x1530 [ 976.871651] ? ext4_file_read_iter+0x4c0/0x4c0 [ 976.872605] ? kasan_save_stack+0x32/0x40 [ 976.873472] ? kasan_save_stack+0x1b/0x40 [ 976.874339] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 976.875407] ? iter_file_splice_write+0x165/0xc90 [ 976.876422] ? direct_splice_actor+0x10f/0x170 [ 976.877377] ? splice_direct_to_actor+0x387/0x980 [ 976.878384] ? do_splice_direct+0x1c4/0x290 [ 976.879288] ? do_sendfile+0x553/0x11e0 [ 976.880133] ? __x64_sys_sendfile64+0x1d1/0x210 [ 976.881105] ? do_syscall_64+0x33/0x40 [ 976.881922] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 976.883044] do_iter_readv_writev+0x476/0x750 [ 976.883993] ? _cond_resched+0x10/0x30 [ 976.884815] ? new_sync_write+0x660/0x660 [ 976.885678] ? avc_policy_seqno+0x9/0x70 [ 976.886530] ? selinux_file_permission+0x92/0x520 [ 976.887554] ? security_file_permission+0xb1/0xe0 [ 976.888581] do_iter_write+0x191/0x700 [ 976.889402] ? trace_hardirqs_on+0x5b/0x180 [ 976.890319] vfs_iter_write+0x70/0xa0 [ 976.891121] iter_file_splice_write+0x726/0xc90 [ 976.892119] ? generic_splice_sendpage+0x140/0x140 [ 976.893189] ? security_file_permission+0xb1/0xe0 [ 976.894204] ? generic_splice_sendpage+0x140/0x140 [ 976.895235] direct_splice_actor+0x10f/0x170 [ 976.896182] splice_direct_to_actor+0x387/0x980 [ 976.897171] ? pipe_to_sendpage+0x380/0x380 [ 976.898082] ? do_splice_to+0x160/0x160 [ 976.898914] ? security_file_permission+0xb1/0xe0 [ 976.899936] do_splice_direct+0x1c4/0x290 [ 976.900809] ? splice_direct_to_actor+0x980/0x980 [ 976.901820] ? avc_policy_seqno+0x9/0x70 [ 976.902676] ? security_file_permission+0xb1/0xe0 [ 976.903709] do_sendfile+0x553/0x11e0 [ 976.904521] ? do_pwritev+0x270/0x270 [ 976.905326] ? wait_for_completion_io+0x270/0x270 [ 976.906343] ? rcu_read_lock_any_held+0x75/0xa0 [ 976.907315] ? vfs_write+0x354/0xb10 [ 976.908112] __x64_sys_sendfile64+0x1d1/0x210 [ 976.909058] ? __ia32_sys_sendfile+0x220/0x220 [ 976.910025] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 976.911130] ? syscall_enter_from_user_mode+0x1d/0x50 [ 976.912226] do_syscall_64+0x33/0x40 [ 976.913015] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 976.914092] RIP: 0033:0x7fe85904db19 [ 976.914873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 976.918741] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 976.920365] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 976.921872] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 976.923384] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 976.924889] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 976.926389] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 [ 976.927935] CPU: 1 PID: 11462 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 976.929439] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 976.931219] Call Trace: [ 976.931801] dump_stack+0x107/0x167 [ 976.932577] should_fail.cold+0x5/0xa [ 976.933389] ? create_object.isra.0+0x3a/0xa30 [ 976.934358] should_failslab+0x5/0x20 [ 976.935173] kmem_cache_alloc+0x5b/0x310 [ 976.936054] create_object.isra.0+0x3a/0xa30 [ 976.937017] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 976.938113] kmem_cache_alloc_node+0x169/0x330 [ 976.939109] copy_process+0x3305/0x78b0 [ 976.939977] ? stack_trace_save+0x8c/0xc0 [ 976.940867] ? lock_acquire+0x197/0x470 [ 976.941710] ? io_sq_thread_park+0x79/0xd0 [ 976.942616] ? lock_release+0x680/0x680 [ 976.943489] ? __cleanup_sighand+0xb0/0xb0 [ 976.944394] ? kernel_text_address+0xf2/0x120 [ 976.945362] ? find_held_lock+0x2c/0x110 [ 976.946237] ? io_uring_setup+0x1c23/0x2980 [ 976.947188] ? lock_downgrade+0x6d0/0x6d0 [ 976.948092] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 976.949147] create_io_thread+0xb6/0xf0 [ 976.950013] ? pidfd_prepare+0x80/0x80 [ 976.950857] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 976.951933] io_uring_setup+0x1d79/0x2980 [ 976.952828] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 976.953910] ? wait_for_completion_io+0x270/0x270 [ 976.954965] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 976.956101] ? syscall_enter_from_user_mode+0x1d/0x50 [ 976.957212] do_syscall_64+0x33/0x40 [ 976.958011] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 976.959108] RIP: 0033:0x7f707acaeb19 [ 976.959911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 976.963949] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 976.965592] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 976.967122] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 976.968669] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 976.970201] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 976.971748] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:56:58 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x80ffffff, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:56:58 executing program 5: write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x37, 0x2, {0x1, 0x6, 0x1ff, 0x0, 0x1, '.'}}, 0x1f) write$P9_RCLUNK(0xffffffffffffffff, &(0x7f0000000040)={0x7, 0x79, 0x2}, 0x7) ioctl$AUTOFS_IOC_PROTOVER(0xffffffffffffffff, 0x80049363, &(0x7f0000000080)) r0 = socket$inet(0x2, 0xa, 0xff) ioctl$AUTOFS_IOC_ASKUMOUNT(r0, 0x80049370, &(0x7f00000000c0)) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000100)={0x1f, 0x8, 0x10001, 0x2, 0x5}) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/pm_freeze_timeout', 0x18080, 0x188) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x81, 0x5, 0x0, 0x9, 0xc, 0x4, "49a5fe98e3ab934aa26e3b2ad81c84e890e51d46093fad740d21da34d46cdde011cbf48baab2895ef51a6d3380e1731a042f7c00f16a1623c7e46e164bdb95bc", "a5484c235087c10202b90f8b2560393a4676428660b9a9674e600a0407457c6ecc01791d9ddbdf5629cf8a41c180a7f5c995a080f991b49c94726ecf21e1b792", "f0ff2d7123a28fc94a99cad1a30bb873493e125f9e1fc9cac797dd8d7985f53d", [0xffff, 0x3]}) getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000280)=""/8, &(0x7f00000002c0)=0x8) ioctl$F2FS_IOC_RESIZE_FS(r0, 0x4008f510, &(0x7f0000000300)=0x7fffffff) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000340)=0x20000) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000440), 0x100, 0x0) connect$inet(r2, &(0x7f0000000480)={0x2, 0x4e23, @broadcast}, 0x10) r3 = socket$netlink(0x10, 0x3, 0x8) ioctl$sock_SIOCGIFCONF(r3, 0x8912, &(0x7f0000000540)=@req={0x28, &(0x7f0000000500)={'veth1_virt_wifi\x00', @ifru_data=&(0x7f00000004c0)="64581c7ef25016facdb218e5058943302b32aef9a405a6aa8328ed9c84cff319"}}) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c) ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r2, 0x40485404, &(0x7f0000000580)={{0x2, 0x0, 0x706e, 0x2, 0x1}, 0x3f, 0x100000000}) write$P9_RCLUNK(0xffffffffffffffff, &(0x7f0000000600)={0x7, 0x79, 0x2}, 0x7) setsockopt$IP_VS_SO_SET_FLUSH(0xffffffffffffffff, 0x0, 0x485, 0x0, 0x0) mkdirat(r2, &(0x7f0000000640)='./file0\x00', 0x100) 00:56:58 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000008, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:56:58 executing program 0: syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000040)=@sr0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='aufs\x00', 0x11020, &(0x7f0000000140)='^\xea\x00') perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40086607, &(0x7f00000000c0)) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) 00:56:58 executing program 6: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0x2010, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x3, 0x0, 0x8000) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READ_FIXED={0x4, 0x2, 0x4004, @fd=r2, 0x5, 0x40, 0x7fffffff, 0x5, 0x0, {0x1}}, 0x5) getsockopt$bt_BT_SNDMTU(r0, 0x6, 0x3, 0x0, &(0x7f0000000140)) 00:56:59 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 18) 00:56:59 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x9effffff, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:56:59 executing program 7: fork() recvmsg$unix(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000080), 0x6e, &(0x7f0000000440)=[{&(0x7f0000000100)=""/249, 0xf9}, {&(0x7f0000000200)=""/25, 0x19}, {&(0x7f0000000240)=""/16, 0x10}, {&(0x7f0000000280)=""/164, 0xa4}, {&(0x7f0000000340)=""/245, 0xf5}], 0x5, &(0x7f00000004c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}, 0x1) wait4(r0, &(0x7f0000000580), 0x40000000, &(0x7f00000005c0)) waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) [ 977.243495] FAULT_INJECTION: forcing a failure. [ 977.243495] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 977.246119] CPU: 0 PID: 11586 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 977.247588] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 977.249333] Call Trace: [ 977.249895] dump_stack+0x107/0x167 [ 977.250667] should_fail.cold+0x5/0xa [ 977.251483] __alloc_pages_nodemask+0x182/0x600 [ 977.252462] ? lock_downgrade+0x6d0/0x6d0 [ 977.253336] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 977.254604] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 977.255720] ? kmem_cache_alloc_node+0x2bc/0x330 [ 977.256722] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 977.257829] copy_process+0x62b/0x78b0 [ 977.258655] ? stack_trace_save+0x8c/0xc0 [ 977.259544] ? lock_acquire+0x197/0x470 [ 977.260382] ? io_sq_thread_park+0x79/0xd0 [ 977.261279] ? lock_release+0x680/0x680 [ 977.262121] ? __cleanup_sighand+0xb0/0xb0 [ 977.263014] ? kernel_text_address+0xf2/0x120 [ 977.263972] ? find_held_lock+0x2c/0x110 [ 977.264832] ? io_uring_setup+0x1c23/0x2980 [ 977.265747] ? lock_downgrade+0x6d0/0x6d0 [ 977.266620] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 977.267664] create_io_thread+0xb6/0xf0 [ 977.268503] ? pidfd_prepare+0x80/0x80 [ 977.269328] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 977.270376] io_uring_setup+0x1d79/0x2980 [ 977.271262] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 977.272338] ? wait_for_completion_io+0x270/0x270 [ 977.273375] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 977.274479] ? syscall_enter_from_user_mode+0x1d/0x50 [ 977.275575] do_syscall_64+0x33/0x40 [ 977.276357] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 977.277433] RIP: 0033:0x7f707acaeb19 [ 977.278214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 977.282115] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 977.283723] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 977.285229] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 977.286731] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 977.288240] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 977.289747] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:57:11 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 61) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:57:11 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000018, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:57:11 executing program 7: r0 = fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) wait4(r0, &(0x7f0000000080), 0x1000000, &(0x7f00000000c0)) 00:57:11 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/consoles\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3d59}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0x0, r0, 0x0) symlink(&(0x7f0000000180)='./file1\x00', &(0x7f0000000980)='./file1\x00') r2 = socket$nl_generic(0x10, 0x3, 0x10) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) open_by_handle_at(r3, 0x0, 0x200900) bind$inet6(r3, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) fcntl$setstatus(r3, 0x4, 0xc00) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x5) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(r2, &(0x7f0000000640)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x20, 0x0, 0x0, 0x70bd25, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x5, 0x75}}}}, ["", "", ""]}, 0x20}}, 0x4000000) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r4 = syz_io_uring_setup(0x2a80, &(0x7f0000000180)={0x0, 0x1, 0x10}, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000000440), &(0x7f00000002c0)) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) sendmsg$NL80211_CMD_SET_MPATH(r2, &(0x7f0000000580)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000500)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYBLOB="000426bd7000fedbdf2516000000080003", @ANYRESDEC=r1, @ANYBLOB="0c009900040000006e0000000600080211e5762367be50d5f1be8b79ab00000100000a00060008021100000100000a001a0008021100000100000a00a25eec60d31a0287e255ea1a000500"], 0x70}, 0x1, 0x0, 0x0, 0x10}, 0x4015) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_loose}, {@cache_none}]}}) sendmsg$inet6(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000280)}, {&(0x7f00000000c0)="9a17e64cdc67", 0x6}, {&(0x7f0000000100)="11fa030674fe5d5c8842559152d3126c4249dfe24d8d98a6439e8cb160e171b641b5cd528f240594de4abf45957c095ea90b68d62f55fc64541601bff7e106fb023db64e8c15f6346c745da761ffee826727bd98b2bffae59c91c021ffc59f6081dbaa196e95a3b173cddce6b01c1e5bac179d6881414edcc12bf994d30576798a19d0f9db5d054e8fdf2821230a23ed81a02369234a", 0x96}, {&(0x7f0000000380)="d21e0ed1ee27c972fd2bef67c6a077b239514e0a205b38c982a5a6ca75c562f403f161f541cbc23b2e120f45812688f0de482c2bf16064f11091e836607a0e02", 0x40}], 0x4}, 0x38048044) dup2(r2, r3) 00:57:11 executing program 5: ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=0x0) r1 = getpgrp(0x0) pidfd_open(r1, 0x0) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x8200, 0x0) r3 = syz_mount_image$iso9660(&(0x7f0000000380), &(0x7f00000003c0)='./file0/file0\x00', 0x5, 0x1, &(0x7f0000000500)=[{&(0x7f0000000400)="205f48f5bb7a0f3ea386e40f582694f4d8de32d144059aa6e15021f42275411f34b36b8879986766009c0960077635d976cf66d01a1531e77b018b4c5adc2bff856b9bc6d407539266ba9a0d278bbe5e09786f7ccb822dd9cba8fc13c18c096c45440eecb62273b577328136f467619023f7b9595e7ce055dca6ef5167b6f4cb0fda5647d7a0ab11816a3e16744c4ac1023fa85f1e9e366297ee0fb3d205b81afaa8f8e3180e64e519687d4c76dd3a779c888e213833a9714ece7e8509655865ddb70dcf216b1185ead2e0d060411d5a621078f01476741321f6d371b012d6ea39bb60343ce4275d47e3d3a7954343a9", 0xf0, 0x2ff7}], 0x2203c, &(0x7f0000000540)={[{@cruft}, {@utf8}, {@map_off}, {@block={'block', 0x3d, 0x200}}, {@unhide}, {@uid}], [{@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@fsmagic={'fsmagic', 0x3d, 0xd708}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@hash}, {@dont_measure}, {@fowner_eq}, {@obj_user={'obj_user', 0x3d, '@-\\$\x9e&\xad'}}, {@permit_directio}]}) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r5, 0x3, 0x0, 0x8000) ioctl$FIONCLEX(r5, 0x5450) kcmp$KCMP_EPOLL_TFD(r0, r1, 0x7, r2, &(0x7f0000000140)={0xffffffffffffffff, r4, 0x2}) syz_mount_image$nfs(0x0, 0x0, 0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000000140)}, {0x0}], 0x100800, &(0x7f0000000200)=ANY=[@ANYBLOB="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"]) r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x630080, 0x8) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r6, 0xc0406619, &(0x7f00000001c0)={@desc={0x1, 0x0, @desc1}}) ioctl$TIOCL_UNBLANKSCREEN(r4, 0x541c, &(0x7f0000000000)) 00:57:11 executing program 6: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x96, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = getpgrp(0x0) pidfd_open(r1, 0x0) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x1, 0x20, 0x81, 0x1, 0x0, 0x800, 0x100, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0x3ff, 0x4}, 0x40040, 0x10001, 0x5, 0x1, 0xffffffffffffffa6, 0x20, 0x6, 0x0, 0x6, 0x0, 0x8}, r1, 0xe, r0, 0x5) 00:57:11 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 19) 00:57:11 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0xf0ffffff, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 989.498000] FAULT_INJECTION: forcing a failure. [ 989.498000] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 989.500559] CPU: 1 PID: 11706 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 989.502000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 989.503774] Call Trace: [ 989.504333] dump_stack+0x107/0x167 [ 989.505098] should_fail.cold+0x5/0xa 00:57:11 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1000000000001c, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 989.505899] __alloc_pages_nodemask+0x182/0x600 [ 989.507003] ? lock_downgrade+0x6d0/0x6d0 [ 989.507889] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 989.509138] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 989.510225] ? kmem_cache_alloc_node+0x2bc/0x330 [ 989.511220] copy_process+0x62b/0x78b0 [ 989.512047] ? stack_trace_save+0x8c/0xc0 [ 989.512923] ? lock_acquire+0x197/0x470 [ 989.513752] ? io_sq_thread_park+0x79/0xd0 [ 989.514631] ? lock_release+0x680/0x680 [ 989.515463] ? __cleanup_sighand+0xb0/0xb0 [ 989.516353] ? kernel_text_address+0xf2/0x120 [ 989.517295] ? find_held_lock+0x2c/0x110 [ 989.518152] ? io_uring_setup+0x1c23/0x2980 [ 989.519054] ? lock_downgrade+0x6d0/0x6d0 [ 989.519932] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 989.520946] create_io_thread+0xb6/0xf0 [ 989.521776] ? pidfd_prepare+0x80/0x80 [ 989.522590] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 989.523637] io_uring_setup+0x1d79/0x2980 [ 989.524522] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 989.525674] ? wait_for_completion_io+0x270/0x270 [ 989.526981] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 989.528376] ? syscall_enter_from_user_mode+0x1d/0x50 [ 989.529497] do_syscall_64+0x33/0x40 [ 989.530304] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 989.531396] RIP: 0033:0x7f707acaeb19 [ 989.532214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 989.536148] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 989.537773] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 989.539291] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 989.540877] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 989.542434] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 00:57:11 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000063, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 989.544017] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 989.561136] loop5: detected capacity change from 0 to 24064 [ 989.585953] FAULT_INJECTION: forcing a failure. [ 989.585953] name failslab, interval 1, probability 0, space 0, times 0 [ 989.588444] CPU: 1 PID: 11722 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 989.589926] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 989.591687] Call Trace: [ 989.592252] dump_stack+0x107/0x167 [ 989.593025] should_fail.cold+0x5/0xa [ 989.593832] ? jbd2__journal_start+0x190/0x7e0 [ 989.594797] should_failslab+0x5/0x20 [ 989.595610] kmem_cache_alloc+0x5b/0x310 [ 989.596484] jbd2__journal_start+0x190/0x7e0 [ 989.597410] __ext4_journal_start_sb+0x214/0x390 [ 989.598411] ext4_dio_write_end_io+0x22b/0x600 [ 989.599379] iomap_dio_complete+0x1a1/0x790 [ 989.600296] ? ext4_es_delayed_clu+0x3d0/0x3d0 [ 989.601262] iomap_dio_rw+0x63/0x90 [ 989.602033] ext4_file_write_iter+0xe0e/0x1530 [ 989.603039] ? ext4_file_read_iter+0x4c0/0x4c0 [ 989.603992] ? kasan_save_stack+0x32/0x40 [ 989.604862] ? kasan_save_stack+0x1b/0x40 [ 989.605707] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 989.606781] ? iter_file_splice_write+0x165/0xc90 00:57:11 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/consoles\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3d59}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0x0, r0, 0x0) symlink(&(0x7f0000000180)='./file1\x00', &(0x7f0000000980)='./file1\x00') r2 = socket$nl_generic(0x10, 0x3, 0x10) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) open_by_handle_at(r3, 0x0, 0x200900) bind$inet6(r3, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) fcntl$setstatus(r3, 0x4, 0xc00) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x5) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(r2, &(0x7f0000000640)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x20, 0x0, 0x0, 0x70bd25, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x5, 0x75}}}}, ["", "", ""]}, 0x20}}, 0x4000000) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r4 = syz_io_uring_setup(0x2a80, &(0x7f0000000180)={0x0, 0x1, 0x10}, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000000440), &(0x7f00000002c0)) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) sendmsg$NL80211_CMD_SET_MPATH(r2, &(0x7f0000000580)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000500)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYBLOB="000426bd7000fedbdf2516000000080003", @ANYRESDEC=r1, @ANYBLOB="0c009900040000006e0000000600080211e5762367be50d5f1be8b79ab00000100000a00060008021100000100000a001a0008021100000100000a00a25eec60d31a0287e255ea1a000500"], 0x70}, 0x1, 0x0, 0x0, 0x10}, 0x4015) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_loose}, {@cache_none}]}}) sendmsg$inet6(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000280)}, {&(0x7f00000000c0)="9a17e64cdc67", 0x6}, {&(0x7f0000000100)="11fa030674fe5d5c8842559152d3126c4249dfe24d8d98a6439e8cb160e171b641b5cd528f240594de4abf45957c095ea90b68d62f55fc64541601bff7e106fb023db64e8c15f6346c745da761ffee826727bd98b2bffae59c91c021ffc59f6081dbaa196e95a3b173cddce6b01c1e5bac179d6881414edcc12bf994d30576798a19d0f9db5d054e8fdf2821230a23ed81a02369234a", 0x96}, {&(0x7f0000000380)="d21e0ed1ee27c972fd2bef67c6a077b239514e0a205b38c982a5a6ca75c562f403f161f541cbc23b2e120f45812688f0de482c2bf16064f11091e836607a0e02", 0x40}], 0x4}, 0x38048044) dup2(r2, r3) 00:57:11 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 20) [ 989.607772] ? direct_splice_actor+0x10f/0x170 [ 989.608949] ? splice_direct_to_actor+0x387/0x980 [ 989.609958] ? do_splice_direct+0x1c4/0x290 [ 989.610883] ? do_sendfile+0x553/0x11e0 [ 989.611730] ? __x64_sys_sendfile64+0x1d1/0x210 [ 989.612704] ? do_syscall_64+0x33/0x40 [ 989.613524] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 989.614663] do_iter_readv_writev+0x476/0x750 [ 989.615614] ? _cond_resched+0x10/0x30 [ 989.616429] ? new_sync_write+0x660/0x660 [ 989.617304] ? avc_policy_seqno+0x9/0x70 [ 989.618164] ? selinux_file_permission+0x92/0x520 [ 989.619177] ? security_file_permission+0xb1/0xe0 [ 989.620223] do_iter_write+0x191/0x700 [ 989.621046] ? trace_hardirqs_on+0x5b/0x180 [ 989.621956] vfs_iter_write+0x70/0xa0 [ 989.622768] iter_file_splice_write+0x726/0xc90 [ 989.623773] ? generic_splice_sendpage+0x140/0x140 [ 989.624821] ? security_file_permission+0xb1/0xe0 [ 989.625835] ? generic_splice_sendpage+0x140/0x140 [ 989.626870] direct_splice_actor+0x10f/0x170 [ 989.627871] splice_direct_to_actor+0x387/0x980 [ 989.629123] ? pipe_to_sendpage+0x380/0x380 [ 989.630252] ? do_splice_to+0x160/0x160 [ 989.631289] ? security_file_permission+0xb1/0xe0 [ 989.632560] do_splice_direct+0x1c4/0x290 [ 989.633632] ? splice_direct_to_actor+0x980/0x980 [ 989.634827] ? avc_policy_seqno+0x9/0x70 [ 989.635627] FAULT_INJECTION: forcing a failure. [ 989.635627] name failslab, interval 1, probability 0, space 0, times 0 [ 989.635713] ? security_file_permission+0xb1/0xe0 [ 989.638023] do_sendfile+0x553/0x11e0 [ 989.638866] ? do_pwritev+0x270/0x270 [ 989.639688] ? wait_for_completion_io+0x270/0x270 [ 989.640721] ? rcu_read_lock_any_held+0x75/0xa0 [ 989.641707] ? vfs_write+0x354/0xb10 [ 989.642510] __x64_sys_sendfile64+0x1d1/0x210 [ 989.643472] ? __ia32_sys_sendfile+0x220/0x220 [ 989.644496] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 989.645619] ? syscall_enter_from_user_mode+0x1d/0x50 [ 989.646730] do_syscall_64+0x33/0x40 [ 989.647545] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 989.648642] RIP: 0033:0x7fe85904db19 [ 989.649455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 989.653386] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 989.655023] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 989.656552] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 989.658079] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 989.659612] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 989.661138] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 [ 989.662673] CPU: 0 PID: 11827 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 989.663479] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 989.664437] Call Trace: [ 989.664744] dump_stack+0x107/0x167 [ 989.665165] should_fail.cold+0x5/0xa [ 989.665598] ? __delayacct_tsk_init+0x1b/0x80 [ 989.666112] should_failslab+0x5/0x20 [ 989.666550] kmem_cache_alloc+0x5b/0x310 [ 989.667013] ? security_capable+0x95/0xc0 [ 989.667493] __delayacct_tsk_init+0x1b/0x80 [ 989.667998] copy_process+0x3399/0x78b0 [ 989.668454] ? stack_trace_save+0x8c/0xc0 [ 989.668930] ? lock_acquire+0x197/0x470 [ 989.669385] ? io_sq_thread_park+0x79/0xd0 [ 989.669867] ? __cleanup_sighand+0xb0/0xb0 [ 989.670348] ? kernel_text_address+0xf2/0x120 [ 989.670864] ? find_held_lock+0x2c/0x110 [ 989.671327] ? io_uring_setup+0x1c23/0x2980 [ 989.671825] ? lock_downgrade+0x6d0/0x6d0 [ 989.672295] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 989.672853] create_io_thread+0xb6/0xf0 [ 989.673302] ? pidfd_prepare+0x80/0x80 [ 989.673743] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 989.674308] io_uring_setup+0x1d79/0x2980 [ 989.674786] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 989.675360] ? wait_for_completion_io+0x270/0x270 [ 989.675929] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 989.676529] ? syscall_enter_from_user_mode+0x1d/0x50 [ 989.677123] do_syscall_64+0x33/0x40 [ 989.677543] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 989.678126] RIP: 0033:0x7f707acaeb19 [ 989.678551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 989.680655] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 989.681521] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 989.682330] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 989.683138] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 989.683953] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 989.684766] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:57:11 executing program 7: ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './file0\x00'}) ioctl$TUNDETACHFILTER(r0, 0x401054d6, 0x0) fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) setsockopt$inet6_IPV6_DSTOPTS(r1, 0x29, 0x3b, &(0x7f0000000080)={0x0, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x60}, @padn={0x1, 0x1, [0x0]}]}, 0x10) 00:57:11 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0xfffff000, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 989.729376] loop5: detected capacity change from 0 to 24064 00:57:11 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 21) [ 989.748107] FAULT_INJECTION: forcing a failure. [ 989.748107] name failslab, interval 1, probability 0, space 0, times 0 [ 989.749474] CPU: 0 PID: 11838 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 989.750270] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 989.751210] Call Trace: [ 989.751533] dump_stack+0x107/0x167 [ 989.751953] should_fail.cold+0x5/0xa [ 989.752391] ? alloc_pid+0xd7/0xd30 [ 989.752809] should_failslab+0x5/0x20 [ 989.753243] kmem_cache_alloc+0x5b/0x310 [ 989.753712] alloc_pid+0xd7/0xd30 [ 989.754112] ? copy_namespaces+0x1ca/0x4f0 [ 989.754597] copy_process+0x3b8b/0x78b0 [ 989.755056] ? stack_trace_save+0x8c/0xc0 [ 989.755548] ? __cleanup_sighand+0xb0/0xb0 [ 989.756032] ? kernel_text_address+0xf2/0x120 [ 989.756546] ? find_held_lock+0x2c/0x110 [ 989.757016] ? io_uring_setup+0x1c23/0x2980 [ 989.757510] ? lock_downgrade+0x6d0/0x6d0 [ 989.757985] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 989.758540] create_io_thread+0xb6/0xf0 [ 989.758992] ? pidfd_prepare+0x80/0x80 [ 989.759434] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 989.760007] io_uring_setup+0x1d79/0x2980 [ 989.760479] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 989.761052] ? wait_for_completion_io+0x270/0x270 [ 989.761618] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 989.762213] ? syscall_enter_from_user_mode+0x1d/0x50 [ 989.762805] do_syscall_64+0x33/0x40 [ 989.763232] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 989.763820] RIP: 0033:0x7f707acaeb19 [ 989.764248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 989.766350] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 989.767218] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 989.768069] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 989.768888] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 989.769697] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 989.770518] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:57:11 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000000000f0, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:57:26 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 62) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:57:26 executing program 6: r0 = syz_mount_image$ext4(&(0x7f0000001880)='ext3\x00', &(0x7f00000018c0)='./file2\x00', 0x0, 0x0, &(0x7f0000001ac0), 0x2000000, &(0x7f0000000000)={[{@sb}], [{@smackfsfloor={'smackfsfloor', 0x3d, 'ext3\x00'}}, {@subj_type={'subj_type', 0x3d, 'ext3\x00'}}]}) r1 = open_tree(r0, &(0x7f0000000040)='./file2\x00', 0x1) mount(&(0x7f00000000c0)=@filename='./file2\x00', &(0x7f0000000100)='./file2\x00', &(0x7f0000000140)='iso9660\x00', 0x2100, &(0x7f0000000180)='subj_type') ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x0, 0xee00}}, './file2\x00'}) 00:57:26 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x3, 0x0, 0x8000) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000b40)=[{{&(0x7f0000000080)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000d80)=""/232, 0xe8}, {&(0x7f0000000200)=""/15, 0xf}, {&(0x7f0000000240)=""/29, 0x1d}, {&(0x7f0000000280)=""/10, 0xa}, {&(0x7f00000002c0)=""/80, 0x50}, {&(0x7f0000000340)=""/50, 0x32}, {&(0x7f0000000380)=""/84, 0x54}, {&(0x7f0000000400)=""/170, 0xaa}, {&(0x7f00000004c0)=""/198, 0xc6}], 0x9, &(0x7f0000000100)=ANY=[@ANYBLOB="14c10000000000000100e7ff2745f0522dce240000c6d8f159016da1d11c2f9829e6b4f9a2d7386ee308dd72f0cee37daef8c8b2895a6af59e", @ANYRES32=r0, @ANYBLOB="000000004983dfec45951d7c1f84598bdc421e3669489067307f003bfb1598ef811a057402f590973ee95f78f1f12a30ca2b"], 0x18}}, {{&(0x7f00000006c0)=@abs, 0x6e, &(0x7f0000000c00)=[{&(0x7f0000000740)=""/219, 0xdb}], 0x1, &(0x7f0000000880)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x40}}, {{&(0x7f00000008c0)=@abs, 0x6e, &(0x7f0000000b00)=[{&(0x7f0000000940)=""/236, 0xec}, {&(0x7f0000000cc0)=""/154, 0x9a}], 0x2}}], 0x3, 0x12000, 0x0) waitid(0x0, r1, &(0x7f0000000000), 0x8, 0x0) 00:57:26 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000300, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:57:26 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 22) 00:57:26 executing program 0: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x3, 0x0, 0x7ffd) ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000240)={0x0, "84c76567004233c9fb6fce7988f76971"}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = socket$inet6(0xa, 0x0, 0x2) setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f00000000c0)=0x4, 0x4) r3 = accept$inet(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x0, @empty}, &(0x7f0000000140)=0x10) pwrite64(r3, &(0x7f0000000180)="7a267bc25fdac80650da2b6535ad0d4c30fb72e86d5feec8346b1064f57bb4bfb2a82cad63a15e6f6de59c19850eeff3da2708fd49e2fb2275c3efee1443e143d336c4f29fd32062bfed1b5cc7a38786ed1a36fd19ad27999eed7975db1a71f7dd60c7968213474a0ff1f9b1c28f5baf039a76f6671e33a68841727d979b59d5d9f4fed6b623cbea5ebb6b37ca1b9139d9b23b46242203cd923f03b1ef", 0x9d, 0x5) ioctl$sock_SIOCDELRT(r1, 0x890c, &(0x7f0000000040)={0x0, @l2tp={0x2, 0x0, @private=0xa010100, 0x4}, @generic={0x0, "57cf481afb61fcc7832412bbe49d"}, @phonet={0x23, 0x0, 0x3}, 0x6}) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000000)={'vxcan1\x00'}) 00:57:26 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0xffffff7f, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:57:26 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x96, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = getpgrp(0x0) pidfd_open(r1, 0x0) perf_event_open(&(0x7f00000014c0)={0xe3a3cf42dfda791, 0x80, 0x71, 0x7f, 0xa2, 0x73, 0x0, 0x8, 0x6, 0xd, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0x24, 0x20}, 0x100, 0x4, 0x8, 0x7, 0xf440, 0x2, 0x5, 0x0, 0xfa, 0x0, 0x9}, r1, 0x2, 0xffffffffffffffff, 0xa) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x3, 0x0, 0x8000) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f0000000080)=0x255b, 0xfffffffffffffcf2) r5 = syz_io_uring_complete(0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x7, 0x88, 0x99, 0x0, 0x6, 0x6401, 0x4, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x8fe, 0x558}, 0x400, 0x1, 0x496e6b28, 0x9, 0x9, 0xe5, 0x4, 0x0, 0x4, 0x0, 0xeb95}, 0xffffffffffffffff, 0x10, r0, 0x2) perf_event_open(&(0x7f0000000440)={0x4, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xf}, 0x1000, 0x2, 0x0, 0x0, 0x4, 0x0, 0x104}, 0x0, 0x0, r5, 0x0) ioctl$DVD_READ_STRUCT(0xffffffffffffffff, 0x530d, 0x0) sendmmsg$inet(r2, &(0x7f0000001d40)=[{{&(0x7f0000000180)={0x2, 0x4e24, @local}, 0x10, 0x0}}], 0x1, 0x0) recvmmsg(r2, &(0x7f0000001f00)=[{{0x0, 0x0, 0x0}}], 0x3, 0xc7bce561360a3f0a, 0x0) r6 = fsmount(0xffffffffffffffff, 0x1, 0x84) preadv(r6, &(0x7f0000000040)=[{&(0x7f00000003c0)=""/124, 0x7c}, {&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/235, 0xeb}, {&(0x7f00000002c0)=""/250, 0xfa}], 0x4, 0x23, 0x4) [ 1004.531067] FAULT_INJECTION: forcing a failure. [ 1004.531067] name failslab, interval 1, probability 0, space 0, times 0 [ 1004.533668] CPU: 0 PID: 11967 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1004.535212] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1004.537076] Call Trace: [ 1004.537671] dump_stack+0x107/0x167 [ 1004.538499] should_fail.cold+0x5/0xa [ 1004.539356] ? create_object.isra.0+0x3a/0xa30 [ 1004.540392] should_failslab+0x5/0x20 [ 1004.541247] kmem_cache_alloc+0x5b/0x310 [ 1004.542162] create_object.isra.0+0x3a/0xa30 [ 1004.543148] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1004.544307] kmem_cache_alloc+0x159/0x310 [ 1004.545255] alloc_pid+0xd7/0xd30 [ 1004.546042] ? copy_namespaces+0x1ca/0x4f0 [ 1004.546999] copy_process+0x3b8b/0x78b0 [ 1004.547911] ? stack_trace_save+0x8c/0xc0 [ 1004.548872] ? __cleanup_sighand+0xb0/0xb0 [ 1004.549830] ? kernel_text_address+0xf2/0x120 [ 1004.550842] ? find_held_lock+0x2c/0x110 [ 1004.551775] ? io_uring_setup+0x1c23/0x2980 [ 1004.552748] ? lock_downgrade+0x6d0/0x6d0 [ 1004.553684] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 1004.554786] create_io_thread+0xb6/0xf0 [ 1004.555692] ? pidfd_prepare+0x80/0x80 [ 1004.556575] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 1004.557690] io_uring_setup+0x1d79/0x2980 [ 1004.558629] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1004.559786] ? wait_for_completion_io+0x270/0x270 [ 1004.560893] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1004.562063] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1004.563223] do_syscall_64+0x33/0x40 [ 1004.564069] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1004.565224] RIP: 0033:0x7f707acaeb19 [ 1004.566063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1004.570224] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1004.571936] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1004.573535] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1004.575129] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1004.576732] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1004.578323] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1004.583297] EXT4-fs (loop6): VFS: Can't find ext4 filesystem 00:57:26 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000480, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1004.614275] FAULT_INJECTION: forcing a failure. [ 1004.614275] name failslab, interval 1, probability 0, space 0, times 0 [ 1004.615740] CPU: 1 PID: 11972 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1004.616594] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1004.617623] Call Trace: [ 1004.617955] dump_stack+0x107/0x167 [ 1004.618404] should_fail.cold+0x5/0xa [ 1004.618872] ? create_object.isra.0+0x3a/0xa30 [ 1004.619431] should_failslab+0x5/0x20 [ 1004.619907] kmem_cache_alloc+0x5b/0x310 [ 1004.620412] create_object.isra.0+0x3a/0xa30 [ 1004.620947] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1004.621578] kmem_cache_alloc+0x159/0x310 [ 1004.622088] jbd2__journal_start+0x190/0x7e0 [ 1004.622628] __ext4_journal_start_sb+0x214/0x390 [ 1004.623214] ext4_dio_write_end_io+0x22b/0x600 [ 1004.623790] iomap_dio_complete+0x1a1/0x790 [ 1004.624312] ? ext4_es_delayed_clu+0x3d0/0x3d0 [ 1004.624868] iomap_dio_rw+0x63/0x90 [ 1004.625309] ext4_file_write_iter+0xe0e/0x1530 [ 1004.625877] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1004.626430] ? kasan_save_stack+0x32/0x40 [ 1004.626929] ? kasan_save_stack+0x1b/0x40 [ 1004.627435] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1004.628067] ? iter_file_splice_write+0x165/0xc90 [ 1004.628649] ? direct_splice_actor+0x10f/0x170 [ 1004.629201] ? splice_direct_to_actor+0x387/0x980 [ 1004.629788] ? do_splice_direct+0x1c4/0x290 [ 1004.630316] ? do_sendfile+0x553/0x11e0 [ 1004.630796] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1004.631363] ? do_syscall_64+0x33/0x40 [ 1004.631851] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1004.632508] do_iter_readv_writev+0x476/0x750 [ 1004.633054] ? _cond_resched+0x10/0x30 [ 1004.633532] ? new_sync_write+0x660/0x660 [ 1004.634041] ? avc_policy_seqno+0x9/0x70 [ 1004.634536] ? selinux_file_permission+0x92/0x520 [ 1004.635126] ? security_file_permission+0xb1/0xe0 [ 1004.635732] do_iter_write+0x191/0x700 [ 1004.636207] ? trace_hardirqs_on+0x5b/0x180 [ 1004.636730] vfs_iter_write+0x70/0xa0 [ 1004.637189] iter_file_splice_write+0x726/0xc90 [ 1004.637762] ? generic_splice_sendpage+0x140/0x140 [ 1004.638365] ? security_file_permission+0xb1/0xe0 [ 1004.638949] ? generic_splice_sendpage+0x140/0x140 [ 1004.639543] direct_splice_actor+0x10f/0x170 [ 1004.640086] splice_direct_to_actor+0x387/0x980 [ 1004.640653] ? pipe_to_sendpage+0x380/0x380 [ 1004.641180] ? do_splice_to+0x160/0x160 [ 1004.641663] ? security_file_permission+0xb1/0xe0 [ 1004.642251] do_splice_direct+0x1c4/0x290 [ 1004.642758] ? splice_direct_to_actor+0x980/0x980 [ 1004.643337] ? avc_policy_seqno+0x9/0x70 [ 1004.643846] ? security_file_permission+0xb1/0xe0 [ 1004.644435] do_sendfile+0x553/0x11e0 [ 1004.644905] ? do_pwritev+0x270/0x270 [ 1004.645369] ? wait_for_completion_io+0x270/0x270 [ 1004.645955] ? rcu_read_lock_any_held+0x75/0xa0 [ 1004.646519] ? vfs_write+0x354/0xb10 [ 1004.646975] __x64_sys_sendfile64+0x1d1/0x210 [ 1004.647518] ? __ia32_sys_sendfile+0x220/0x220 [ 1004.648083] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1004.648720] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1004.649346] do_syscall_64+0x33/0x40 [ 1004.649795] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1004.650417] RIP: 0033:0x7fe85904db19 [ 1004.650871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1004.653119] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1004.654028] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1004.654886] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1004.655752] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1004.656625] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1004.657483] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 [ 1004.680810] EXT4-fs (loop6): VFS: Can't find ext4 filesystem 00:57:26 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 23) 00:57:26 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0xffffff80, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:57:26 executing program 7: fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x3, 0x0, 0x8000) getdents64(r0, &(0x7f0000000080)=""/99, 0x63) [ 1004.759189] FAULT_INJECTION: forcing a failure. [ 1004.759189] name failslab, interval 1, probability 0, space 0, times 0 [ 1004.760597] CPU: 1 PID: 12084 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1004.761394] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1004.762345] Call Trace: [ 1004.762666] dump_stack+0x107/0x167 [ 1004.763082] should_fail.cold+0x5/0xa [ 1004.763528] ? io_uring_alloc_task_context+0x99/0x6a0 [ 1004.764140] should_failslab+0x5/0x20 [ 1004.764575] kmem_cache_alloc_trace+0x55/0x320 [ 1004.765108] io_uring_alloc_task_context+0x99/0x6a0 [ 1004.765681] ? io_import_iovec+0x1120/0x1120 [ 1004.766198] io_uring_setup+0x1dd1/0x2980 [ 1004.766678] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1004.767257] ? wait_for_completion_io+0x270/0x270 [ 1004.767829] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1004.768432] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1004.769028] do_syscall_64+0x33/0x40 [ 1004.769456] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1004.770044] RIP: 0033:0x7f707acaeb19 [ 1004.770469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1004.772581] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1004.773451] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1004.774272] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1004.775099] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1004.775925] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1004.776737] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:57:40 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 63) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:57:40 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 24) 00:57:40 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000500, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:57:40 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) rmdir(&(0x7f0000000180)='./file0\x00') getdents64(r0, 0x0, 0x0) 00:57:41 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0xffffff9e, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:57:41 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$vfat(0x0, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000240), &(0x7f0000000500)={0x0, 0xfb, 0x103, 0x0, 0x3, "f1894a00ed00007a9c00000000000004", "7e0a354fdce8bd2520eb9dc1acf1a5e38351a9a9cfbd3baf144bff17b4cfd9cc62a22c2132f78cf14e3d749abd1f9d0200c7f7a0918ba6312ece55c71ca6f6c931795cddee60c32eae888bd692079ce70d3427c669802a6e3528a6e111377a6005000000b222a818982c9414c943a20a3512f85a7bcba9e3a99b98178e0b60661aadb4886344f7201626d7a18c3f5bdbb83edd0900000000000000408f94cc05e069d026acbfe97549031e5d7a4efd5ca094e69b815cddb6e35869d690d13a51b24cc6c9592285693ffde9e6b50acd8c6d74d00da98f6e06a181332d52afb0228401278cc8432409f0a24a0e4a68"}, 0x103, 0x2) syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000280), 0x111040, 0x0) fcntl$getownex(r1, 0x10, &(0x7f00000002c0)) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) openat(0xffffffffffffffff, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x0) getresgid(&(0x7f0000000000), 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="7472616e733d66642c7266646e6f3d815cf8b175f2a29b65bd5f22b8d5c82c703916d6e76b1d4712d7e6ab58557919a545ca9da91cb1fa068be7d9661c57dcc22934e1399ad7aa6f1cdbd032beb5002b0445e6808e7233936d082c1361babeaf7552cb76c0268fa27ca4a85e095757aa5e1372fced17009235e48179c3ed157f05141b0dbd40052734e288a8827b70969337ee6182a54edbed37b5c10bd6896b53a58d71b169b76f62a4663f6c39925d71f75708aae8868ec557feef63774989608460c1413fbdcd79d9145bb3eadd85e1a7b97cc06447cfa971f650e4d15ac6eb494be8581bb73bccd26b3d95313ca3f90f", @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB='achet\x00\x00\x00\x00\x00\x00\x00\t,\x00'/25]) 00:57:41 executing program 7: fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) r0 = socket$netlink(0x10, 0x3, 0x2) r1 = getpgrp(0x0) socket$inet6(0xa, 0xa, 0x96d) pidfd_open(r1, 0x0) sendmsg$NFQNL_MSG_VERDICT(r0, &(0x7f00000007c0)={&(0x7f00000004c0), 0xc, &(0x7f0000000780)={&(0x7f0000000500)={0x268, 0x1, 0x3, 0x801, 0x0, 0x0, {0x3, 0x0, 0x6}, [@NFQA_EXP={0xb8, 0xf, 0x0, 0x1, [@CTA_EXPECT_FN={0x13, 0xb, 'callforwarding\x00'}, @CTA_EXPECT_FN={0xa, 0xb, 'Q.931\x00'}, @CTA_EXPECT_MASTER={0x94, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x1f}}}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0xcf4332ae6349f085}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}]}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb}}, @NFQA_CT={0x190, 0xb, 0x0, 0x1, [@CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x6}, @CTA_PROTOINFO={0x1c, 0x4, 0x0, 0x1, @CTA_PROTOINFO_DCCP={0x18, 0x2, 0x0, 0x1, [@CTA_PROTOINFO_DCCP_HANDSHAKE_SEQ={0xc}, @CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0x37}]}}, @CTA_TUPLE_ORIG={0x80, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x8, 0x2, @broadcast}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}, @CTA_TUPLE_ORIG={0x80, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x38}}, {0x14, 0x4, @local}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2}, {0x14, 0x4, @private1}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x3b}}, {0x8, 0x2, @rand_addr=0x64010102}}}]}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xe, 0x1, 'sip-20000\x00'}}, @CTA_TUPLE_MASTER={0x54, 0xe, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x14, 0x4, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}]}]}]}, 0x268}, 0x1, 0x0, 0x0, 0x400c0}, 0x4) ptrace$peeksig(0x4209, r1, &(0x7f0000000080)={0x9, 0x0, 0x8}, &(0x7f00000000c0)=[{}, {}, {}, {}, {}, {}, {}, {}]) [ 1019.218722] FAULT_INJECTION: forcing a failure. [ 1019.218722] name failslab, interval 1, probability 0, space 0, times 0 [ 1019.221001] CPU: 0 PID: 12206 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1019.222339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1019.223936] Call Trace: [ 1019.224450] dump_stack+0x107/0x167 [ 1019.225157] should_fail.cold+0x5/0xa [ 1019.225894] ? create_object.isra.0+0x3a/0xa30 [ 1019.226770] should_failslab+0x5/0x20 [ 1019.227498] kmem_cache_alloc+0x5b/0x310 [ 1019.228284] create_object.isra.0+0x3a/0xa30 [ 1019.229125] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1019.230092] kmem_cache_alloc_trace+0x151/0x320 [ 1019.230981] io_uring_alloc_task_context+0x99/0x6a0 [ 1019.231940] ? io_import_iovec+0x1120/0x1120 [ 1019.232796] io_uring_setup+0x1dd1/0x2980 [ 1019.233573] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1019.234541] ? wait_for_completion_io+0x270/0x270 [ 1019.235486] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1019.236880] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1019.237865] do_syscall_64+0x33/0x40 [ 1019.238575] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1019.239546] RIP: 0033:0x7f707acaeb19 [ 1019.240270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1019.243779] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1019.245247] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1019.246612] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1019.247966] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1019.249311] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1019.250660] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:57:41 executing program 5: listen(0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x3, 0x0, 0x8000) connect$inet6(r0, &(0x7f0000000200)={0xa, 0x4e20, 0x10001, @empty, 0xfffffbff}, 0x1c) sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0) r1 = io_uring_setup(0x3972, &(0x7f0000000a40)={0x0, 0xdd80, 0x8, 0x3, 0x24}) r2 = openat$incfs(r0, &(0x7f0000000240)='.pending_reads\x00', 0x0, 0xa) setsockopt$inet6_tcp_int(r2, 0x6, 0xc, &(0x7f0000000280)=0xda9, 0x4) getpgrp(0x0) lseek(r1, 0x4, 0x3) pidfd_open(0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7}) ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x5, 0x0, [0x1ff, 0x3f, 0x8001, 0xffffffff]}) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000001c0)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x26, &(0x7f0000000080)={@rand_addr=0x64010102, @broadcast, @multicast2}, 0xc) pread64(0xffffffffffffffff, &(0x7f00000000c0)=""/77, 0x4d, 0x9) sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r3}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) [ 1019.269421] FAULT_INJECTION: forcing a failure. [ 1019.269421] name failslab, interval 1, probability 0, space 0, times 0 [ 1019.272226] CPU: 1 PID: 12208 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1019.273859] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1019.274655] 9pnet: Insufficient options for proto=fd [ 1019.275813] Call Trace: [ 1019.275864] dump_stack+0x107/0x167 [ 1019.275892] should_fail.cold+0x5/0xa [ 1019.279224] ? iter_file_splice_write+0x165/0xc90 [ 1019.280407] should_failslab+0x5/0x20 [ 1019.281328] __kmalloc+0x72/0x390 [ 1019.282169] iter_file_splice_write+0x165/0xc90 [ 1019.283287] ? __fsnotify_parent+0x47a/0xb10 [ 1019.284379] ? generic_splice_sendpage+0x140/0x140 [ 1019.285567] ? pipe_to_user+0x170/0x170 [ 1019.286559] ? security_file_permission+0xb1/0xe0 [ 1019.287728] ? generic_splice_sendpage+0x140/0x140 [ 1019.288929] direct_splice_actor+0x10f/0x170 [ 1019.289997] splice_direct_to_actor+0x387/0x980 [ 1019.291117] ? pipe_to_sendpage+0x380/0x380 [ 1019.292194] ? do_splice_to+0x160/0x160 [ 1019.293149] ? security_file_permission+0xb1/0xe0 [ 1019.294315] do_splice_direct+0x1c4/0x290 [ 1019.295296] ? splice_direct_to_actor+0x980/0x980 [ 1019.296466] ? avc_policy_seqno+0x9/0x70 [ 1019.297447] ? security_file_permission+0xb1/0xe0 [ 1019.298629] do_sendfile+0x553/0x11e0 [ 1019.299565] ? do_pwritev+0x270/0x270 [ 1019.300504] ? wait_for_completion_io+0x270/0x270 [ 1019.301673] ? rcu_read_lock_any_held+0x75/0xa0 [ 1019.302788] ? vfs_write+0x354/0xb10 [ 1019.303707] __x64_sys_sendfile64+0x1d1/0x210 [ 1019.304801] ? __ia32_sys_sendfile+0x220/0x220 [ 1019.305905] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1019.307162] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1019.308417] do_syscall_64+0x33/0x40 [ 1019.309315] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1019.310550] RIP: 0033:0x7fe85904db19 [ 1019.311457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1019.315921] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1019.317752] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1019.319455] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1019.321176] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1019.322878] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1019.324617] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 [ 1019.354195] debugfs: Directory '€˜§°ÇÛ ”uòQÇC !' with parent 'ieee80211' already present! [ 1019.432941] 9pnet: Insufficient options for proto=fd [ 1019.479434] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1019.480978] CPU: 0 PID: 12216 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1019.482132] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1019.483535] Call Trace: [ 1019.483991] dump_stack+0x107/0x167 [ 1019.484603] sysfs_warn_dup.cold+0x1c/0x29 [ 1019.485298] sysfs_do_create_link_sd+0x122/0x140 [ 1019.486075] sysfs_create_link+0x5f/0xc0 [ 1019.486756] device_add+0x703/0x1c50 [ 1019.487380] ? devlink_add_symlinks+0x970/0x970 [ 1019.488152] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1019.489029] wiphy_register+0x1da6/0x2850 [ 1019.489716] ? wiphy_unregister+0xb90/0xb90 [ 1019.490440] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1019.491323] ieee80211_register_hw+0x23c5/0x38b0 [ 1019.492124] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1019.492906] ? net_generic+0xdb/0x2b0 [ 1019.493539] ? lockdep_init_map_type+0x2c7/0x780 [ 1019.494319] ? memset+0x20/0x50 [ 1019.494868] ? __hrtimer_init+0x12c/0x270 [ 1019.495557] mac80211_hwsim_new_radio+0x1d04/0x4290 [ 1019.496418] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1019.497193] ? hwsim_new_radio_nl+0x967/0x1080 [ 1019.497938] ? memcpy+0x39/0x60 [ 1019.498497] hwsim_new_radio_nl+0x991/0x1080 [ 1019.499217] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1019.500071] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1019.501139] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1019.502219] genl_family_rcv_msg_doit+0x22d/0x330 [ 1019.503009] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1019.504083] ? cap_capable+0x1cd/0x230 [ 1019.504725] ? ns_capable+0xe2/0x110 [ 1019.505345] genl_rcv_msg+0x36a/0x5a0 [ 1019.505966] ? genl_get_cmd+0x480/0x480 [ 1019.506607] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1019.507449] ? lock_release+0x680/0x680 [ 1019.508105] ? netlink_deliver_tap+0xf4/0xcc0 [ 1019.508834] netlink_rcv_skb+0x14b/0x430 [ 1019.509502] ? genl_get_cmd+0x480/0x480 [ 1019.510156] ? netlink_ack+0xab0/0xab0 [ 1019.510803] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1019.511550] ? is_vmalloc_addr+0x7b/0xb0 [ 1019.512219] genl_rcv+0x24/0x40 [ 1019.512757] netlink_unicast+0x6ce/0xa00 [ 1019.513422] ? netlink_attachskb+0xab0/0xab0 [ 1019.514144] netlink_sendmsg+0x90f/0xe00 [ 1019.514806] ? netlink_unicast+0xa00/0xa00 [ 1019.515489] ? netlink_unicast+0xa00/0xa00 [ 1019.516196] __sock_sendmsg+0x154/0x190 [ 1019.516837] ____sys_sendmsg+0x70d/0x870 [ 1019.517495] ? sock_write_iter+0x3d0/0x3d0 [ 1019.518175] ? do_recvmmsg+0x6d0/0x6d0 [ 1019.518818] ___sys_sendmsg+0xf3/0x170 [ 1019.519452] ? sendmsg_copy_msghdr+0x160/0x160 [ 1019.520198] ? __fget_files+0x2cf/0x520 [ 1019.520826] ? lock_downgrade+0x6d0/0x6d0 [ 1019.521516] ? __fget_files+0x2f8/0x520 [ 1019.522163] ? __fget_light+0xea/0x290 [ 1019.522789] __sys_sendmsg+0xe5/0x1b0 [ 1019.523409] ? __sys_sendmsg_sock+0x40/0x40 [ 1019.524119] ? __do_sys_futex+0x2bb/0x480 [ 1019.524797] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1019.525645] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1019.526469] ? trace_hardirqs_on+0x5b/0x180 [ 1019.527186] do_syscall_64+0x33/0x40 [ 1019.527810] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1019.528646] RIP: 0033:0x7fb139038b19 [ 1019.529238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1019.532171] RSP: 002b:00007fb13658d188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1019.533393] RAX: ffffffffffffffda RBX: 00007fb13914c020 RCX: 00007fb139038b19 [ 1019.534530] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006 [ 1019.535687] RBP: 00007fb139092f6d R08: 0000000000000000 R09: 0000000000000000 [ 1019.536844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1019.537975] R13: 00007ffdbdd641ff R14: 00007fb13658d300 R15: 0000000000022000 00:57:53 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0xfffffff0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:57:53 executing program 5: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000400), 0x80, 0x0) fremovexattr(r0, &(0x7f0000001740)=@known='com.apple.FinderInfo\x00') r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$BTRFS_IOC_RM_DEV(r1, 0x5000940b, &(0x7f0000001e00)={{}, "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"}) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000001780)={{0x2, 0x0, @remote}, {0x308}, 0xac1414fb, {0x2, 0x0, @broadcast}}) openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000300)={0x1, &(0x7f00000002c0)=[{0xaf, 0x7f, 0x5, 0x6}]}) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000000180)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"]) lseek(0xffffffffffffffff, 0x3, 0x3) r2 = syz_io_uring_setup(0x6f07, &(0x7f0000000140), &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000080)) io_uring_enter(r2, 0x1, 0x1, 0x1, 0x0, 0x0) 00:57:53 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 64) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:57:53 executing program 6: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000700)=""/222, 0xde}], 0x1}, 0x0) r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fec000/0x3000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000fef000/0x11000)=nil, 0x11000, 0x0, 0x10, r0, 0x8000000) syz_io_uring_complete(r4) pipe2(&(0x7f0000000180), 0x800) connect(0xffffffffffffffff, 0x0, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) ftruncate(r5, 0x1) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000fef000/0x11000)=nil, 0x11000, 0x0, 0x30, 0xffffffffffffffff, 0x8000000) r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r7, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r7, r2, &(0x7f00000004c0)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f0000000340), &(0x7f0000000480)='./file0\x00', 0x2, 0x1000, 0x1}, 0x9) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000800)=ANY=[@ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="0000efff8b776530e1"]) io_uring_enter(r8, 0x78b7, 0x2f78, 0x3, &(0x7f00000001c0)={[0x7]}, 0x8) 00:57:53 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000600, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:57:53 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 25) 00:57:53 executing program 7: r0 = fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x80000000, 0x0) wait4(r0, &(0x7f0000000080), 0x4, &(0x7f00000000c0)) r1 = getpgid(r0) getpgrp(r1) 00:57:53 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, @perf_config_ext={0x0, 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) pidfd_open(0x0, 0x0) r2 = creat(&(0x7f0000000440)='./file0\x00', 0x20) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x102, 0x0, '\x00', [{}, {0x800, 0x0, 0x400000000000000}], ['\x00']}) ioctl$BINDER_ENABLE_ONEWAY_SPAM_DETECTION(r2, 0x40046210, &(0x7f0000000200)) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$addseals(r3, 0x409, 0x1) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000001c0)={'macsec0\x00', &(0x7f0000001980)=ANY=[@ANYBLOB="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"]}) clone3(&(0x7f0000000480)={0x2080, &(0x7f0000000180), &(0x7f00000002c0), &(0x7f0000000300)=0x0, {0x2}, &(0x7f0000000380)=""/10, 0xa, &(0x7f0000000900)=""/4096, &(0x7f0000000380)}, 0x58) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup(0xffffffffffffffff) pidfd_open(r4, 0x0) preadv(r1, &(0x7f0000001900)=[{&(0x7f0000000340)=""/28, 0x1c}, {&(0x7f00000003c0)=""/94, 0x5e}, {&(0x7f00000005c0)=""/95, 0x5f}, {&(0x7f0000000640)=""/244, 0xf4}, {&(0x7f0000000740)=""/93, 0x5d}, {&(0x7f00000007c0)=""/107, 0x6b}, {&(0x7f0000000840)=""/78, 0x4e}], 0x7, 0x9, 0xede9) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000500)=""/142, 0x8e}], 0x1}, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) unshare(0x48020200) [ 1031.883372] FAULT_INJECTION: forcing a failure. [ 1031.883372] name failslab, interval 1, probability 0, space 0, times 0 [ 1031.885676] CPU: 1 PID: 12335 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1031.887155] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1031.888733] Call Trace: [ 1031.889246] dump_stack+0x107/0x167 [ 1031.889948] should_fail.cold+0x5/0xa [ 1031.890670] ? create_object.isra.0+0x3a/0xa30 [ 1031.891531] should_failslab+0x5/0x20 [ 1031.892260] kmem_cache_alloc+0x5b/0x310 [ 1031.893036] create_object.isra.0+0x3a/0xa30 [ 1031.893866] kmemleak_alloc_percpu+0xa0/0x100 [ 1031.894707] pcpu_alloc+0x4e2/0x1240 [ 1031.895430] __percpu_counter_init+0x10d/0x2d0 [ 1031.896310] io_uring_alloc_task_context+0xcc/0x6a0 [ 1031.897253] ? io_import_iovec+0x1120/0x1120 [ 1031.898103] io_uring_setup+0x1dd1/0x2980 [ 1031.898895] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1031.899842] ? wait_for_completion_io+0x270/0x270 [ 1031.900775] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1031.901766] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1031.902741] do_syscall_64+0x33/0x40 [ 1031.903448] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1031.904416] RIP: 0033:0x7f707acaeb19 [ 1031.905110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1031.908605] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1031.910035] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1031.911376] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1031.912707] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1031.914048] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1031.915369] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1031.936678] FAULT_INJECTION: forcing a failure. [ 1031.936678] name failslab, interval 1, probability 0, space 0, times 0 [ 1031.939096] CPU: 0 PID: 12332 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1031.940568] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1031.942313] Call Trace: [ 1031.942874] dump_stack+0x107/0x167 [ 1031.943638] should_fail.cold+0x5/0xa [ 1031.944475] ? create_object.isra.0+0x3a/0xa30 [ 1031.945429] should_failslab+0x5/0x20 [ 1031.946229] kmem_cache_alloc+0x5b/0x310 [ 1031.947091] create_object.isra.0+0x3a/0xa30 [ 1031.948025] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1031.949090] __kmalloc+0x16e/0x390 [ 1031.949838] iter_file_splice_write+0x165/0xc90 [ 1031.950813] ? __fsnotify_parent+0x47a/0xb10 [ 1031.951745] ? generic_splice_sendpage+0x140/0x140 [ 1031.952786] ? pipe_to_user+0x170/0x170 [ 1031.953634] ? security_file_permission+0xb1/0xe0 [ 1031.954657] ? generic_splice_sendpage+0x140/0x140 [ 1031.955684] direct_splice_actor+0x10f/0x170 [ 1031.956619] splice_direct_to_actor+0x387/0x980 [ 1031.957589] ? pipe_to_sendpage+0x380/0x380 [ 1031.958496] ? do_splice_to+0x160/0x160 [ 1031.959326] ? security_file_permission+0xb1/0xe0 [ 1031.960352] do_splice_direct+0x1c4/0x290 [ 1031.961218] ? splice_direct_to_actor+0x980/0x980 [ 1031.962231] ? avc_policy_seqno+0x9/0x70 [ 1031.963086] ? security_file_permission+0xb1/0xe0 [ 1031.964112] do_sendfile+0x553/0x11e0 [ 1031.964916] ? do_pwritev+0x270/0x270 [ 1031.965708] ? wait_for_completion_io+0x270/0x270 [ 1031.966712] ? rcu_read_lock_any_held+0x75/0xa0 [ 1031.967671] ? vfs_write+0x354/0xb10 [ 1031.968461] __x64_sys_sendfile64+0x1d1/0x210 [ 1031.969396] ? __ia32_sys_sendfile+0x220/0x220 [ 1031.970363] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1031.971456] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1031.972544] do_syscall_64+0x33/0x40 [ 1031.973327] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1031.974387] RIP: 0033:0x7fe85904db19 [ 1031.975159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1031.979012] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1031.980625] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1031.982119] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1031.983607] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1031.985098] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1031.986585] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 [ 1032.006196] loop5: detected capacity change from 0 to 16776704 00:57:53 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000700, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1032.047655] EXT4-fs (loop5): Unrecognized mount option "no" or missing value 00:57:53 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0xffffffff, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1032.121039] audit: type=1326 audit(1763773073.936:119): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12325 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb139038b19 code=0x7ffc0000 [ 1032.125278] audit: type=1326 audit(1763773073.937:120): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12325 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb139038b19 code=0x7ffc0000 [ 1032.140306] audit: type=1326 audit(1763773073.951:121): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12325 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb139038b19 code=0x7ffc0000 [ 1032.175677] audit: type=1326 audit(1763773073.951:122): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12325 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb139038b19 code=0x7ffc0000 [ 1032.186468] audit: type=1326 audit(1763773073.952:123): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12325 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=199 compat=0 ip=0x7fb139038b19 code=0x7ffc0000 00:57:54 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000001008, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:57:54 executing program 7: r0 = fork() waitid(0x0, r0, &(0x7f0000000000), 0x1c0000005, 0x0) [ 1032.242643] audit: type=1326 audit(1763773073.958:124): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12325 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb139038b19 code=0x7ffc0000 00:57:54 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 26) [ 1032.281055] audit: type=1326 audit(1763773073.958:125): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12325 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb139038b19 code=0x7ffc0000 00:57:54 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0xf, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1032.292929] audit: type=1326 audit(1763773073.972:126): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12325 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb139038b19 code=0x7ffc0000 00:57:54 executing program 7: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x8000, 0x0) ioctl$SG_EMULATED_HOST(r0, 0x2203, &(0x7f00000000c0)) fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) 00:57:54 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 65) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) [ 1032.311167] audit: type=1326 audit(1763773073.981:128): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12325 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fb139038b19 code=0x7ffc0000 00:57:54 executing program 5: r0 = dup(0xffffffffffffffff) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x7, 0x8, 0x0, 0x0, 0x7, 0x11300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f00000002c0), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfcc}, 0x0, 0xffffffffffffffff, r0, 0x0) close_range(r1, 0xffffffffffffffff, 0x2) inotify_add_watch(0xffffffffffffffff, 0x0, 0x0) pwritev2(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000100)}], 0x10000000000000d8, 0x0, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0xc02c2, 0x0) r3 = open(&(0x7f0000000040)='./file0\x00', 0x1831c1, 0x0) sendfile(r1, 0xffffffffffffffff, &(0x7f00000001c0)=0x2, 0x7fffffff) writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000200)="af", 0x1}, {0x0}], 0x2) r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(0xffffffffffffffff, 0x43, 0x6a08, 0x8) pipe(&(0x7f00000000c0)={0xffffffffffffffff}) fstat(r5, &(0x7f0000000140)) fallocate(r4, 0x0, 0x0, 0x8000) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x4) ioctl$FS_IOC_RESVSP(r6, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x4000, 0x8, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000380)) [ 1032.329892] audit: type=1326 audit(1763773073.977:127): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12325 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb139038b19 code=0x7ffc0000 [ 1032.359368] FAULT_INJECTION: forcing a failure. [ 1032.359368] name failslab, interval 1, probability 0, space 0, times 0 [ 1032.361603] CPU: 0 PID: 12469 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1032.362922] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1032.364511] Call Trace: [ 1032.365019] dump_stack+0x107/0x167 [ 1032.365717] should_fail.cold+0x5/0xa [ 1032.366447] ? create_object.isra.0+0x3a/0xa30 [ 1032.367324] should_failslab+0x5/0x20 [ 1032.368068] kmem_cache_alloc+0x5b/0x310 [ 1032.368847] create_object.isra.0+0x3a/0xa30 [ 1032.369708] kmemleak_alloc_percpu+0xa0/0x100 [ 1032.370568] pcpu_alloc+0x4e2/0x1240 [ 1032.371296] __percpu_counter_init+0x10d/0x2d0 [ 1032.372177] io_uring_alloc_task_context+0xcc/0x6a0 [ 1032.373128] ? io_import_iovec+0x1120/0x1120 [ 1032.373979] io_uring_setup+0x1dd1/0x2980 [ 1032.374773] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1032.375731] ? wait_for_completion_io+0x270/0x270 [ 1032.376673] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1032.377668] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1032.378641] do_syscall_64+0x33/0x40 [ 1032.379337] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1032.380310] RIP: 0033:0x7f707acaeb19 [ 1032.381007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1032.384500] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 00:57:54 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000001800, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:57:54 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0xf0, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1032.384519] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1032.384528] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1032.384538] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1032.384548] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1032.384557] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1032.466268] FAULT_INJECTION: forcing a failure. [ 1032.466268] name failslab, interval 1, probability 0, space 0, times 0 [ 1032.468408] CPU: 0 PID: 12494 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1032.469702] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1032.471253] Call Trace: [ 1032.471751] dump_stack+0x107/0x167 [ 1032.472446] should_fail.cold+0x5/0xa [ 1032.473161] ? create_object.isra.0+0x3a/0xa30 [ 1032.474014] should_failslab+0x5/0x20 [ 1032.474722] kmem_cache_alloc+0x5b/0x310 [ 1032.475484] create_object.isra.0+0x3a/0xa30 [ 1032.476308] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1032.477260] kmem_cache_alloc+0x159/0x310 [ 1032.478033] start_this_handle+0x674/0x1390 [ 1032.478834] ? kmem_cache_alloc+0x159/0x310 [ 1032.479639] ? mark_held_locks+0x9e/0xe0 [ 1032.480396] ? __jbd2_journal_unfile_buffer+0xb0/0xb0 [ 1032.481356] ? trace_hardirqs_on+0x5b/0x180 [ 1032.482158] ? kmem_cache_alloc+0x2a6/0x310 [ 1032.482959] jbd2__journal_start+0x390/0x7e0 [ 1032.483778] __ext4_journal_start_sb+0x214/0x390 [ 1032.484660] ext4_dirty_inode+0xbc/0x130 [ 1032.485410] ? ext4_setattr+0x21b0/0x21b0 [ 1032.486173] __mark_inode_dirty+0x492/0xd40 [ 1032.486967] ? current_time+0xac/0x120 [ 1032.487688] generic_update_time+0x21c/0x370 [ 1032.488517] ? igrab+0xc0/0xc0 [ 1032.489114] file_update_time+0x43a/0x520 [ 1032.489887] ? evict_inodes+0x470/0x470 [ 1032.490623] ? down_write_killable+0x180/0x180 [ 1032.491470] file_modified+0x7d/0xa0 [ 1032.492166] ext4_file_write_iter+0x8f8/0x1530 [ 1032.493022] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1032.493864] ? kasan_save_stack+0x32/0x40 [ 1032.494627] ? kasan_save_stack+0x1b/0x40 [ 1032.495388] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1032.496320] ? iter_file_splice_write+0x165/0xc90 [ 1032.497198] ? direct_splice_actor+0x10f/0x170 [ 1032.498031] ? splice_direct_to_actor+0x387/0x980 [ 1032.498917] ? do_splice_direct+0x1c4/0x290 [ 1032.499706] ? do_sendfile+0x553/0x11e0 [ 1032.500437] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1032.501287] ? do_syscall_64+0x33/0x40 [ 1032.502004] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1032.502982] do_iter_readv_writev+0x476/0x750 [ 1032.503801] ? _cond_resched+0x10/0x30 [ 1032.504521] ? new_sync_write+0x660/0x660 [ 1032.505282] ? avc_policy_seqno+0x9/0x70 [ 1032.506030] ? selinux_file_permission+0x92/0x520 [ 1032.506914] ? security_file_permission+0xb1/0xe0 [ 1032.507801] do_iter_write+0x191/0x700 [ 1032.508521] ? __memset+0x27/0x40 [ 1032.509163] vfs_iter_write+0x70/0xa0 [ 1032.509860] iter_file_splice_write+0x726/0xc90 [ 1032.510724] ? generic_splice_sendpage+0x140/0x140 [ 1032.511639] ? security_file_permission+0xb1/0xe0 [ 1032.512530] ? generic_splice_sendpage+0x140/0x140 [ 1032.513416] direct_splice_actor+0x10f/0x170 [ 1032.514213] splice_direct_to_actor+0x387/0x980 [ 1032.515064] ? pipe_to_sendpage+0x380/0x380 [ 1032.515845] ? do_splice_to+0x160/0x160 [ 1032.516570] ? security_file_permission+0xb1/0xe0 [ 1032.517454] do_splice_direct+0x1c4/0x290 [ 1032.518200] ? splice_direct_to_actor+0x980/0x980 [ 1032.519071] ? avc_policy_seqno+0x9/0x70 [ 1032.519812] ? security_file_permission+0xb1/0xe0 [ 1032.520698] do_sendfile+0x553/0x11e0 [ 1032.521395] ? do_pwritev+0x270/0x270 [ 1032.522085] ? wait_for_completion_io+0x270/0x270 [ 1032.522961] ? rcu_read_lock_any_held+0x75/0xa0 [ 1032.523796] ? vfs_write+0x354/0xb10 [ 1032.524478] __x64_sys_sendfile64+0x1d1/0x210 [ 1032.525293] ? __ia32_sys_sendfile+0x220/0x220 [ 1032.526121] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1032.527070] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1032.528013] do_syscall_64+0x33/0x40 [ 1032.528687] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1032.529613] RIP: 0033:0x7fe85904db19 [ 1032.530274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1032.533568] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1032.534940] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1032.536217] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1032.537494] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1032.538761] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1032.540039] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 00:58:06 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 27) 00:58:06 executing program 6: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000800)=0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0xfc, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3}, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000010000000c0005"], 0x34}}, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @local}]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x4004000) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_DEL_INTERFACE(r4, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0) 00:58:06 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 66) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) [ 1044.319181] FAULT_INJECTION: forcing a failure. [ 1044.319181] name failslab, interval 1, probability 0, space 0, times 0 [ 1044.321440] CPU: 0 PID: 12590 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1044.322420] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1044.323605] Call Trace: [ 1044.323994] dump_stack+0x107/0x167 [ 1044.324536] should_fail.cold+0x5/0xa [ 1044.325094] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 1044.325854] should_failslab+0x5/0x20 [ 1044.326415] kmem_cache_alloc_trace+0x55/0x320 [ 1044.327099] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1044.327862] ? io_import_iovec+0x1120/0x1120 [ 1044.328529] io_uring_setup+0x1dd1/0x2980 [ 1044.329130] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1044.329851] ? wait_for_completion_io+0x270/0x270 [ 1044.330561] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1044.331313] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1044.332061] do_syscall_64+0x33/0x40 [ 1044.332622] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1044.333370] RIP: 0033:0x7f707acaeb19 00:58:06 executing program 7: fork() r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_UNISCRNMAP(r0, 0x4b69, &(0x7f00000002c0)=""/179) 00:58:06 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000001c00, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:58:06 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffff7fffffffff, 0xffffffffffffffff, 0x0) r1 = dup2(r0, r0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x6, @private1={0xfc, 0x1, '\x00', 0x1}, 0x1}, 0x1c) r2 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x10000, 0x0) bind$inet6(r2, &(0x7f0000000180)={0xa, 0x4e20, 0x9, @private0}, 0x1c) ioctl$EXT4_IOC_CHECKPOINT(r1, 0x4004662b, &(0x7f0000000100)=0x4) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x1, @dev={0xfe, 0x80, '\x00', 0x3f}, 0x10001}, 0x1c) clock_getres(0x8, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000080)='/proc/self/exe\x00', 0x107100, 0x0) r4 = openat$incfs(r1, &(0x7f0000000140)='.log\x00', 0x402000, 0x10) sendfile(r4, r1, 0x0, 0x26a7) read(r3, &(0x7f0000000000), 0x1b4000) 00:58:06 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x2c0, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:58:06 executing program 0: unshare(0x880) semget$private(0x0, 0x4000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f00000000c0)) [ 1044.333905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1044.336934] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1044.338797] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1044.340571] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1044.342319] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1044.344060] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1044.345827] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:58:06 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000002000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:58:06 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0xec0, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1044.413003] FAULT_INJECTION: forcing a failure. [ 1044.413003] name failslab, interval 1, probability 0, space 0, times 0 [ 1044.415572] CPU: 0 PID: 12605 Comm: syz-executor.3 Not tainted 5.10.246 #1 00:58:06 executing program 0: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020820000400008000f80000200040000300000000000000010000000000000002", 0x2d}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="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"]) r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x40080, 0x0) r1 = openat(r0, &(0x7f0000000080)='./file0\x00', 0x110000, 0x80) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0xa8002, 0x0) renameat2(r2, &(0x7f0000000180)='./file0\x00', r1, &(0x7f00000001c0)='./file0\x00', 0x4) chdir(&(0x7f00000000c0)='./file0\x00') [ 1044.417150] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1044.419181] Call Trace: [ 1044.419803] dump_stack+0x107/0x167 [ 1044.420668] should_fail.cold+0x5/0xa [ 1044.421540] ? create_object.isra.0+0x3a/0xa30 [ 1044.422578] should_failslab+0x5/0x20 [ 1044.423452] kmem_cache_alloc+0x5b/0x310 [ 1044.424383] create_object.isra.0+0x3a/0xa30 [ 1044.425386] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1044.426543] kmem_cache_alloc+0x159/0x310 [ 1044.427498] jbd2__journal_start+0x190/0x7e0 [ 1044.428519] __ext4_journal_start_sb+0x214/0x390 [ 1044.429604] ext4_dirty_inode+0xbc/0x130 [ 1044.430525] ? ext4_setattr+0x21b0/0x21b0 [ 1044.431464] __mark_inode_dirty+0x492/0xd40 [ 1044.432450] ? current_time+0xac/0x120 [ 1044.433340] generic_update_time+0x21c/0x370 [ 1044.434335] ? igrab+0xc0/0xc0 [ 1044.435072] file_update_time+0x43a/0x520 [ 1044.436016] ? evict_inodes+0x470/0x470 [ 1044.436928] ? down_write_killable+0x180/0x180 [ 1044.437971] file_modified+0x7d/0xa0 [ 1044.438834] ext4_file_write_iter+0x8f8/0x1530 [ 1044.439892] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1044.440954] ? kasan_save_stack+0x32/0x40 [ 1044.441913] ? kasan_save_stack+0x1b/0x40 [ 1044.442872] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1044.444046] ? iter_file_splice_write+0x165/0xc90 [ 1044.445171] ? direct_splice_actor+0x10f/0x170 [ 1044.446230] ? splice_direct_to_actor+0x387/0x980 [ 1044.447346] ? do_splice_direct+0x1c4/0x290 [ 1044.448387] ? do_sendfile+0x553/0x11e0 [ 1044.449318] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1044.450426] ? do_syscall_64+0x33/0x40 [ 1044.451331] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1044.452586] do_iter_readv_writev+0x476/0x750 [ 1044.453628] ? _cond_resched+0x10/0x30 [ 1044.454536] ? new_sync_write+0x660/0x660 [ 1044.455500] ? avc_policy_seqno+0x9/0x70 [ 1044.456435] ? selinux_file_permission+0x92/0x520 [ 1044.457560] ? security_file_permission+0xb1/0xe0 [ 1044.458654] do_iter_write+0x191/0x700 [ 1044.459529] ? trace_hardirqs_on+0x5b/0x180 [ 1044.460504] vfs_iter_write+0x70/0xa0 [ 1044.461349] iter_file_splice_write+0x726/0xc90 [ 1044.462407] ? generic_splice_sendpage+0x140/0x140 [ 1044.463521] ? security_file_permission+0xb1/0xe0 [ 1044.464606] ? generic_splice_sendpage+0x140/0x140 [ 1044.465693] direct_splice_actor+0x10f/0x170 [ 1044.466683] splice_direct_to_actor+0x387/0x980 [ 1044.467725] ? pipe_to_sendpage+0x380/0x380 [ 1044.468699] ? do_splice_to+0x160/0x160 [ 1044.469578] ? security_file_permission+0xb1/0xe0 [ 1044.470662] do_splice_direct+0x1c4/0x290 [ 1044.471584] ? splice_direct_to_actor+0x980/0x980 [ 1044.472658] ? avc_policy_seqno+0x9/0x70 [ 1044.473563] ? security_file_permission+0xb1/0xe0 [ 1044.474652] do_sendfile+0x553/0x11e0 [ 1044.475519] ? do_pwritev+0x270/0x270 [ 1044.476383] ? wait_for_completion_io+0x270/0x270 [ 1044.477453] ? rcu_read_lock_any_held+0x75/0xa0 [ 1044.478476] ? vfs_write+0x354/0xb10 [ 1044.479302] __x64_sys_sendfile64+0x1d1/0x210 [ 1044.480296] ? __ia32_sys_sendfile+0x220/0x220 [ 1044.481314] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1044.482469] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1044.483617] do_syscall_64+0x33/0x40 00:58:06 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000003f00, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:58:06 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000006300, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:58:06 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 28) [ 1044.484452] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1044.485672] RIP: 0033:0x7fe85904db19 [ 1044.486492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1044.490567] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1044.492268] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1044.493854] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1044.495435] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1044.497035] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1044.498631] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 00:58:06 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000008004, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1044.545322] FAULT_INJECTION: forcing a failure. [ 1044.545322] name failslab, interval 1, probability 0, space 0, times 0 [ 1044.546701] CPU: 1 PID: 12727 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1044.547530] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1044.548543] Call Trace: [ 1044.548868] dump_stack+0x107/0x167 [ 1044.549308] should_fail.cold+0x5/0xa [ 1044.549772] ? create_object.isra.0+0x3a/0xa30 [ 1044.550323] should_failslab+0x5/0x20 [ 1044.550782] kmem_cache_alloc+0x5b/0x310 [ 1044.551272] create_object.isra.0+0x3a/0xa30 [ 1044.551808] kmemleak_alloc_percpu+0xa0/0x100 [ 1044.552359] pcpu_alloc+0x4e2/0x1240 [ 1044.552821] __percpu_counter_init+0x10d/0x2d0 [ 1044.553371] io_uring_alloc_task_context+0xcc/0x6a0 [ 1044.553970] ? io_import_iovec+0x1120/0x1120 [ 1044.554509] io_uring_setup+0x1dd1/0x2980 [ 1044.555012] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1044.555616] ? wait_for_completion_io+0x270/0x270 [ 1044.556220] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1044.556852] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1044.557473] do_syscall_64+0x33/0x40 [ 1044.557921] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1044.558534] RIP: 0033:0x7f707acaeb19 [ 1044.558987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1044.561217] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1044.562133] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1044.562993] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1044.563853] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1044.564722] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1044.565584] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:58:19 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x33fe0, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1057.813083] FAULT_INJECTION: forcing a failure. [ 1057.813083] name failslab, interval 1, probability 0, space 0, times 0 [ 1057.815558] CPU: 0 PID: 12753 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1057.817088] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1057.818876] Call Trace: [ 1057.819450] dump_stack+0x107/0x167 [ 1057.820233] should_fail.cold+0x5/0xa [ 1057.821091] ? io_wq_create+0xeb/0xc00 [ 1057.821934] should_failslab+0x5/0x20 [ 1057.822757] __kmalloc+0x72/0x390 [ 1057.823510] io_wq_create+0xeb/0xc00 [ 1057.824350] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1057.825446] ? io_import_iovec+0x1120/0x1120 [ 1057.826399] ? io_apoll_task_func+0x2d0/0x2d0 [ 1057.827363] ? __io_req_find_next+0x300/0x300 [ 1057.828366] io_uring_setup+0x1dd1/0x2980 [ 1057.829274] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1057.830388] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1057.831520] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1057.832654] do_syscall_64+0x33/0x40 [ 1057.833454] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1057.834565] RIP: 0033:0x7f707acaeb19 [ 1057.835368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1057.839339] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1057.841012] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1057.842550] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1057.844098] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1057.845657] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1057.847187] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:58:19 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 67) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:58:19 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 29) 00:58:19 executing program 6: ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r0, 0x0, 0x0) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = gettid() fcntl$setown(r1, 0x8, r2) openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r3, 0x4) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0) syz_io_uring_setup(0x2, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, r3}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000240)=0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x4000, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r3, 0x0, &(0x7f0000000280), 0x0, 0x8080, 0x1}, 0x0) inotify_add_watch(0xffffffffffffffff, &(0x7f0000000040)='.\x00', 0x2000003) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x802, 0x0) fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)=@v2, 0x14, 0x0) 00:58:19 executing program 7: fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) r0 = getpgrp(0x0) pidfd_open(r0, 0x0) prlimit64(r0, 0x0, 0x0, &(0x7f0000000080)) r1 = getpgrp(0x0) pidfd_open(r1, 0x0) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x97, 0x81, 0x80, 0x4, 0x0, 0xffffffff, 0x200, 0xd, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0xe6b2, 0x2, @perf_config_ext={0x8000, 0x3f}, 0x4004, 0x1, 0x5, 0x0, 0x80, 0x3ff, 0x5, 0x0, 0x2, 0x0, 0x1}, r1, 0x1, 0xffffffffffffffff, 0x4) fork() r2 = getpgrp(0x0) pidfd_open(r2, 0x0) prlimit64(r2, 0x9, &(0x7f0000000140)={0xf80000000000, 0x10001}, &(0x7f0000000180)) 00:58:19 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1000000000f000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:58:19 executing program 0: keyctl$read(0xb, 0x0, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) timer_settime(0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(0xffffffffffffffff, 0xc008240a, &(0x7f0000000180)=ANY=[@ANYBLOB="0600000000000000000000000100ffff00"/28]) timer_gettime(0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x405d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x4, 0x0) capset(0x0, &(0x7f0000000300)={0x800, 0x3, 0x7, 0xd7, 0x8000, 0x6}) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000200)=0x0) r2 = getpgrp(0x0) pidfd_open(r2, 0x0) ptrace$getregset(0x4204, r2, 0x6, &(0x7f0000000240)={&(0x7f00000006c0)=""/243, 0xf3}) timer_delete(0x0) perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0x3, 0x0, 0x80, 0x7, 0x0, 0x1c, 0x11aa, 0x4, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x7, 0x0, @perf_config_ext={0x8}, 0x0, 0x0, 0x8, 0x6, 0x8, 0x0, 0x1, 0x0, 0x20ffff, 0x0, 0x25}, r1, 0xf, 0xffffffffffffffff, 0x0) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 00:58:19 executing program 5: mknod$loop(&(0x7f0000000300)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) r1 = syz_open_dev$sg(0x0, 0x0, 0x2001) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, &(0x7f00000004c0)={0x0, 0x0, {0x0, @usage, 0x0}, {0x0, @struct}, {0x0, @struct}}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f00000008c0)={r2, 0x5, 0x8}) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000780)={r2, 0x81, 0x400, 0x1}) r3 = dup(r0) r4 = openat(r3, &(0x7f0000000380)='./file0\x00', 0x20200, 0x12) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000c40)=ANY=[@ANYBLOB="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"], 0xa4) io_uring_setup(0x69ab, &(0x7f0000000540)={0x0, 0x50d8, 0x10, 0x0, 0x3dd, 0x0, r0}) syz_io_uring_setup(0x76d7, &(0x7f0000000200)={0x0, 0x1c70, 0x20, 0x0, 0x3af, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00007a7000/0x1000)=nil, &(0x7f0000000280)=0x0, &(0x7f00000002c0)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000480)=@IORING_OP_LINK_TIMEOUT={0xf, 0x3, 0x0, 0x0, 0x0, &(0x7f0000000640), 0x1, 0x0, 0x1}, 0x7f) creat(0x0, 0x2) r7 = syz_genetlink_get_family_id$ipvs(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$IPVS_CMD_ZERO(r4, &(0x7f0000000500)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000400)={&(0x7f0000000140)=ANY=[@ANYBLOB="480000008ee03042bc98656bfddcae08c2c462032109c26c339b2aabd9733d04842a73f719a5de254503", @ANYRES16=r7, @ANYBLOB="000226bd7000fedbdf251000000008000400070000002c00018006000100020000000800050004000000080005000100000008000b0073697000060004004e230000"], 0x48}, 0x1, 0x0, 0x0, 0x40051}, 0x20000805) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) pwrite64(0xffffffffffffffff, &(0x7f0000000680)="9973ffe5841614b377973572aa5065985c7b379f33884c9907ec35a842c2175b70ab77256563966978856569428ec7257fff4f67cb3806ab5ef877a80adf2fbac6bd2c602b8e7a5c5034603726a5be7bfee14047aede401cb910140651cb4ecf3987d0aa61304453cac214aa47cb9f77a8c4e90b797a72e4abaf96162ef184724d10d8385e7827ce6da6d6b93c0107c1095ae2009ae89086b0dc986d8934fbac5c0aaacf89d78d35edab6961e5ba063831995795f747c873ca5808713468f3bd6c2325c86c29c7a1be18df3b8b3a2ad492c7e4628944e94f97f8462a04047d865d83adebf67a823cc2aaa4e39e2b4a", 0xef, 0x0) [ 1057.879869] FAULT_INJECTION: forcing a failure. [ 1057.879869] name failslab, interval 1, probability 0, space 0, times 0 [ 1057.882318] CPU: 0 PID: 12759 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1057.883814] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1057.885653] Call Trace: [ 1057.886234] dump_stack+0x107/0x167 [ 1057.887037] should_fail.cold+0x5/0xa [ 1057.887881] ? __iomap_dio_rw+0x1ee/0x1110 [ 1057.888833] should_failslab+0x5/0x20 [ 1057.889659] kmem_cache_alloc_trace+0x55/0x320 [ 1057.890662] __iomap_dio_rw+0x1ee/0x1110 [ 1057.891554] ? jbd2_journal_stop+0x188/0xdc0 [ 1057.892537] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1057.893531] ? ext4_orphan_add+0x253/0x9e0 [ 1057.894457] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1057.895530] ? ext4_empty_dir+0xae0/0xae0 [ 1057.896454] ? jbd2__journal_start+0xf3/0x7e0 [ 1057.897437] iomap_dio_rw+0x31/0x90 [ 1057.898237] ext4_file_write_iter+0xe0e/0x1530 [ 1057.899236] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1057.900216] ? kasan_save_stack+0x32/0x40 [ 1057.901140] ? kasan_save_stack+0x1b/0x40 [ 1057.902039] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1057.903145] ? iter_file_splice_write+0x165/0xc90 [ 1057.904188] ? direct_splice_actor+0x10f/0x170 [ 1057.905208] ? splice_direct_to_actor+0x387/0x980 [ 1057.906254] ? do_splice_direct+0x1c4/0x290 [ 1057.907192] ? do_sendfile+0x553/0x11e0 [ 1057.908060] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1057.909096] ? do_syscall_64+0x33/0x40 [ 1057.909944] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1057.911114] do_iter_readv_writev+0x476/0x750 [ 1057.912085] ? _cond_resched+0x10/0x30 [ 1057.912962] ? new_sync_write+0x660/0x660 [ 1057.913867] ? avc_policy_seqno+0x9/0x70 [ 1057.914751] ? selinux_file_permission+0x92/0x520 [ 1057.915799] ? security_file_permission+0xb1/0xe0 [ 1057.916888] do_iter_write+0x191/0x700 [ 1057.917732] ? trace_hardirqs_on+0x5b/0x180 [ 1057.918676] vfs_iter_write+0x70/0xa0 [ 1057.919498] iter_file_splice_write+0x726/0xc90 [ 1057.920542] ? generic_splice_sendpage+0x140/0x140 [ 1057.921626] ? security_file_permission+0xb1/0xe0 [ 1057.922674] ? generic_splice_sendpage+0x140/0x140 [ 1057.923742] direct_splice_actor+0x10f/0x170 [ 1057.924734] splice_direct_to_actor+0x387/0x980 [ 1057.925744] ? pipe_to_sendpage+0x380/0x380 [ 1057.926663] ? do_splice_to+0x160/0x160 [ 1057.927532] ? security_file_permission+0xb1/0xe0 [ 1057.928618] do_splice_direct+0x1c4/0x290 [ 1057.929525] ? splice_direct_to_actor+0x980/0x980 [ 1057.930569] ? avc_policy_seqno+0x9/0x70 [ 1057.931453] ? security_file_permission+0xb1/0xe0 [ 1057.932539] do_sendfile+0x553/0x11e0 [ 1057.933375] ? do_pwritev+0x270/0x270 [ 1057.934206] ? wait_for_completion_io+0x270/0x270 [ 1057.935262] ? rcu_read_lock_any_held+0x75/0xa0 [ 1057.936288] ? vfs_write+0x354/0xb10 [ 1057.937119] __x64_sys_sendfile64+0x1d1/0x210 [ 1057.938090] ? __ia32_sys_sendfile+0x220/0x220 [ 1057.939091] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1057.940230] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1057.941382] do_syscall_64+0x33/0x40 [ 1057.942192] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1057.943298] RIP: 0033:0x7fe85904db19 [ 1057.944106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1057.948120] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1057.949799] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1057.951342] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1057.952917] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1057.954459] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1057.956003] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 00:58:19 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000080000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:58:19 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x200008bc, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:58:19 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000200000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:58:19 executing program 6: sysfs$2(0x2, 0xde4, 0x0) sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[@ANYBLOB="400000001991dd459c9a36b7e1b9aadce55c3aff03000061305720393d0644bd19d82bd1adddb9849aacdd61d10711cb413aa5bc8d0e0289c0b58b3ac634448cdacee51c6f824850dd9c9c8e8d68c9c9ba68a0a3751c0e7492a1b8f6f317ad21b25b277d20ad1061d610e33268", @ANYRES16=0x0], 0x70}, 0x1, 0x0, 0x0, 0x40040d0}, 0x0) fchmod(0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[], 0xf4}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffc0, 0x4, @perf_config_ext={0x0, 0xfffffffffffffffc}, 0x2, 0x0, 0x1004, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f0000000100)={r6, 0x3, 0x7}, 0x10) sendmsg$ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xf0, 0x0, 0x300, 0x70bd2a, 0x25dfdbfc, {}, [@HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0xf0}, 0x1, 0x0, 0x0, 0x804}, 0x40) sysfs$2(0x2, 0xffffffffffffff7f, &(0x7f0000000040)=""/142) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) 00:58:19 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x3, 0x0, 0x8000) fadvise64(r0, 0x7, 0x3, 0x4) r1 = fork() wait4(r1, &(0x7f0000000080), 0x20000000, &(0x7f00000000c0)) waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) [ 1058.102835] device lo entered promiscuous mode [ 1058.134130] device lo left promiscuous mode [ 1058.161866] device lo entered promiscuous mode 00:58:19 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x7ffff000, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:58:19 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 30) [ 1058.174844] device lo left promiscuous mode [ 1058.272067] FAULT_INJECTION: forcing a failure. [ 1058.272067] name failslab, interval 1, probability 0, space 0, times 0 [ 1058.274629] CPU: 0 PID: 12929 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1058.276137] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1058.277900] Call Trace: [ 1058.278463] dump_stack+0x107/0x167 [ 1058.279233] should_fail.cold+0x5/0xa [ 1058.280034] ? create_object.isra.0+0x3a/0xa30 [ 1058.281025] should_failslab+0x5/0x20 [ 1058.281844] kmem_cache_alloc+0x5b/0x310 [ 1058.282710] create_object.isra.0+0x3a/0xa30 [ 1058.283638] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1058.284738] __kmalloc+0x16e/0x390 [ 1058.285490] io_wq_create+0xeb/0xc00 [ 1058.286282] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1058.287355] ? io_import_iovec+0x1120/0x1120 [ 1058.288301] ? io_apoll_task_func+0x2d0/0x2d0 [ 1058.289256] ? __io_req_find_next+0x300/0x300 [ 1058.290203] io_uring_setup+0x1dd1/0x2980 [ 1058.291087] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1058.292148] ? wait_for_completion_io+0x270/0x270 [ 1058.293211] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1058.294313] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1058.295392] do_syscall_64+0x33/0x40 [ 1058.296175] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1058.297294] RIP: 0033:0x7f707acaeb19 [ 1058.298074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1058.301957] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1058.303570] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1058.305120] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1058.306622] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1058.308147] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1058.309685] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:58:35 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 31) 00:58:35 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000f0ffff, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:58:35 executing program 7: r0 = fork() r1 = clone3(&(0x7f0000001280)={0x180000, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100), {0x32}, &(0x7f0000000140)=""/4096, 0x1000, &(0x7f0000001140)=""/231, &(0x7f0000001240)=[r0], 0x1}, 0x58) sched_getaffinity(r1, 0x8, &(0x7f0000001300)) waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) 00:58:35 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000012000101"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="0400000000000000d945e27e80e22e2f000000000000000063819efa0000000000"]) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001900)={0x0, 0x0, "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", "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"}) 00:58:35 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 68) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:58:35 executing program 6: syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={[{@mpol={'mpol', 0x3d, {'local', '', @void}}}]}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0xc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f0000001680)='./file0/file0\x00', 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000000, 0x10, 0xffffffffffffffff, 0x10000000) 00:58:35 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0xfffffdef, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:58:35 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe76f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = syz_io_uring_setup(0x22200, &(0x7f0000000240)={0x0, 0xe23f, 0x0, 0x0, 0x3}, &(0x7f0000683000/0x4000)=nil, &(0x7f0000203000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) perf_event_open(&(0x7f00000003c0)={0x5, 0x80, 0x5, 0x81, 0x3, 0x20, 0x0, 0x2, 0x26, 0x9, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x7, 0x7, @perf_bp={&(0x7f0000000080), 0xc}, 0x80, 0xffffffff80000000, 0x8, 0x6, 0x324, 0x4, 0x1, 0x0, 0xfffffffe, 0x0, 0x7fffffff}, 0x0, 0x2, 0xffffffffffffffff, 0x8) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) fstat(r0, &(0x7f00000002c0)) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = getpgrp(0x0) pidfd_open(r4, 0x0) r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r5, 0x3, 0x0, 0x8000) perf_event_open(&(0x7f0000000340)={0x3, 0x80, 0x5, 0x5, 0x9, 0x2, 0x0, 0x80, 0x11202, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x101, 0x1, @perf_bp={&(0x7f0000000040), 0x5bdf1a54d111e07e}, 0x9280, 0x1, 0xfffff800, 0x0, 0xffffffff, 0x2, 0x32d, 0x0, 0x3, 0x0, 0x844}, r4, 0x10, r5, 0x1) syz_io_uring_setup(0x21, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r3, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000780)={0x0, 0x0, 0x6, 0x0, '\x00', [{0x7, 0x1, 0xfffffffffffffffd, 0x4, 0x5, 0x2}, {0x6, 0x9, 0x5, 0x1ff, 0x1, 0x842}], ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}) [ 1073.912686] FAULT_INJECTION: forcing a failure. [ 1073.912686] name failslab, interval 1, probability 0, space 0, times 0 [ 1073.914060] CPU: 0 PID: 13010 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1073.914872] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1073.915822] Call Trace: [ 1073.916142] dump_stack+0x107/0x167 [ 1073.916587] should_fail.cold+0x5/0xa [ 1073.917027] ? io_wq_create+0x6ef/0xc00 [ 1073.917491] should_failslab+0x5/0x20 [ 1073.917937] kmem_cache_alloc_node_trace+0x59/0x340 [ 1073.918527] io_wq_create+0x6ef/0xc00 [ 1073.918981] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1073.919569] ? io_import_iovec+0x1120/0x1120 [ 1073.920084] ? io_apoll_task_func+0x2d0/0x2d0 [ 1073.920620] ? __io_req_find_next+0x300/0x300 [ 1073.921154] io_uring_setup+0x1dd1/0x2980 [ 1073.921642] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1073.922225] ? wait_for_completion_io+0x270/0x270 [ 1073.922801] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1073.923410] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1073.923998] do_syscall_64+0x33/0x40 [ 1073.924429] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1073.925053] RIP: 0033:0x7f707acaeb19 [ 1073.925491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1073.927645] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1073.928536] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1073.929370] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1073.930183] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1073.931019] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1073.931834] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:58:35 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0xf, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1073.954456] FAULT_INJECTION: forcing a failure. [ 1073.954456] name failslab, interval 1, probability 0, space 0, times 0 [ 1073.955840] CPU: 0 PID: 13009 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1073.956673] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1073.956851] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=15 sclass=netlink_xfrm_socket pid=13018 comm=syz-executor.1 [ 1073.957624] Call Trace: [ 1073.957639] dump_stack+0x107/0x167 [ 1073.957652] should_fail.cold+0x5/0xa [ 1073.957671] ? create_object.isra.0+0x3a/0xa30 [ 1073.961942] should_failslab+0x5/0x20 [ 1073.962388] kmem_cache_alloc+0x5b/0x310 [ 1073.962862] ? ext4_dirty_inode+0x107/0x130 [ 1073.963371] create_object.isra.0+0x3a/0xa30 [ 1073.963879] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1073.964486] kmem_cache_alloc+0x159/0x310 [ 1073.964980] jbd2__journal_start+0x190/0x7e0 [ 1073.965494] __ext4_journal_start_sb+0x214/0x390 [ 1073.966050] ext4_file_write_iter+0xee9/0x1530 [ 1073.966585] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1073.967121] ? kasan_save_stack+0x32/0x40 [ 1073.967600] ? kasan_save_stack+0x1b/0x40 [ 1073.968081] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1073.968675] ? iter_file_splice_write+0x165/0xc90 [ 1073.969235] ? direct_splice_actor+0x10f/0x170 [ 1073.969755] ? splice_direct_to_actor+0x387/0x980 [ 1073.970317] ? do_splice_direct+0x1c4/0x290 [ 1073.970807] ? do_sendfile+0x553/0x11e0 [ 1073.971265] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1073.971810] ? do_syscall_64+0x33/0x40 [ 1073.972269] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1073.972912] do_iter_readv_writev+0x476/0x750 [ 1073.973424] ? _cond_resched+0x10/0x30 [ 1073.973878] ? new_sync_write+0x660/0x660 [ 1073.974348] ? avc_policy_seqno+0x9/0x70 [ 1073.974824] ? selinux_file_permission+0x92/0x520 [ 1073.975388] ? security_file_permission+0xb1/0xe0 [ 1073.975952] do_iter_write+0x191/0x700 [ 1073.976410] ? trace_hardirqs_on+0x5b/0x180 [ 1073.976926] vfs_iter_write+0x70/0xa0 [ 1073.977374] iter_file_splice_write+0x726/0xc90 [ 1073.977912] ? generic_splice_sendpage+0x140/0x140 [ 1073.978491] ? security_file_permission+0xb1/0xe0 [ 1073.979051] ? generic_splice_sendpage+0x140/0x140 [ 1073.979622] direct_splice_actor+0x10f/0x170 [ 1073.980135] splice_direct_to_actor+0x387/0x980 [ 1073.980724] ? pipe_to_sendpage+0x380/0x380 [ 1073.981228] ? do_splice_to+0x160/0x160 [ 1073.981688] ? security_file_permission+0xb1/0xe0 [ 1073.982250] do_splice_direct+0x1c4/0x290 [ 1073.982735] ? splice_direct_to_actor+0x980/0x980 [ 1073.983293] ? avc_policy_seqno+0x9/0x70 [ 1073.983771] ? security_file_permission+0xb1/0xe0 [ 1073.984335] do_sendfile+0x553/0x11e0 [ 1073.984809] ? do_pwritev+0x270/0x270 [ 1073.985256] ? wait_for_completion_io+0x270/0x270 [ 1073.985821] ? rcu_read_lock_any_held+0x75/0xa0 [ 1073.986361] ? vfs_write+0x354/0xb10 [ 1073.986799] __x64_sys_sendfile64+0x1d1/0x210 [ 1073.987320] ? __ia32_sys_sendfile+0x220/0x220 [ 1073.987855] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1073.988492] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1073.989083] do_syscall_64+0x33/0x40 [ 1073.989519] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1073.990116] RIP: 0033:0x7fe85904db19 [ 1073.990554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1073.992735] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1073.993627] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1073.994461] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1073.995289] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1073.996121] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1073.996957] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 00:58:35 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000001000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:58:35 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 32) [ 1074.034453] FAULT_INJECTION: forcing a failure. [ 1074.034453] name failslab, interval 1, probability 0, space 0, times 0 [ 1074.035867] CPU: 0 PID: 13110 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1074.036674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1074.037625] Call Trace: [ 1074.037933] dump_stack+0x107/0x167 [ 1074.038348] should_fail.cold+0x5/0xa [ 1074.038782] ? create_object.isra.0+0x3a/0xa30 [ 1074.039299] should_failslab+0x5/0x20 [ 1074.039737] kmem_cache_alloc+0x5b/0x310 [ 1074.040200] ? io_wq_create+0x114/0xc00 [ 1074.040681] create_object.isra.0+0x3a/0xa30 [ 1074.041184] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1074.041765] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1074.042360] io_wq_create+0x6ef/0xc00 [ 1074.042802] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1074.043384] ? io_import_iovec+0x1120/0x1120 [ 1074.043890] ? io_apoll_task_func+0x2d0/0x2d0 [ 1074.044399] ? __io_req_find_next+0x300/0x300 [ 1074.044933] io_uring_setup+0x1dd1/0x2980 [ 1074.045409] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1074.045986] ? wait_for_completion_io+0x270/0x270 [ 1074.046547] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1074.047147] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1074.047734] do_syscall_64+0x33/0x40 [ 1074.048163] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1074.048762] RIP: 0033:0x7f707acaeb19 [ 1074.049186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1074.051260] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1074.052125] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1074.052958] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1074.053764] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1074.054579] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1074.055393] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:58:35 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x10, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:58:35 executing program 6: pipe2(&(0x7f0000000280)={0xffffffffffffffff}, 0x80800) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x10d, &(0x7f00000001c0)={0x0, 0x6ac7, 0x0, 0x2, 0x42}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) recvmsg$unix(r0, &(0x7f0000001680)={&(0x7f0000000380)=@abs, 0x6e, &(0x7f0000001540)=[{&(0x7f0000000400)=""/14, 0xe}, {&(0x7f0000000440)}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/12, 0xc}], 0x4, &(0x7f0000001580)=ANY=[@ANYBLOB="1000000000000000011f000000000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0xe0}, 0x2000) perf_event_open(&(0x7f0000000300)={0x3, 0x80, 0x0, 0x1, 0x1f, 0x8, 0x0, 0x200, 0x0, 0xc, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffff7fff, 0x1, @perf_config_ext={0x80000000, 0x424e}, 0x420, 0x6d3c, 0x1ff, 0x1, 0xfffffffffffff495, 0x6, 0x8, 0x0, 0x3, 0x0, 0x8}, r4, 0x4, 0xffffffffffffffff, 0x2) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r6, 0x3, 0x0, 0x8000) syz_io_uring_submit(0x0, 0x0, &(0x7f00000016c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x6) ioctl$BTRFS_IOC_QUOTA_RESCAN(r6, 0x4040942c, &(0x7f0000000440)={0x0, 0x3, [0x9a41, 0x101, 0xa51, 0x4, 0x5, 0xff]}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r5, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) r7 = socket$unix(0x1, 0x5, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) syz_io_uring_submit(r8, r3, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r7, 0x8983, &(0x7f0000000240)={0x8, 'macvlan0\x00', {'geneve1\x00'}, 0x2}) 00:58:35 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000012000101"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="0400000000000000d945e27e80e22e2f000000000000000063819efa0000000000"]) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001900)={0x0, 0x0, "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", "59e1b4cb56fab1800a0463c403fea60c6e32a317e039e53fd47b4c3a935ddb9ab15a95cc5541197479dfde340187f994f097b60e4cb7f6ca2c60226ead5009fffa3b7cff51a58c74427836ebfe5fc065b1bc8b33cd37346c792c7347c254cdbc713064f3dbbc5ad79c09c373f9643fb930d42346150d854e69fe938cdbcd831fff08be288a62cb3fe32ed6f9f603e9dd0254f7a02beebe02f990144693b742db11d713d3c24a7891bf4d06c5ed3b13d503e71301ff95ab6344ac7b79478e758ce71e347cf5e49a07fe4ee103108991b6b78abf18017a57247ca38962f665c179b1dc40c81c70e7b44f69865b2c401d1221ba17bb955d62104fbf0d581aa112cf18ada39cdd73565bf295c05ac1a9e4378d5368c522ba377781116e055a3738bcbd4f2790e575aa84a4937baa091ebab5e09462f3fc26a098f55c4b8b4dc65bd2a9647ba44f52016898da0474a757607d9a2dbe4a07aa11d6d6a5fe59a737e2d0bc4abcf1bbe6ece6427bbf70d8b25df70773183b4ab7d23732bfcf4e722a832bcb44d4538038d5a1db5b799d7e05f47e1c0741d98f7d42c194cac68aaa49fac1f4d82c81da25c1b30e6476058af31e701c9541767bc3065472f0632f786f71f293b8238666497a5914004d80769447d8e0830aa6d978659c2d8a556ac2877acc21960887e5917da1b89dcee6b4917f5442d038dfe62ec504fe8499c3ae2b1b4b9b447d5e07bf5b10c7205923c1091613ef576cb5d059dbaaef785e8e8b1d609e8180ee99593b5e7f9c98598877c3b09b9ae9cd6e8ecd0e4014f2c98d642877d3ade2558ea292022584e82e191a765576c19a46a49d0d4e696d3ff77ff55d46b95e4ef81545b82a1bdb396901574e4350025f629d2ba026c0628fb553cdb34d0e529d406d7c642c4c1610f4d1d56cbe73c28252210b76020102fec926ed8805efb99907937e1cf18439cab6c4ea6baeab7d7f0bfab90e923be082ac395958b090a080881d33d69ba25e35645d94b728a2c7b7ff3893ec97e457a78d294dfab447e19fab9509a5b749ca03834b6dab647d2119373375a3937731cce4629ef66c902c56a4fa295fbf8452044a87ffc2011f32ae457df3b3239fbd429aa0b13696fe3123d462996a60daf8d07c6f171dd417294099ef13b160db2225fa50ed393c6177dbb2eade76815ea99b4df5cd823a998dc59deaeb04a352e4924049bb2c456d2364362417f46841ff2d99b829d994d40dc7141acf7c30ac2d4a3ec4398f0a01a029f04713d525ca54dd39be7188682da2b4903c941dfc21a8629c4198303f67d73e26a2730cdf9adc0672717e4e059f1c78e30f3d8ff3c72937245dfbcc3b6af63a71c7e0a6f4d4b6a0f384ecb750b804b8bbd3d4060ecd622e83d78718e3f3e69c0a7f71688d733fd0440c2f4278d14f22783a134c664b13908e2e95676c59554d9b11593757a2dca8d16f56bd6688266dcd20be2fb43175b634c2f671b495d85534abc66e0d37a00ac31034f90f77823ccaaedaff068e644e3b3ef791eaf5ad32c77e8091521879f10cafe16c8d7f32b0bb9918a37b80e3425ffb21e9cdd6dd0b23a5a947146b733db60252d23f34c58f1a077df39e58ba5dbb24d689771555fc606e562efbcc4486d2b687e92ba5ea6e977f1522163abc1d6b9ee7e95b1610f74232cf97428109d67bb6b8eda600011ee2c4afc1764dd9d48667cec50864ee158d28c867aace0193397cab3f1d3dca59d79c67066756646bf3c13839c5a25544263837005224de57ff5843468ca67639bd15f6736a8f7109f732943431326a56b6f65704d0a016c95578994313ead96147541feb72372588e12bc8064e0609ae8b00f759d21266d914c87a1e147b4cd78ec8975d5264de2e33100be941f0162dd2d4539148d191e89aa8ea5c0f0b0fe5663d22140884e45e54aaa54efdb9d5d7aae4f8d728ce852dca5fbe2308ff8423881759cce7d2ae0dde6739e9d071589af1b371ddcd962937cdd242aaa1a155efec741fb60a1ef13fd7c0efc44ba2819d5876f69780bfd50a1338202282e9dbade22e3672e927144a2037e2fd5bca653842fab91803757a738caf416299152b02305da5f813d8183f57720cb540bd67bba1ea728cd1bb349d2a6449a0676856e680ba563422fa877a98988983ae64e49ddb3022d60e4795e47a75809ad44eaa4e66f3864accf9d83a275145d5ae0a244a2828fb14c028d7180ccde218bf52bec5825f0605273541eab19be15d12fa175756ff3124d19135233a635383ba90138e68e520badd5c6220162f1057b56458aaf6bf7479b7e42cb6cdaa680bd62327a3f86814ad089d84baefc0d172b8e055b9ce4e85660387dd711e1361486053ae2348ccb3786c31e56475c4642ca04fd31d6e6c0571ce8310feeeb82d7d437e533c3670197118630235063522eef860f4ff538b764bde5c65ca4c73092232215a7f40bfed5770bed335986339b878ef128c70868ba1c4585eebf6df5c375b2b2cff3ab60c88c68dd99f3c114ea4b778609918505199b52bd1033050862f83b082c6618bf29823e81b1b4c483a89fec26438772e5b3118cd8d11b6d29162137863fbe78f2e626a2494cbd94407a8ba1496e4feba60582a058c4143f4e26d038933d56d4c739bb4439b2c55ce9785b624e7c985bfeaf05bf326b898b07223418ec5a0ff16aae6b1dd6d0de295b1b612e0d2b2a3efc1e7c06f77988369dfe5ee05b7e38266acd7cae2b5118229fca238768080f79c5dfb4afe197f0c5f217337af34395a90810ef6b2e164a994062b371956fd202f47423f9d91cc95c4582aed7d837c16ac585d1d8c6a4332855cd9948abc4c33b19dbaee99f5a008da0eda5acedefe008f3c96c0b69835ace6a3a7dadcc88475304e8d489c97ecd85c34d18d932542c84fc23bc0c976f13a134ee1fae9e8c4c11aa3f60e9d5ba8cb8dabd49f2ac594951c266f09310de584c288d1207a3304e6591cff1d9fc2bf3022e56f1111fa179f54ee8253b18025d9cc7890d1e7260f05902382e2492815a1d6696bd360734dbc0b0ab7ea332d4d09dd85202d65d9edc8fa2a6a0f89f57adbc4ad7108d0a55412aaf4e81c0159283464c6f2df065d0ee2b38b7e690005ef74d5acb6324c04e96618573a58ac1e30ae1cb7d7d790592af9cf0939f32269af0f119fdd4e5ebc4e6635dc50dfc457808d6636110b433652cb9c125ce5fbfd885793cebc2c42ad0418e62a09ecd3fd6b656d06af2a2eec4c6b06010a19d0b487eeda63e6262d18fff58ea266f14ad29d22fa4a2c31829278ce3e9aa1982694c3644336800354682884ae7214b4e1d3f40b044624c3b1b6351b21beebc8671c04c4e0f9e4fd4c796ebbf3e2e38df63ffed07ec79ce771aa1367f0eda3ae24b5b1755ffcfb4053ae879af829466afd64755edc60672e3899ea7b183c23857845e4209a4099999161c07df75c958fa354cfbfe36d68859fb5a30f73031feea9429d1d16d1ca7b13dbcb5b564e3fc1052c5bbe0b5a63db191589a95108b22e7e65b7e02140f8669d305841a3b5bb1660304b45c1c7b1bd2111603e281d9dbf575ddaea6d4b2517c326b9b87874dd3e9a0c7fb153350732adc3a5a175e2740706530acb86e03e5e5e6747dcec15f7bdfb355d1bf5059a007c2a392e3dd1e204821767617a2538a9b5ffa925269bb82d026ac649c11dcb0bbfa09cda226961aea981dbce1adfa1f2a1afb7c557b77ea2609dc9ea6888d3c0c6d1ee9f0a812a7f25e3185a044f552f0db473622a2cae6d2515efc5c441f6e429186fa23eee37e3c6a52f0309b0ff91f3cc2f07a2874654925dc9a7a96c6013cd95481a9af77934516284f2a4527e7980b654f8fdf556d16fce1b6995a7a2b2a123e15b7ed83189e91ace3227772ec34e67d295b309f3e65ccc6e9566426e5e3f8bf9526b0ec4440cdb0c10f332cf826376230b3310399e1980913eb15f2a2b74d2096c44f6dddd448a80555e0a685337962abdf8b03a2126370127825db8ceb8896116e626091a27aa456fbad254f9bccb906f0b8db0a65c03a5cd988b317ce007ca46378381b32b8ac159177d4a0db9c4b883052c5634ac15e748d5c909cfdeed1abec762d14f56e78ca34d4fae01d9c5c67d4270727551c30513a53181d7c28682b1fdcbc4d401e87a33fb44444b4d529d1e1552a218b7bbb134492d73b04829e751c68e4fae719722a9a18d6aad8d3c513bfd7d8470744f3302b9413af024931e45e5a0a47b8620447b6691e8f66029bed984c4432fed5f78aa928fa6675d39e3ead1d68e6b2b40ed09d5ffdbffbf0009f0af009d6898dc9aef7d5bb86f380785960e52ffe3e1b69ea8107bdb3e06402d5fba84b7e209a0498cb0c1e68168c13f7cc6abdfb986dd1722677ac355ff11ca04cca13d6a4b72f007366c90750b1d09b88ca84c080336ed1218bda3f4a299c042ba14c11bbfab3c158f1eb0f8d15e652e6579345c87b6e06d291327683725ca07d4bf20cd84b40281a8e84f2b2b13f3034e2475f58db8258038dedb36d66caba94db6f9c73ec7313b51c65004ebe92dc08876004c9a9389cb14eb20155fffef3f084430b04b3a818a32754e307e7bdb5bbc28fdaa538caa38520e7147a497f64872940eca9176e509bc5d76110ed0ccfcc7bba80ad51d62825b912199338c418572182b21c9f4e796753513a995081ba3e72835efca1dce3f41fcd538258dff828c65236eb2fd1f3450b22d7d61e79bac38ec0da1fdd8d27103df8534e83a56f385ba913b86f5727e65d5d903e1f964351391e64a455782e33906eff3ec2f283cc9c647658995759e7243e818c6ab06053898f106a640009a1ff772e88efc1c5edfa09b5a9389dd62cbe2e2e0f1983cb12dddda4778ca23bd53fce20cf6bc83ff91ffcbd1f83286bd0c6a5abc3ea1b2e22cce692451ff2149b99bd409c8a46c32ecdeabad6181dc5f941ebafe0379bdb7a2da938797d7ddcfd9e07628f545f91dcc2f9d4e6d599f5069d4e634ce2649f31436680fb20ca9e14d01a8c364abeee14f6ad35fc58652acb0cf4269c31bdd0713c2c69cb8ec9e8923dfe2a0e5e64318216c98a93efe1f87807becf9cc44d3e52331e0a98ef67886c638a98ea61fc11f717b1bfa0076836501aa46e26ecb2528c91326bc7b73fe477e41d59903eae91336b0f97f26df46003ef17527fa71c5378fc9a9281b273e85194d81ef58f40bc089f07bfba6f0ccb15b0579daa9ce78e309be5a2237abac45dd8f37e2f1bb9d08536b4725b968d15a2ae472ed2900740fa7dd08cf08e5449e7baf5ffd56ffe36cf7eeea29d08d14b1686a93a6672ed3d2ac213b336341ef0573bc86f124cd819277c2a8183c9a5986b8290ca13be949474241252b0793dad82f450bbca0"}) 00:58:35 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000002000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:58:49 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 69) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:58:49 executing program 6: socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_io_uring_setup(0x568c, &(0x7f0000000080)={0x0, 0xd185, 0x8, 0x3, 0x353}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000180)='syz1\x00', 0x200002, 0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x1, 0x0, r1}, 0x1) syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x11, 0x80, 0xc2, 0x24}, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @redirect={0x4, 0x0, 0x0, @private, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @empty, @broadcast}, "dfe34aa5edde5634"}}}}}, 0x0) 00:58:49 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000003000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:58:49 executing program 7: r0 = fork() waitid(0x2, r0, &(0x7f0000000000), 0x80000000, 0x0) 00:58:49 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 33) 00:58:49 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000012000101"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="0400000000000000d945e27e80e22e2f000000000000000063819efa0000000000"]) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001900)={0x0, 0x0, "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", "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"}) 00:58:49 executing program 5: ftruncate(0xffffffffffffffff, 0x0) lstat(0x0, &(0x7f00000007c0)) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0xa, 0x10, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xc9a, 0x0, 0x0, 0x0, 0x800000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="14ddff0012003907000a00000080000000"], 0x14}}, 0x0) flock(r1, 0x6) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x20040000) [ 1088.077338] netlink: 276 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1088.081540] FAULT_INJECTION: forcing a failure. [ 1088.081540] name failslab, interval 1, probability 0, space 0, times 0 [ 1088.083622] CPU: 0 PID: 13146 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1088.084874] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1088.086361] Call Trace: [ 1088.086835] dump_stack+0x107/0x167 [ 1088.087476] should_fail.cold+0x5/0xa [ 1088.088147] ? create_object.isra.0+0x3a/0xa30 [ 1088.088960] should_failslab+0x5/0x20 [ 1088.089643] kmem_cache_alloc+0x5b/0x310 [ 1088.090358] ? ext4_dirty_inode+0x107/0x130 [ 1088.091131] create_object.isra.0+0x3a/0xa30 [ 1088.091905] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1088.092820] kmem_cache_alloc+0x159/0x310 [ 1088.093563] jbd2__journal_start+0x190/0x7e0 [ 1088.094354] __ext4_journal_start_sb+0x214/0x390 [ 1088.095196] ext4_file_write_iter+0xee9/0x1530 [ 1088.096005] ? __switch_to_asm+0x3a/0x60 [ 1088.096745] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1088.097552] ? io_schedule_timeout+0x140/0x140 [ 1088.098356] ? splice_direct_to_actor+0x387/0x980 [ 1088.099204] ? do_splice_direct+0x1c4/0x290 [ 1088.099965] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1088.100790] ? do_syscall_64+0x33/0x40 [ 1088.101476] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1088.102430] do_iter_readv_writev+0x476/0x750 [ 1088.103216] ? _cond_resched+0x23/0x30 [ 1088.103900] ? new_sync_write+0x660/0x660 [ 1088.104642] ? avc_policy_seqno+0x9/0x70 [ 1088.105354] ? selinux_file_permission+0x92/0x520 [ 1088.106196] ? security_file_permission+0xb1/0xe0 [ 1088.107047] do_iter_write+0x191/0x700 [ 1088.107735] ? page_cache_pipe_buf_confirm+0x10/0x2d0 [ 1088.108652] vfs_iter_write+0x70/0xa0 [ 1088.109325] iter_file_splice_write+0x726/0xc90 [ 1088.110153] ? generic_splice_sendpage+0x140/0x140 [ 1088.111033] ? security_file_permission+0xb1/0xe0 [ 1088.111889] ? generic_splice_sendpage+0x140/0x140 [ 1088.112764] direct_splice_actor+0x10f/0x170 [ 1088.113538] splice_direct_to_actor+0x387/0x980 [ 1088.114357] ? pipe_to_sendpage+0x380/0x380 [ 1088.114941] FAULT_INJECTION: forcing a failure. [ 1088.114941] name failslab, interval 1, probability 0, space 0, times 0 [ 1088.115127] ? do_splice_to+0x160/0x160 [ 1088.118214] ? security_file_permission+0xb1/0xe0 [ 1088.119067] do_splice_direct+0x1c4/0x290 [ 1088.119790] ? splice_direct_to_actor+0x980/0x980 [ 1088.120631] ? avc_policy_seqno+0x9/0x70 [ 1088.121349] ? security_file_permission+0xb1/0xe0 [ 1088.122189] do_sendfile+0x553/0x11e0 [ 1088.122858] ? do_pwritev+0x270/0x270 [ 1088.123520] ? wait_for_completion_io+0x270/0x270 [ 1088.124358] ? rcu_read_lock_any_held+0x75/0xa0 [ 1088.125171] ? vfs_write+0x354/0xb10 [ 1088.125818] __x64_sys_sendfile64+0x1d1/0x210 [ 1088.126590] ? __ia32_sys_sendfile+0x220/0x220 [ 1088.127387] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1088.128286] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1088.129187] do_syscall_64+0x33/0x40 [ 1088.129844] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1088.130725] RIP: 0033:0x7fe85904db19 [ 1088.131359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1088.134548] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1088.135876] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1088.137130] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1088.138358] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1088.139594] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1088.140832] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 [ 1088.142078] CPU: 1 PID: 13159 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1088.143582] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1088.145343] Call Trace: [ 1088.145910] dump_stack+0x107/0x167 [ 1088.146677] should_fail.cold+0x5/0xa 00:58:49 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x11, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1088.147484] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1088.148912] should_failslab+0x5/0x20 [ 1088.149720] kmem_cache_alloc_trace+0x55/0x320 [ 1088.150709] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1088.151857] io_uring_setup+0x14f6/0x2980 [ 1088.152754] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1088.153836] ? wait_for_completion_io+0x270/0x270 [ 1088.154877] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1088.155993] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1088.157098] do_syscall_64+0x33/0x40 [ 1088.157886] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1088.158968] RIP: 0033:0x7f707acaeb19 [ 1088.159755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1088.163636] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1088.165254] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1088.166758] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1088.168258] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1088.169781] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1088.171283] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:58:50 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000004000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:58:50 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x12, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:58:50 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000012000101"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="0400000000000000d945e27e80e22e2f000000000000000063819efa0000000000"]) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001900)={0x0, 0x0, "bc38820f569900668718b4b2d50192fd90f008294b01e7d657db16dc5b23c68afe301fec1213ff303922c81b8df17a0af12a26fafd07391a67f2dff554e797b4b152f7d817d6d78939f9d2f50c6be5f04460662d40836a63a701bcdce0311629b28136debdb43c736549e5adb0bca005fc4db962549bec725c828001268c0788be77f13a6bdf7dc7cc90034993202b5d519a1993c91f5b9e1d11541c4a34303d52ffda2d8822c2464c2afeaeb7d09a1568ef75001f3fbe11337b68539485c9cd315cb6ba49f39a309418a4472516471971687863de2c7d46fee89996904d3611ba1e5919f802c12cae96dc84ecf3d2cd8f298e1beef1e229f9bdfc6704a71c7b", "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"}) 00:58:50 executing program 6: socketpair$nbd(0x1, 0x1, 0x0, 0x0) pipe2(&(0x7f0000000480), 0x0) r0 = io_uring_setup(0x10006a32, &(0x7f0000000300)={0x0, 0x0, 0x8, 0x2}) epoll_create1(0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_STATX={0x15, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000540), &(0x7f0000000240)='./file0\x00', 0x4, 0x2000}, 0x8) ioctl$FIOCLEX(r1, 0x5451) listen(r2, 0x163) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYRESOCT=r0], 0x24}, 0x1, 0x0, 0x0, 0x4040000}, 0x4008040) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x10000, 0x0, 0x0, 0x4, 0x7, 0x3, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a40)) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b3179c044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eaba765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c56fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00'}) openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x181a80, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), r3) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0x4}) openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x80202, 0x100) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) 00:58:50 executing program 5: r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) r1 = creat(0x0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0xaf, 0x0, 0x0, 0x0, 0xd8, 0x0, 0x80000001, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000002c0), 0x4}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(r1, &(0x7f00000001c0)='./file0\x00', 0x0, 0x180) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000d40)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) r3 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x2001) write$binfmt_elf64(r3, &(0x7f0000001140)=ANY=[@ANYBLOB="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"/1821], 0x712) timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) timer_settime(r4, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) r5 = syz_open_dev$vcsu(0x0, 0x0, 0x0) syz_io_uring_setup(0x7781, &(0x7f0000000cc0)={0x0, 0x69ec, 0x10, 0x3, 0x3aa, 0x0, r5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f00000004c0)) r6 = syz_open_dev$mouse(&(0x7f0000000080), 0x8, 0x200c01) ioctl$SG_IO(r6, 0x2285, &(0x7f0000000840)={0x0, 0xfffffffffffffffd, 0xaa, 0x9, @buffer={0x0, 0xfd, &(0x7f0000000600)=""/253}, &(0x7f0000000700)="906e33f2d56fa859003b6e168fefd2f61954328e140f3e89652e35514380b6ab86dc759cc9782ecb1c8874be37b6dc64ccabb8b39f6276b138815c1b48f6571455c083298e933f8d843b12bfebbb6a121d0bf96a26c5c05644c468d55625f2de9c09dcce2db9a177b88ebce9f1b01e79a607855de220e717cd165e67254f0691b9fe7216b3ae6d265145b93bba36d9b6d3472a574d4a27d7c012208524b9896f5e48f83bab78fc676ddc", &(0x7f00000007c0)=""/121, 0x6f01, 0x13, 0x0, &(0x7f0000000300)}) socket$inet6_udplite(0xa, 0x2, 0x88) r7 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x28, 0x1e, 0xe21, 0x0, 0x0, {0x7}, [@nested={0x14, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @typed={0x6, 0x37, 0x0, 0x0, @str='/\x00'}]}]}, 0x28}}, 0x0) fcntl$dupfd(r2, 0x406, r7) io_submit(0x0, 0x3, &(0x7f00000003c0)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x8, 0x200, 0xffffffffffffffff, &(0x7f00000000c0)="ccafd8251428bc9bbc7f0e8d6b36782488e75f59eac9d00dc4ef5af5d1b9325d0ddbe515a7e596736a2e723a03e9f07bab569a208dd5055ccadf3d729c4bafb04cf82acd8fd6d44aee111cafdc897bc617003f605ca584e2f9f7877659445aca85199b01d326a79698301288e53a0bf35f036280a5739050d2426272fa1fdb4b26cb8e5f9926f0d0bf0459e71eb82ba5b62f8e50002703f5b0d01b7c8c3a7258d6511a35ce5682bae35984a815b14b1a7350d4022cac67eeb996545638bd7ff680b3d4a028ca0ac0045b4cd8398d2b4fd11c2e69d77e76c279746aac9df1b6c4f5d895a7b90a720ce03e86e05646a47c775e82c671f89096ec98", 0xfa, 0x1, 0x0, 0x2, r0}, 0x0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x8, r0, &(0x7f0000000500)="dbb302c4031f0b8956ac6cd15ddc46310efaf6f592e8a6a9e1c208400f05651cd3db62f95d966b1a741ba1440beb5d66181ae0ffc48ab3aa9f3da94d52286aa506fd9df1d141ab7559875be3750e21bdffe0b7052781fe26ae4f448a3dc452b108054c38d0e81230b087e77190a6ed1a435f21c11ea4e18b1a1b808f4bedd0712bd7e66274b2e25e9da9a3c41413d0158efef46b6ff798f5654de494c84b37b7ed2f8d5b3587eac30437d06f9df5445f5031787ae7d898d56113133cddbfd187582bfadb7df18d5c30365cc73f8407378dc01ae492710ffa5d4cafa5829f120813d0fc2b47caf9e0bafe00e7d4df8262c14bf0", 0xf3, 0xffff, 0x0, 0x2, r1}]) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f00000008c0)={0x0, 0x8, 0x1000, 0x1}) [ 1088.300104] sg_write: data in/out 327644/1768 bytes for SCSI command 0x0-- guessing data in; [ 1088.300104] program syz-executor.5 not setting count and/or reply_len properly [ 1088.304948] netlink: 276 bytes leftover after parsing attributes in process `syz-executor.1'. 00:58:50 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000005000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:58:50 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x13, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:58:50 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000012000101"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="0400000000000000d945e27e80e22e2f000000000000000063819efa0000000000"]) [ 1088.349686] sg_write: data in/out 327644/1768 bytes for SCSI command 0x0-- guessing data in; [ 1088.349686] program syz-executor.5 not setting count and/or reply_len properly [ 1088.386933] netlink: 132 bytes leftover after parsing attributes in process `syz-executor.1'. 00:59:04 executing program 7: fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46c00) fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) 00:59:04 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0xb65, @mcast2, 0xfffffffc}, 0x1c) r1 = creat(0x0, 0x0) write$binfmt_elf64(r1, &(0x7f00000008c0)=ANY=[], 0x629) creat(&(0x7f0000000080)='./file0\x00', 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x3, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1f40c51b1b780b7b, @perf_config_ext={0x0, 0xffffffffffffffff}, 0xc000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYRES32=r2, @ANYBLOB="00000000000004002e2f6669"]) r3 = fsopen(&(0x7f00000000c0)='rpc_pipefs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r3, 0x1, 0x0, &(0x7f00000003c0)='-\xfcx{\xe6\xac\xc8\xdf\x8e;\xb4Wy\xbea\xac2@\xa7\\\x98\x1f\x9d\x00\x00\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) r4 = openat$incfs(r0, &(0x7f0000000340)='.pending_reads\x00', 0x8040, 0x88) getsockopt$inet_tcp_int(r4, 0x6, 0xa, &(0x7f0000000380), &(0x7f0000000400)=0x4) fsmount(r3, 0x0, 0x0) r5 = socket$netlink(0x10, 0x3, 0x4) sendmsg$nl_generic(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x3, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) sendmsg$nl_generic(r5, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYRES16], 0x14}, 0x1, 0x0, 0x0, 0x841}, 0x20040000) openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x1, 0x3, 0x1}, 0x18) fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) 00:59:04 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 70) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:59:04 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000006000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:59:04 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x10000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f73661fe41100080101000240002000f801002000400000000000000000008000"/64, 0x40}, {&(0x7f0000000040)="f8ffff00f0ffffffff07800009a000ffffff00"/32, 0x20, 0x800}, {&(0x7f0000010200)="f8ffff00f0ffffffff07800009a000ffffff00"/32, 0x20, 0x1000}, {&(0x7f0000010300)="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", 0x120, 0x1800}, {&(0x7f0000010500)="2e20202020202020202020100098e670325132510000e67032510300000000002e2e202020202020202020100098e670325132510000e670325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200098e670325132510000e670325104001a040000", 0x80, 0x2800}, {&(0x7f0000010600)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x26c}, {&(0x7f0000010b00)='syzkallers\x00'/32, 0x20, 0x3800}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x6800}], 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="f76b4441738c4ae0f20b43"]) 00:59:04 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x14, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:59:04 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000012000101"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) 00:59:04 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 34) [ 1102.704700] netlink: 236 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1102.709514] loop6: detected capacity change from 0 to 65536 [ 1102.730740] FAT-fs (loop6): Unrecognized mount option "÷kDAsŒJàò C" or missing value [ 1102.740962] FAULT_INJECTION: forcing a failure. [ 1102.740962] name failslab, interval 1, probability 0, space 0, times 0 [ 1102.743436] CPU: 0 PID: 13300 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1102.744899] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1102.746625] Call Trace: [ 1102.747175] dump_stack+0x107/0x167 [ 1102.747935] should_fail.cold+0x5/0xa [ 1102.748732] ? jbd2__journal_start+0x190/0x7e0 [ 1102.749677] should_failslab+0x5/0x20 [ 1102.750459] kmem_cache_alloc+0x5b/0x310 [ 1102.751305] ? __kernel_text_address+0x9/0x40 [ 1102.752065] FAULT_INJECTION: forcing a failure. [ 1102.752065] name failslab, interval 1, probability 0, space 0, times 0 [ 1102.752225] jbd2__journal_start+0x190/0x7e0 [ 1102.755616] __ext4_journal_start_sb+0x214/0x390 [ 1102.756582] ext4_iomap_begin+0x485/0x700 [ 1102.757451] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1102.758450] ? kasan_save_stack+0x1b/0x40 [ 1102.759316] ? ext4_file_write_iter+0xe0e/0x1530 [ 1102.760288] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1102.761601] ? splice_direct_to_actor+0x387/0x980 [ 1102.762583] ? do_splice_direct+0x1c4/0x290 [ 1102.763477] ? do_sendfile+0x553/0x11e0 [ 1102.764302] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1102.765266] ? do_syscall_64+0x33/0x40 [ 1102.766063] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1102.767164] iomap_apply+0x164/0x810 [ 1102.767929] ? iomap_dio_rw+0x90/0x90 [ 1102.768713] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 1102.769907] ? mark_held_locks+0x9e/0xe0 [ 1102.770751] ? filemap_check_errors+0xa5/0x150 [ 1102.771702] __iomap_dio_rw+0x6cd/0x1110 [ 1102.772533] ? iomap_dio_rw+0x90/0x90 [ 1102.773339] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1102.774280] ? ext4_orphan_add+0x253/0x9e0 [ 1102.775143] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1102.776152] ? ext4_empty_dir+0xae0/0xae0 [ 1102.777003] ? jbd2__journal_start+0xf3/0x7e0 [ 1102.777929] iomap_dio_rw+0x31/0x90 [ 1102.778675] ext4_file_write_iter+0xe0e/0x1530 [ 1102.779634] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1102.780568] ? kasan_save_stack+0x32/0x40 [ 1102.781430] ? kasan_save_stack+0x1b/0x40 [ 1102.782279] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1102.783318] ? iter_file_splice_write+0x165/0xc90 [ 1102.784295] ? direct_splice_actor+0x10f/0x170 [ 1102.785230] ? splice_direct_to_actor+0x387/0x980 [ 1102.786207] ? do_splice_direct+0x1c4/0x290 [ 1102.787078] ? do_sendfile+0x553/0x11e0 [ 1102.787883] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1102.788830] ? do_syscall_64+0x33/0x40 [ 1102.789623] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1102.790711] do_iter_readv_writev+0x476/0x750 [ 1102.791618] ? _cond_resched+0x10/0x30 [ 1102.792405] ? new_sync_write+0x660/0x660 [ 1102.793255] ? avc_policy_seqno+0x9/0x70 [ 1102.794086] ? selinux_file_permission+0x92/0x520 [ 1102.795076] ? security_file_permission+0xb1/0xe0 [ 1102.796066] do_iter_write+0x191/0x700 [ 1102.796869] ? trace_hardirqs_on+0x5b/0x180 [ 1102.797752] vfs_iter_write+0x70/0xa0 [ 1102.798527] iter_file_splice_write+0x726/0xc90 [ 1102.799493] ? generic_splice_sendpage+0x140/0x140 [ 1102.800509] ? security_file_permission+0xb1/0xe0 [ 1102.801511] ? generic_splice_sendpage+0x140/0x140 [ 1102.802511] direct_splice_actor+0x10f/0x170 [ 1102.803425] splice_direct_to_actor+0x387/0x980 [ 1102.804390] ? pipe_to_sendpage+0x380/0x380 [ 1102.805281] ? do_splice_to+0x160/0x160 [ 1102.806094] ? security_file_permission+0xb1/0xe0 [ 1102.807077] do_splice_direct+0x1c4/0x290 [ 1102.807913] ? splice_direct_to_actor+0x980/0x980 [ 1102.808908] ? avc_policy_seqno+0x9/0x70 [ 1102.809736] ? security_file_permission+0xb1/0xe0 [ 1102.810729] do_sendfile+0x553/0x11e0 [ 1102.811525] ? do_pwritev+0x270/0x270 [ 1102.812309] ? wait_for_completion_io+0x270/0x270 [ 1102.813287] ? rcu_read_lock_any_held+0x75/0xa0 [ 1102.814214] ? vfs_write+0x354/0xb10 [ 1102.814967] __x64_sys_sendfile64+0x1d1/0x210 [ 1102.815865] ? __ia32_sys_sendfile+0x220/0x220 [ 1102.816795] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1102.817857] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1102.818897] do_syscall_64+0x33/0x40 [ 1102.819642] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1102.820676] RIP: 0033:0x7fe85904db19 [ 1102.821444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1102.825156] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1102.826694] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1102.828123] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1102.829567] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1102.831006] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1102.832457] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 [ 1102.833938] CPU: 1 PID: 13307 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1102.835549] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1102.837418] Call Trace: [ 1102.838020] dump_stack+0x107/0x167 [ 1102.838845] should_fail.cold+0x5/0xa [ 1102.839700] ? create_object.isra.0+0x3a/0xa30 [ 1102.840723] should_failslab+0x5/0x20 [ 1102.841586] kmem_cache_alloc+0x5b/0x310 [ 1102.842495] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 1102.843640] ? trace_hardirqs_on+0x5b/0x180 [ 1102.844614] create_object.isra.0+0x3a/0xa30 [ 1102.845601] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1102.846744] kmem_cache_alloc_trace+0x151/0x320 [ 1102.847795] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1102.849013] io_uring_setup+0x14f6/0x2980 [ 1102.849959] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1102.851093] ? wait_for_completion_io+0x270/0x270 [ 1102.852198] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1102.853397] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1102.854565] do_syscall_64+0x33/0x40 [ 1102.855400] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1102.856551] RIP: 0033:0x7f707acaeb19 [ 1102.857393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1102.861523] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1102.863239] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1102.864853] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1102.866456] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1102.868076] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1102.869697] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1102.887669] loop6: detected capacity change from 0 to 65536 [ 1102.892323] FAT-fs (loop6): Unrecognized mount option "÷kDAsŒJàò C" or missing value 00:59:04 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 71) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:59:04 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000012000101"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) creat(&(0x7f0000000040)='./file0\x00', 0x0) [ 1102.905681] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=32 sclass=netlink_tcpdiag_socket pid=13292 comm=syz-executor.5 00:59:04 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000007000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:59:04 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x15, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1102.955268] FAULT_INJECTION: forcing a failure. [ 1102.955268] name failslab, interval 1, probability 0, space 0, times 0 [ 1102.957513] CPU: 0 PID: 13373 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1102.958821] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1102.960388] Call Trace: [ 1102.960902] dump_stack+0x107/0x167 [ 1102.961590] should_fail.cold+0x5/0xa [ 1102.962309] ? ext4_find_extent+0xa77/0xd70 [ 1102.963122] should_failslab+0x5/0x20 [ 1102.963841] __kmalloc+0x72/0x390 [ 1102.964501] ext4_find_extent+0xa77/0xd70 [ 1102.965305] ext4_ext_map_blocks+0x1c8/0x5880 [ 1102.966166] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1102.967152] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1102.968141] ? ext4_ext_release+0x10/0x10 [ 1102.968930] ? ext4_map_blocks+0x5cd/0x1910 [ 1102.969745] ? lock_release+0x680/0x680 [ 1102.970489] ? ext4_es_lookup_extent+0x485/0xa80 [ 1102.971376] ? lock_downgrade+0x6d0/0x6d0 [ 1102.972160] ? down_write+0xe0/0x160 [ 1102.972860] ? down_write_killable+0x180/0x180 [ 1102.973731] ext4_map_blocks+0x63f/0x1910 [ 1102.974519] ? kmem_cache_alloc+0x2a6/0x310 [ 1102.975323] ? __kernel_text_address+0x9/0x40 [ 1102.976155] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1102.977015] ? jbd2__journal_start+0xf3/0x7e0 [ 1102.977856] ? __ext4_journal_start_sb+0x214/0x390 [ 1102.978777] ? __ext4_journal_start_sb+0x1db/0x390 [ 1102.979707] ext4_iomap_begin+0x3ad/0x700 [ 1102.980493] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1102.981405] ? kasan_save_stack+0x1b/0x40 [ 1102.982183] ? ext4_file_write_iter+0xe0e/0x1530 [ 1102.983071] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1102.984241] ? splice_direct_to_actor+0x387/0x980 [ 1102.985143] ? do_splice_direct+0x1c4/0x290 [ 1102.985951] ? do_sendfile+0x553/0x11e0 [ 1102.986692] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1102.987554] ? do_syscall_64+0x33/0x40 [ 1102.988279] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1102.989267] iomap_apply+0x164/0x810 [ 1102.989948] ? iomap_dio_rw+0x90/0x90 [ 1102.990653] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 1102.991714] ? mark_held_locks+0x9e/0xe0 [ 1102.992482] ? filemap_check_errors+0xa5/0x150 [ 1102.993342] __iomap_dio_rw+0x6cd/0x1110 [ 1102.994103] ? iomap_dio_rw+0x90/0x90 [ 1102.994823] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1102.995657] ? ext4_orphan_add+0x253/0x9e0 [ 1102.996442] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1102.997365] ? ext4_empty_dir+0xae0/0xae0 [ 1102.998142] ? jbd2__journal_start+0xf3/0x7e0 [ 1102.998982] iomap_dio_rw+0x31/0x90 [ 1102.999664] ext4_file_write_iter+0xe0e/0x1530 [ 1103.000517] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1103.001372] ? kasan_save_stack+0x32/0x40 [ 1103.002130] ? kasan_save_stack+0x1b/0x40 [ 1103.002893] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1103.003832] ? iter_file_splice_write+0x165/0xc90 [ 1103.004716] ? direct_splice_actor+0x10f/0x170 [ 1103.005579] ? splice_direct_to_actor+0x387/0x980 [ 1103.006469] ? do_splice_direct+0x1c4/0x290 [ 1103.007268] ? do_sendfile+0x553/0x11e0 [ 1103.007992] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1103.008862] ? do_syscall_64+0x33/0x40 [ 1103.009576] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1103.010559] do_iter_readv_writev+0x476/0x750 [ 1103.011377] ? _cond_resched+0x10/0x30 [ 1103.012097] ? new_sync_write+0x660/0x660 [ 1103.012857] ? avc_policy_seqno+0x9/0x70 00:59:04 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000012000101"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) [ 1103.013595] ? selinux_file_permission+0x92/0x520 [ 1103.014710] ? security_file_permission+0xb1/0xe0 [ 1103.015606] do_iter_write+0x191/0x700 [ 1103.016322] ? trace_hardirqs_on+0x5b/0x180 [ 1103.017145] vfs_iter_write+0x70/0xa0 [ 1103.017844] iter_file_splice_write+0x726/0xc90 [ 1103.018716] ? generic_splice_sendpage+0x140/0x140 [ 1103.019644] ? security_file_permission+0xb1/0xe0 [ 1103.020518] ? generic_splice_sendpage+0x140/0x140 [ 1103.021436] direct_splice_actor+0x10f/0x170 [ 1103.022244] splice_direct_to_actor+0x387/0x980 [ 1103.023099] ? pipe_to_sendpage+0x380/0x380 [ 1103.023891] ? do_splice_to+0x160/0x160 [ 1103.024629] ? security_file_permission+0xb1/0xe0 [ 1103.025527] do_splice_direct+0x1c4/0x290 [ 1103.026280] ? splice_direct_to_actor+0x980/0x980 [ 1103.027160] ? avc_policy_seqno+0x9/0x70 [ 1103.027916] ? security_file_permission+0xb1/0xe0 [ 1103.028795] do_sendfile+0x553/0x11e0 [ 1103.029499] ? do_pwritev+0x270/0x270 [ 1103.030192] ? wait_for_completion_io+0x270/0x270 [ 1103.031074] ? rcu_read_lock_any_held+0x75/0xa0 [ 1103.031924] ? vfs_write+0x354/0xb10 [ 1103.032601] __x64_sys_sendfile64+0x1d1/0x210 [ 1103.033426] ? __ia32_sys_sendfile+0x220/0x220 [ 1103.034256] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1103.035212] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1103.036149] do_syscall_64+0x33/0x40 [ 1103.036823] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1103.037761] RIP: 0033:0x7fe85904db19 [ 1103.038445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1103.041793] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1103.043159] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1103.044462] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1103.045763] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1103.047042] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1103.048320] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 00:59:04 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$wireguard(&(0x7f0000000280), r0) connect$netlink(r0, &(0x7f0000000300)=@unspec, 0xc) [ 1103.073351] netlink: 236 bytes leftover after parsing attributes in process `syz-executor.1'. 00:59:04 executing program 7: fork() r0 = getpgrp(0x0) pidfd_open(r0, 0x0) waitid(0x0, r0, &(0x7f0000000080), 0x0, 0x0) 00:59:04 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000008000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:59:04 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) r2 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$sock_timeval(r2, 0x1, 0x14, &(0x7f00000004c0), &(0x7f0000000500)=0x10) bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r1, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) r3 = accept4(r1, 0x0, &(0x7f0000000180), 0x800) recvmsg(r3, &(0x7f0000000480)={&(0x7f00000001c0)=@pppoe={0x18, 0x0, {0x0, @link_local}}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000240)=""/184, 0xb8}, {&(0x7f0000000300)=""/148, 0x94}], 0x2, &(0x7f0000000400)=""/104, 0x68}, 0x40000000) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r4 = syz_mount_image$msdos(&(0x7f0000000580), &(0x7f00000005c0)='./file0\x00', 0xf9, 0x1, &(0x7f0000000600)=[{&(0x7f0000000700)="72817a9fb8ef4fdf1339d30f0d6b5127c5b3f66e3a424b50e0f14c38bbbc5efca89e4060e82bc4c7edeae6a94f00079bfb63582ee0f409533cdda43e3db98c9fc3038d2e602293ac81bb98bcf9c80336767944e323c2e09413c4f9c0b304b0a34bf44270701640d3ae9b24f33b14cee3bd48682b64e0a1c73384dcb4dfec29abeae49ff34a517068605cacaa5bc937c9347984fefb25341adea80e421645b57d90987c919e3f47d64f7adfc68250a5b101656c5443d4741a1752bc32f0128268d5d29cbee5c72d609cc270f5b3beffe6103f10919b8c9edf104c61e7eb2a12226fc7d5811b28d2dd3c49717cfb", 0xed, 0x7ff}], 0x0, &(0x7f0000000800)={[{@fat=@check_normal}, {@nodots}], [{@smackfsdef={'smackfsdef', 0x3d, '@!*.(.'}}, {@fsuuid={'fsuuid', 0x3d, {[0x52, 0x38, 0x36, 0x38, 0x31, 0x34, 0x38, 0x38], 0x2d, [0x53, 0x33, 0x39, 0x31], 0x2d, [0x62, 0x30, 0x63, 0x39], 0x2d, [0x31, 0x62, 0x61, 0x32], 0x2d, [0x36, 0x54, 0x66, 0x39, 0x62, 0x30, 0x36, 0x35]}}}, {@subj_user={'subj_user', 0x3d, '\xff\xff'}}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@appraise}]}) openat(r4, &(0x7f0000000640)='./file0\x00', 0x40, 0xc4) r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0) write$P9_RUNLINKAT(r5, &(0x7f0000000040)={0x7}, 0x7) fallocate(r5, 0x20, 0x0, 0x8000) write$P9_RSETATTR(r5, &(0x7f0000000080)={0x7}, 0x7) 00:59:04 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x16, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1103.175488] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1103.312175] loop5: detected capacity change from 0 to 3584 [ 1103.350374] FAT-fs (loop5): Unrecognized mount option "smackfsdef=@!*.(." or missing value [ 1117.564550] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. 00:59:19 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000008100000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:59:19 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 00:59:19 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x40, 0x0, 0x0, 0x0, 0x62, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3f, 0x0, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) 00:59:19 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(0xffffffffffffffff, 0x0, 0xffffffff, 0x3f) fallocate(r0, 0x3, 0x0, 0x8000) ioctl$sock_inet6_tcp_SIOCATMARK(r0, 0x8905, &(0x7f0000000080)) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f00000000c0)={0x0, 0x2, 0xd60, 0x80, 0xfffffffb}) fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) fork() 00:59:19 executing program 6: ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file1\x00'}) recvmsg(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f00000000c0)=""/44, 0x2c}, {&(0x7f0000000240)=""/209, 0xd1}, {&(0x7f0000000340)=""/111, 0x6f}, {&(0x7f00000003c0)=""/127, 0x7f}], 0x4, &(0x7f0000000500)=""/253, 0xfd}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x161000, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000080)='K', 0x1}]}}], 0x1, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x4e24, 0x0, @private1, 0x80000000}, 0x1c) setsockopt$inet6_IPV6_DSTOPTS(r1, 0x29, 0x3b, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x58) close(0xffffffffffffffff) getsockopt$IPT_SO_GET_INFO(r2, 0x0, 0x40, &(0x7f0000000140)={'nat\x00', 0x0, [0x5, 0x5, 0x0, 0x0, 0x94]}, &(0x7f00000001c0)=0x54) 00:59:19 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x17, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:59:19 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 72) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:59:19 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 35) [ 1117.570468] FAULT_INJECTION: forcing a failure. [ 1117.570468] name failslab, interval 1, probability 0, space 0, times 0 [ 1117.572974] CPU: 0 PID: 13558 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1117.574491] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1117.576294] Call Trace: [ 1117.576872] dump_stack+0x107/0x167 [ 1117.577681] should_fail.cold+0x5/0xa [ 1117.578513] ? create_object.isra.0+0x3a/0xa30 [ 1117.579505] should_failslab+0x5/0x20 [ 1117.580337] kmem_cache_alloc+0x5b/0x310 [ 1117.581233] create_object.isra.0+0x3a/0xa30 [ 1117.582196] kmemleak_alloc_percpu+0xa0/0x100 [ 1117.583176] pcpu_alloc+0x4e2/0x1240 [ 1117.583995] ? io_async_queue_proc+0x80/0x80 [ 1117.584966] percpu_ref_init+0x31/0x3d0 [ 1117.585829] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1117.587009] io_uring_setup+0x14f6/0x2980 [ 1117.587918] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1117.589025] ? wait_for_completion_io+0x270/0x270 [ 1117.590097] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1117.591234] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1117.592360] do_syscall_64+0x33/0x40 [ 1117.593176] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1117.594291] RIP: 0033:0x7f707acaeb19 [ 1117.595101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1117.599114] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1117.600769] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1117.602333] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1117.603888] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1117.605447] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1117.606996] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:59:19 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000018000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1117.626613] FAULT_INJECTION: forcing a failure. [ 1117.626613] name failslab, interval 1, probability 0, space 0, times 0 [ 1117.628355] CPU: 1 PID: 13561 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1117.629395] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1117.630611] Call Trace: [ 1117.631009] dump_stack+0x107/0x167 [ 1117.631550] should_fail.cold+0x5/0xa [ 1117.632111] ? create_object.isra.0+0x3a/0xa30 [ 1117.632778] should_failslab+0x5/0x20 [ 1117.633347] kmem_cache_alloc+0x5b/0x310 [ 1117.633944] ? lock_chain_count+0x20/0x20 [ 1117.634553] create_object.isra.0+0x3a/0xa30 [ 1117.635194] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1117.635942] __kmalloc+0x16e/0x390 [ 1117.636465] ext4_find_extent+0xa77/0xd70 [ 1117.637086] ext4_ext_map_blocks+0x1c8/0x5880 [ 1117.637747] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1117.638514] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1117.639284] ? ext4_ext_release+0x10/0x10 [ 1117.639891] ? ext4_map_blocks+0x5cd/0x1910 [ 1117.640526] ? lock_release+0x680/0x680 [ 1117.641118] ? ext4_es_lookup_extent+0x485/0xa80 [ 1117.641806] ? lock_downgrade+0x6d0/0x6d0 [ 1117.642417] ? down_write+0xe0/0x160 [ 1117.642958] ? down_write_killable+0x180/0x180 [ 1117.643628] ext4_map_blocks+0x63f/0x1910 [ 1117.644235] ? kmem_cache_alloc+0x2a6/0x310 [ 1117.644863] ? __kernel_text_address+0x9/0x40 [ 1117.645524] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1117.646180] ? jbd2__journal_start+0xf3/0x7e0 [ 1117.646841] ? __ext4_journal_start_sb+0x214/0x390 [ 1117.647552] ? __ext4_journal_start_sb+0x1db/0x390 [ 1117.648271] ext4_iomap_begin+0x3ad/0x700 [ 1117.648881] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1117.649597] ? kasan_save_stack+0x1b/0x40 [ 1117.650205] ? ext4_file_write_iter+0xe0e/0x1530 [ 1117.650899] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1117.651821] ? splice_direct_to_actor+0x387/0x980 [ 1117.652518] ? do_splice_direct+0x1c4/0x290 [ 1117.653152] ? do_sendfile+0x553/0x11e0 [ 1117.653724] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1117.654401] ? do_syscall_64+0x33/0x40 [ 1117.654966] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1117.655739] iomap_apply+0x164/0x810 [ 1117.656278] ? iomap_dio_rw+0x90/0x90 [ 1117.656834] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 1117.657683] ? mark_held_locks+0x9e/0xe0 [ 1117.658284] ? filemap_check_errors+0xa5/0x150 [ 1117.658952] __iomap_dio_rw+0x6cd/0x1110 [ 1117.659540] ? iomap_dio_rw+0x90/0x90 [ 1117.660107] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1117.660771] ? ext4_orphan_add+0x253/0x9e0 [ 1117.661392] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1117.662108] ? ext4_empty_dir+0xae0/0xae0 [ 1117.662705] ? jbd2__journal_start+0xf3/0x7e0 [ 1117.663363] iomap_dio_rw+0x31/0x90 [ 1117.663898] ext4_file_write_iter+0xe0e/0x1530 [ 1117.664570] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1117.665240] ? kasan_save_stack+0x32/0x40 [ 1117.665847] ? kasan_save_stack+0x1b/0x40 [ 1117.666447] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1117.667184] ? iter_file_splice_write+0x165/0xc90 [ 1117.667886] ? direct_splice_actor+0x10f/0x170 [ 1117.668552] ? splice_direct_to_actor+0x387/0x980 [ 1117.669261] ? do_splice_direct+0x1c4/0x290 [ 1117.669887] ? do_sendfile+0x553/0x11e0 [ 1117.670462] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1117.671134] ? do_syscall_64+0x33/0x40 [ 1117.671701] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1117.672485] do_iter_readv_writev+0x476/0x750 [ 1117.673148] ? _cond_resched+0x10/0x30 [ 1117.673713] ? new_sync_write+0x660/0x660 [ 1117.674316] ? avc_policy_seqno+0x9/0x70 [ 1117.674906] ? selinux_file_permission+0x92/0x520 [ 1117.675606] ? security_file_permission+0xb1/0xe0 [ 1117.676312] do_iter_write+0x191/0x700 [ 1117.676886] ? trace_hardirqs_on+0x5b/0x180 [ 1117.677528] vfs_iter_write+0x70/0xa0 [ 1117.678089] iter_file_splice_write+0x726/0xc90 [ 1117.678779] ? generic_splice_sendpage+0x140/0x140 [ 1117.679508] ? security_file_permission+0xb1/0xe0 [ 1117.680214] ? generic_splice_sendpage+0x140/0x140 [ 1117.680940] direct_splice_actor+0x10f/0x170 [ 1117.681583] splice_direct_to_actor+0x387/0x980 [ 1117.682271] ? pipe_to_sendpage+0x380/0x380 [ 1117.682901] ? do_splice_to+0x160/0x160 [ 1117.683477] ? security_file_permission+0xb1/0xe0 [ 1117.684189] do_splice_direct+0x1c4/0x290 [ 1117.684794] ? splice_direct_to_actor+0x980/0x980 [ 1117.685502] ? avc_policy_seqno+0x9/0x70 [ 1117.686098] ? security_file_permission+0xb1/0xe0 [ 1117.686807] do_sendfile+0x553/0x11e0 [ 1117.687370] ? do_pwritev+0x270/0x270 [ 1117.687927] ? wait_for_completion_io+0x270/0x270 [ 1117.688633] ? rcu_read_lock_any_held+0x75/0xa0 [ 1117.689318] ? vfs_write+0x354/0xb10 [ 1117.689863] __x64_sys_sendfile64+0x1d1/0x210 [ 1117.690516] ? __ia32_sys_sendfile+0x220/0x220 [ 1117.691190] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1117.691957] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1117.692707] do_syscall_64+0x33/0x40 [ 1117.693245] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1117.693965] RIP: 0033:0x7fe85904db19 [ 1117.694490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1117.697076] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1117.698146] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1117.699150] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1117.700148] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1117.701170] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1117.702180] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 00:59:19 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1000001c000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:59:19 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x18, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:59:19 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 36) [ 1117.740940] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1117.765178] FAULT_INJECTION: forcing a failure. [ 1117.765178] name failslab, interval 1, probability 0, space 0, times 0 [ 1117.766875] CPU: 1 PID: 13675 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1117.767829] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1117.768996] Call Trace: [ 1117.769373] dump_stack+0x107/0x167 [ 1117.769891] should_fail.cold+0x5/0xa [ 1117.770421] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1117.771200] should_failslab+0x5/0x20 [ 1117.771730] kmem_cache_alloc_trace+0x55/0x320 [ 1117.772361] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1117.773113] io_uring_setup+0x14f6/0x2980 [ 1117.773691] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1117.774386] ? wait_for_completion_io+0x270/0x270 [ 1117.775068] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1117.775793] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1117.776504] do_syscall_64+0x33/0x40 [ 1117.777033] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1117.777754] RIP: 0033:0x7f707acaeb19 [ 1117.778269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1117.780819] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1117.781884] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1117.782868] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1117.783867] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1117.784867] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1117.785864] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:59:19 executing program 7: r0 = fork() migrate_pages(r0, 0x800, &(0x7f0000000080)=0xe2, &(0x7f00000000c0)=0x8a7) waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) 00:59:19 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x40, 0x0, 0x0, 0x0, 0x4306, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x8}, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xb, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r0, 0x0, 0x0, 0x1000002) r1 = perf_event_open(&(0x7f00000002c0)={0x5, 0x80, 0x1, 0x1, 0x8, 0xfa, 0x0, 0x2, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000080), 0x6}, 0x2214, 0x6, 0x1, 0x0, 0x40, 0x7ac, 0x1, 0x0, 0x8ffa, 0x0, 0x8000}, 0x0, 0x0, r0, 0xa) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r3, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) signalfd4(r3, &(0x7f0000000140)={[0x4fb3]}, 0x8, 0x80800) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r1, {0x5}}, '.\x00'}) ppoll(&(0x7f0000000240)=[{r3}, {r4, 0x483}, {0xffffffffffffffff, 0x8100}, {r5, 0x424}], 0x4, &(0x7f0000000200)={0x0, 0x3938700}, &(0x7f0000000440)={[0x3]}, 0x8) socket$inet_tcp(0x2, 0x1, 0x0) lseek(0xffffffffffffffff, 0x0, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000000c0)=0xfff, 0x1) ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) r6 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f0000000180), r2) sendfile(r2, r6, 0x0, 0x100000001) 00:59:19 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 37) [ 1117.841421] FAULT_INJECTION: forcing a failure. [ 1117.841421] name failslab, interval 1, probability 0, space 0, times 0 [ 1117.843042] CPU: 1 PID: 13686 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1117.843991] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1117.845117] Call Trace: [ 1117.845478] dump_stack+0x107/0x167 [ 1117.845973] should_fail.cold+0x5/0xa [ 1117.846497] ? percpu_ref_init+0xd8/0x3d0 [ 1117.847059] should_failslab+0x5/0x20 [ 1117.847576] kmem_cache_alloc_trace+0x55/0x320 [ 1117.848197] ? io_async_queue_proc+0x80/0x80 [ 1117.848801] percpu_ref_init+0xd8/0x3d0 [ 1117.849350] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1117.850097] io_uring_setup+0x14f6/0x2980 [ 1117.850658] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1117.851348] ? wait_for_completion_io+0x270/0x270 [ 1117.852019] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1117.852741] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1117.853449] do_syscall_64+0x33/0x40 [ 1117.853957] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1117.854642] RIP: 0033:0x7f707acaeb19 [ 1117.855152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1117.857643] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1117.858679] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1117.859656] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1117.860632] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1117.861609] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1117.862601] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:59:32 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 00:59:32 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:59:32 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 73) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:59:32 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 38) 00:59:32 executing program 6: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='wchan\x00') lseek(r0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe47}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x46200, 0x0) dup3(r1, r1, 0x0) 00:59:32 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1000003f000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 00:59:32 executing program 7: r0 = fork() getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080)={0x0}, &(0x7f00000000c0)=0xc) waitid(0x1, r1, &(0x7f0000000000), 0x80000000, 0x0) kcmp(0x0, r0, 0x6, 0xffffffffffffffff, 0xffffffffffffffff) 00:59:32 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) ftruncate(r1, 0x1390) lseek(r1, 0x0, 0x2) r2 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x3, 0x0, 0x8000) ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f0000000240)={0x7, 0x4, 0x400, 0x80000000, 0x8}) copy_file_range(r2, 0x0, r1, 0x0, 0x200f5ef, 0x0) syz_io_uring_setup(0x1ee, &(0x7f00000000c0)={0x0, 0xe8c4, 0x10, 0x0, 0x44, 0x0, r1}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000140)=0x0, &(0x7f0000000180)) syz_io_uring_submit(r4, 0x0, &(0x7f0000000200)=@IORING_OP_TEE={0x21, 0x4, 0x0, @fd_index=0x7, 0x0, 0x0, 0x336, 0x0, 0x0, {0x0, 0x0, r1}}, 0xffffffff) [ 1130.757139] FAULT_INJECTION: forcing a failure. 00:59:32 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000063000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1130.757139] name failslab, interval 1, probability 0, space 0, times 0 [ 1130.759892] CPU: 1 PID: 13800 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1130.761465] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1130.763317] Call Trace: [ 1130.763916] dump_stack+0x107/0x167 [ 1130.764734] should_fail.cold+0x5/0xa [ 1130.765606] ? create_object.isra.0+0x3a/0xa30 [ 1130.766625] should_failslab+0x5/0x20 [ 1130.767486] kmem_cache_alloc+0x5b/0x310 [ 1130.768399] create_object.isra.0+0x3a/0xa30 [ 1130.769392] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1130.770534] kmem_cache_alloc_trace+0x151/0x320 [ 1130.771593] ? io_async_queue_proc+0x80/0x80 [ 1130.772583] percpu_ref_init+0xd8/0x3d0 [ 1130.773489] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1130.774701] io_uring_setup+0x14f6/0x2980 [ 1130.775635] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1130.776768] ? wait_for_completion_io+0x270/0x270 [ 1130.778006] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1130.779185] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1130.780350] do_syscall_64+0x33/0x40 [ 1130.781201] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1130.782347] RIP: 0033:0x7f707acaeb19 [ 1130.783181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1130.787315] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1130.789028] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1130.790629] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1130.792223] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1130.793832] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 00:59:32 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000080040000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1130.795428] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1130.801233] netlink: 132 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1130.829188] FAULT_INJECTION: forcing a failure. [ 1130.829188] name failslab, interval 1, probability 0, space 0, times 0 [ 1130.831908] CPU: 1 PID: 13794 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1130.833859] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1130.835716] Call Trace: [ 1130.836315] dump_stack+0x107/0x167 [ 1130.837170] should_fail.cold+0x5/0xa [ 1130.838051] ? ext4_find_extent+0xa77/0xd70 [ 1130.839020] should_failslab+0x5/0x20 [ 1130.839879] __kmalloc+0x72/0x390 [ 1130.840671] ext4_find_extent+0xa77/0xd70 [ 1130.841653] ext4_ext_map_blocks+0x1c8/0x5880 [ 1130.842671] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1130.843851] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1130.845034] ? ext4_ext_release+0x10/0x10 [ 1130.845973] ? ext4_map_blocks+0x5cd/0x1910 [ 1130.846939] ? lock_release+0x680/0x680 [ 1130.847831] ? ext4_es_lookup_extent+0x485/0xa80 [ 1130.848893] ? lock_downgrade+0x6d0/0x6d0 [ 1130.849839] ? down_write+0xe0/0x160 [ 1130.850675] ? down_write_killable+0x180/0x180 [ 1130.851721] ext4_map_blocks+0x63f/0x1910 [ 1130.852657] ? kmem_cache_alloc+0x2a6/0x310 [ 1130.853635] ? __kernel_text_address+0x9/0x40 [ 1130.854649] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1130.855655] ? jbd2__journal_start+0xf3/0x7e0 [ 1130.856662] ? __ext4_journal_start_sb+0x214/0x390 [ 1130.857762] ? __ext4_journal_start_sb+0x1db/0x390 [ 1130.858867] ext4_iomap_begin+0x3ad/0x700 00:59:32 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1000008cffffff, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1130.859810] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1130.861036] ? kasan_save_stack+0x1b/0x40 [ 1130.861976] ? ext4_file_write_iter+0xe0e/0x1530 [ 1130.863045] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1130.864476] ? splice_direct_to_actor+0x387/0x980 [ 1130.865562] ? do_splice_direct+0x1c4/0x290 [ 1130.866534] ? do_sendfile+0x553/0x11e0 [ 1130.867426] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1130.868477] ? do_syscall_64+0x33/0x40 00:59:32 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x28, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1130.869375] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1130.870706] iomap_apply+0x164/0x810 [ 1130.871552] ? iomap_dio_rw+0x90/0x90 [ 1130.872419] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 1130.873752] ? mark_held_locks+0x9e/0xe0 [ 1130.874687] ? filemap_check_errors+0xa5/0x150 [ 1130.875721] __iomap_dio_rw+0x6cd/0x1110 [ 1130.876634] ? iomap_dio_rw+0x90/0x90 [ 1130.877521] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1130.878556] ? ext4_orphan_add+0x253/0x9e0 [ 1130.879505] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1130.880601] ? ext4_empty_dir+0xae0/0xae0 [ 1130.881542] ? jbd2__journal_start+0xf3/0x7e0 [ 1130.882573] iomap_dio_rw+0x31/0x90 [ 1130.883397] ext4_file_write_iter+0xe0e/0x1530 [ 1130.884445] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1130.885483] ? kasan_save_stack+0x32/0x40 [ 1130.886418] ? kasan_save_stack+0x1b/0x40 [ 1130.887351] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 00:59:32 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x3, 0x0, 0x8000) sendmsg$IPCTNL_MSG_CT_NEW(r0, 0xfffffffffffffffc, 0x0) fork() openat(r0, &(0x7f0000000080)='./file0\x00', 0x8800, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0), 0x6e, &(0x7f0000000200)=[{&(0x7f0000000140)=""/84, 0x54}, {&(0x7f00000001c0)}], 0x2, &(0x7f0000000240)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}, 0x0) ptrace(0x4208, r1) waitid(0x2, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) [ 1130.888491] ? iter_file_splice_write+0x165/0xc90 [ 1130.889690] ? direct_splice_actor+0x10f/0x170 [ 1130.890726] ? splice_direct_to_actor+0x387/0x980 [ 1130.891831] ? do_splice_direct+0x1c4/0x290 [ 1130.892801] ? do_sendfile+0x553/0x11e0 [ 1130.893699] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1130.894736] ? do_syscall_64+0x33/0x40 [ 1130.895609] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1130.896815] do_iter_readv_writev+0x476/0x750 [ 1130.897834] ? _cond_resched+0x10/0x30 [ 1130.898717] ? new_sync_write+0x660/0x660 [ 1130.899649] ? avc_policy_seqno+0x9/0x70 [ 1130.900572] ? selinux_file_permission+0x92/0x520 [ 1130.901681] ? security_file_permission+0xb1/0xe0 [ 1130.902796] do_iter_write+0x191/0x700 [ 1130.903680] ? trace_hardirqs_on+0x5b/0x180 [ 1130.904679] vfs_iter_write+0x70/0xa0 [ 1130.905546] iter_file_splice_write+0x726/0xc90 [ 1130.906642] ? generic_splice_sendpage+0x140/0x140 [ 1130.907770] ? security_file_permission+0xb1/0xe0 [ 1130.908863] ? generic_splice_sendpage+0x140/0x140 [ 1130.909987] direct_splice_actor+0x10f/0x170 [ 1130.910992] splice_direct_to_actor+0x387/0x980 [ 1130.912046] ? pipe_to_sendpage+0x380/0x380 [ 1130.913033] ? do_splice_to+0x160/0x160 [ 1130.913939] ? security_file_permission+0xb1/0xe0 [ 1130.915034] do_splice_direct+0x1c4/0x290 [ 1130.915962] ? splice_direct_to_actor+0x980/0x980 [ 1130.917046] ? avc_policy_seqno+0x9/0x70 [ 1130.917973] ? security_file_permission+0xb1/0xe0 [ 1130.919066] do_sendfile+0x553/0x11e0 [ 1130.919939] ? do_pwritev+0x270/0x270 [ 1130.920793] ? wait_for_completion_io+0x270/0x270 00:59:32 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000f6ffffff, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1130.921886] ? rcu_read_lock_any_held+0x75/0xa0 [ 1130.923077] ? vfs_write+0x354/0xb10 [ 1130.923709] netlink: 296 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1130.923925] __x64_sys_sendfile64+0x1d1/0x210 [ 1130.923948] ? __ia32_sys_sendfile+0x220/0x220 [ 1130.927004] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1130.928182] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1130.929351] do_syscall_64+0x33/0x40 [ 1130.930190] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1130.931339] RIP: 0033:0x7fe85904db19 [ 1130.932180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1130.936312] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1130.938057] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1130.939678] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1130.941329] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1130.942945] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1130.944562] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 00:59:32 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001d00210c00000000fbdbe7250100020058e1f427ac228a56bc00c90f3fe64eaa1497d1c4f4df5ae2c0158ab966c0f846bab3690419306c10c4dbc57d0b91a0a89005ee18c339bf30575625bcfd9b5dcd52c532e97ffe59c32fd06d0267d09aae07f6db51a7ddcfe39e42a36bda4a8694badc2c48b0754e2a90"], 0x14}}, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x1, 0x8, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, @perf_config_ext={0xffffffffffffffff}, 0x409becb7bdfe1d3, 0x1, 0x0, 0x0, 0x9db}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0) fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000040), &(0x7f00000000c0)=@v1={0x1000000, [{0x8, 0xb5ce}]}, 0xc, 0x7) [ 1131.024069] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 00:59:46 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x40, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x3, 0x0, 0x8000) getdents(r0, &(0x7f0000000140)=""/77, 0x4d) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x20000, 0x22) readv(r1, &(0x7f0000000700)=[{&(0x7f00000001c0)=""/211, 0xd3}, {&(0x7f00000003c0)=""/209, 0xd1}, {&(0x7f0000000580)=""/172, 0xac}, {&(0x7f00000002c0)=""/102, 0x66}, {&(0x7f0000000640)=""/179, 0xb3}], 0x5) r2 = syz_mount_image$vfat(&(0x7f0000000380), &(0x7f0000000080)='./file0\x00', 0x7ffffffc, 0x0, 0x0, 0x0, &(0x7f0000000900)=ANY=[]) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/vmstat\x00', 0x0, 0x0) openat(r3, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0) unlinkat(r2, &(0x7f0000000540)='./file0/file0\x00', 0x200) 00:59:46 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x8, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:59:46 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) [ 1144.523959] FAULT_INJECTION: forcing a failure. [ 1144.523959] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1144.526469] CPU: 1 PID: 14043 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1144.527926] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1144.529673] Call Trace: [ 1144.530233] dump_stack+0x107/0x167 [ 1144.531005] should_fail.cold+0x5/0xa [ 1144.531819] _copy_to_user+0x2e/0x180 [ 1144.532627] io_uring_setup+0x11b5/0x2980 00:59:46 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 74) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 00:59:46 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 39) 00:59:46 executing program 7: r0 = fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x40000000, 0x0) ptrace$getregset(0x4204, r0, 0x3, &(0x7f0000000180)={&(0x7f0000000080)=""/195, 0xc3}) 00:59:46 executing program 6: prctl$PR_SET_ENDIAN(0x14, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x4) syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x3, 0x0, 0x8000) fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000180), &(0x7f0000000200)='./file0/file0\x00', 0xe, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r1, 0x0, 0x0) sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x404c008) r2 = dup(0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00'}) r3 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r2, 0x80, &(0x7f0000000340)=@hci={0x1f, 0x3, 0x1}, 0x0, 0x0, 0x1}, 0x3) syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), r3) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f00000002c0)={{0x1, 0x0, 0x0, 0x0, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7}) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000140)) 00:59:46 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000fcfdffff, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1144.533521] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1144.534851] ? wait_for_completion_io+0x270/0x270 [ 1144.535886] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1144.536995] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1144.538098] do_syscall_64+0x33/0x40 [ 1144.538887] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1144.539952] RIP: 0033:0x7f707acaeb19 [ 1144.540740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1144.544636] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1144.546253] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1144.547753] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1144.549270] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1144.550766] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1144.552269] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 00:59:46 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x9, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1144.578718] FAULT_INJECTION: forcing a failure. [ 1144.578718] name failslab, interval 1, probability 0, space 0, times 0 [ 1144.581137] CPU: 1 PID: 14042 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1144.582611] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1144.584346] Call Trace: [ 1144.584908] dump_stack+0x107/0x167 [ 1144.585687] should_fail.cold+0x5/0xa [ 1144.586493] ? create_object.isra.0+0x3a/0xa30 [ 1144.587461] should_failslab+0x5/0x20 [ 1144.588263] kmem_cache_alloc+0x5b/0x310 [ 1144.589119] ? lock_chain_count+0x20/0x20 [ 1144.590007] create_object.isra.0+0x3a/0xa30 [ 1144.590932] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1144.591996] __kmalloc+0x16e/0x390 [ 1144.592752] ext4_find_extent+0xa77/0xd70 [ 1144.593641] ext4_ext_map_blocks+0x1c8/0x5880 [ 1144.594593] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1144.595700] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1144.596805] ? ext4_ext_release+0x10/0x10 [ 1144.597683] ? ext4_map_blocks+0x5cd/0x1910 [ 1144.598593] ? lock_release+0x680/0x680 [ 1144.599435] ? ext4_es_lookup_extent+0x485/0xa80 [ 1144.600422] ? lock_downgrade+0x6d0/0x6d0 [ 1144.601309] ? down_write+0xe0/0x160 [ 1144.602085] ? down_write_killable+0x180/0x180 [ 1144.603060] ext4_map_blocks+0x63f/0x1910 [ 1144.603933] ? kmem_cache_alloc+0x2a6/0x310 [ 1144.604854] ? __kernel_text_address+0x9/0x40 [ 1144.605814] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1144.606754] ? jbd2__journal_start+0xf3/0x7e0 [ 1144.607699] ? __ext4_journal_start_sb+0x214/0x390 [ 1144.608737] ? __ext4_journal_start_sb+0x1db/0x390 [ 1144.609792] ext4_iomap_begin+0x3ad/0x700 [ 1144.610671] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1144.611694] ? kasan_save_stack+0x1b/0x40 [ 1144.612579] ? ext4_file_write_iter+0xe0e/0x1530 [ 1144.613608] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1144.614941] ? splice_direct_to_actor+0x387/0x980 [ 1144.615951] ? do_splice_direct+0x1c4/0x290 [ 1144.616856] ? do_sendfile+0x553/0x11e0 [ 1144.617699] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1144.618674] ? do_syscall_64+0x33/0x40 [ 1144.619496] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1144.620627] iomap_apply+0x164/0x810 [ 1144.621426] ? iomap_dio_rw+0x90/0x90 [ 1144.622233] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 1144.623448] ? mark_held_locks+0x9e/0xe0 [ 1144.624328] ? filemap_check_errors+0xa5/0x150 [ 1144.625307] __iomap_dio_rw+0x6cd/0x1110 [ 1144.626159] ? iomap_dio_rw+0x90/0x90 [ 1144.626987] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1144.627955] ? ext4_orphan_add+0x253/0x9e0 [ 1144.628849] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1144.629896] ? ext4_empty_dir+0xae0/0xae0 [ 1144.630758] ? jbd2__journal_start+0xf3/0x7e0 [ 1144.631710] iomap_dio_rw+0x31/0x90 [ 1144.632480] ext4_file_write_iter+0xe0e/0x1530 [ 1144.633468] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1144.634418] ? kasan_save_stack+0x32/0x40 [ 1144.635292] ? kasan_save_stack+0x1b/0x40 [ 1144.636164] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1144.637249] ? iter_file_splice_write+0x165/0xc90 [ 1144.638267] ? direct_splice_actor+0x10f/0x170 [ 1144.639225] ? splice_direct_to_actor+0x387/0x980 [ 1144.640236] ? do_splice_direct+0x1c4/0x290 [ 1144.641147] ? do_sendfile+0x553/0x11e0 [ 1144.641990] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1144.642962] ? do_syscall_64+0x33/0x40 [ 1144.643785] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1144.644912] do_iter_readv_writev+0x476/0x750 [ 1144.645867] ? _cond_resched+0x10/0x30 [ 1144.646695] ? new_sync_write+0x660/0x660 [ 1144.647567] ? avc_policy_seqno+0x9/0x70 [ 1144.648430] ? selinux_file_permission+0x92/0x520 [ 1144.649462] ? security_file_permission+0xb1/0xe0 [ 1144.650481] do_iter_write+0x191/0x700 [ 1144.651314] ? trace_hardirqs_on+0x5b/0x180 [ 1144.652229] vfs_iter_write+0x70/0xa0 [ 1144.653035] iter_file_splice_write+0x726/0xc90 [ 1144.654037] ? generic_splice_sendpage+0x140/0x140 [ 1144.655086] ? security_file_permission+0xb1/0xe0 [ 1144.656113] ? generic_splice_sendpage+0x140/0x140 00:59:46 executing program 5: socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000001180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001140)={&(0x7f00000000c0)={0x14, 0x4, 0x1, 0x3, 0x0, 0x0, {0x3, 0x0, 0x6}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x48140}, 0x40081) syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff) openat$ptp0(0xffffffffffffff9c, 0x0, 0x400000, 0x0) ioctl$PTP_PEROUT_REQUEST(0xffffffffffffffff, 0x40383d03, 0x0) sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, 0x0, 0x40) r0 = socket(0x0, 0x0, 0x0) getpgid(0xffffffffffffffff) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) r2 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000002e00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}], 0xd4, "544d056968f26f"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001540)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r2, 0xc0709411, &(0x7f00000002c0)=ANY=[@ANYRES64=r3, @ANYBLOB="000000000000000098020000000000001f00000000000000000000000000000003000000000000000100000000000000030000000400a800b60c0000040000005d0a000000000000040000000000000020000000000000004839123c000000001800000000000000000000000000000000000000561c3227aaa2d65a28a83973d6b7334e000000000000000000004e89f103cf5a"]) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000054a80)={0x100, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x0, "043ba9ba70070b"}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000000140)={r5, 0x0, "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", "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"}) syz_genetlink_get_family_id$SEG6(&(0x7f0000000000), r0) socket$netlink(0x10, 0x3, 0x0) pipe2$9p(&(0x7f0000002bc0), 0x0) syz_io_uring_setup(0x430c, &(0x7f0000002c80)={0x0, 0x53a1, 0x1, 0x3, 0x20e}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000002d00), &(0x7f0000002d40)) [ 1144.657509] direct_splice_actor+0x10f/0x170 [ 1144.658572] splice_direct_to_actor+0x387/0x980 [ 1144.659562] ? pipe_to_sendpage+0x380/0x380 [ 1144.660476] ? do_splice_to+0x160/0x160 [ 1144.661323] ? security_file_permission+0xb1/0xe0 [ 1144.662348] do_splice_direct+0x1c4/0x290 [ 1144.663224] ? splice_direct_to_actor+0x980/0x980 [ 1144.664233] ? avc_policy_seqno+0x9/0x70 [ 1144.665087] ? security_file_permission+0xb1/0xe0 [ 1144.666117] do_sendfile+0x553/0x11e0 [ 1144.666932] ? do_pwritev+0x270/0x270 [ 1144.667732] ? wait_for_completion_io+0x270/0x270 [ 1144.668751] ? rcu_read_lock_any_held+0x75/0xa0 [ 1144.669731] ? vfs_write+0x354/0xb10 [ 1144.670517] __x64_sys_sendfile64+0x1d1/0x210 [ 1144.671457] ? __ia32_sys_sendfile+0x220/0x220 [ 1144.672422] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1144.673537] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1144.674623] do_syscall_64+0x33/0x40 [ 1144.675407] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1144.676481] RIP: 0033:0x7fe85904db19 [ 1144.677276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1144.681134] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1144.682746] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1144.684247] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1144.685762] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1144.687256] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1144.688751] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 00:59:46 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000feffffff, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1144.721267] loop6: detected capacity change from 0 to 16776704 00:59:46 executing program 7: r0 = fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000280)) capset(&(0x7f0000000300)={0x20071026}, &(0x7f0000000100)={0x402, 0x6, 0x7, 0x1000, 0x21c, 0x7fff}) r1 = getpgrp(0x0) ptrace$getregset(0x4204, r0, 0x206, &(0x7f0000000180)={&(0x7f00000001c0)=""/160, 0xa0}) r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) connect$bt_sco(r2, &(0x7f0000000000)={0x1f, @none}, 0x8) write$binfmt_elf32(r2, 0x0, 0x674) pidfd_open(r1, 0x0) r3 = getpgrp(0x0) pidfd_open(r3, 0x0) r4 = getpgrp(0x0) pidfd_open(r4, 0x0) capget(&(0x7f0000000380)={0x20080522, r4}, &(0x7f00000003c0)={0x7, 0x7ff, 0x1, 0x100, 0x1, 0x9}) r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r6 = getpgrp(0x0) pidfd_open(r6, 0x0) pidfd_open(r6, 0x0) fallocate(r5, 0x3, 0x0, 0x8000) 00:59:46 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x19, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 00:59:46 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 40) [ 1144.810398] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 1144.824525] FAULT_INJECTION: forcing a failure. [ 1144.824525] name failslab, interval 1, probability 0, space 0, times 0 [ 1144.826953] CPU: 1 PID: 14205 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1144.828420] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1144.830188] Call Trace: [ 1144.830763] dump_stack+0x107/0x167 [ 1144.831535] should_fail.cold+0x5/0xa [ 1144.832346] ? create_object.isra.0+0x3a/0xa30 [ 1144.833315] should_failslab+0x5/0x20 [ 1144.834121] kmem_cache_alloc+0x5b/0x310 [ 1144.834989] create_object.isra.0+0x3a/0xa30 [ 1144.835917] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1144.836991] kmem_cache_alloc_trace+0x151/0x320 [ 1144.837991] ? io_async_queue_proc+0x80/0x80 [ 1144.838923] percpu_ref_init+0xd8/0x3d0 [ 1144.839772] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1144.840920] io_uring_setup+0x14f6/0x2980 [ 1144.841814] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1144.842887] ? wait_for_completion_io+0x270/0x270 [ 1144.843939] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1144.845047] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1144.846152] do_syscall_64+0x33/0x40 [ 1144.846940] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1144.848032] RIP: 0033:0x7f707acaeb19 [ 1144.848822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1144.852718] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1144.854350] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1144.855867] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1144.857388] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1144.858895] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1144.860407] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:00:04 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000fffff000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:00:04 executing program 0: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000012000101"], 0x14}}, 0x0) readv(0xffffffffffffffff, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:00:04 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x300, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:00:04 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 41) 01:00:04 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000001480)="200000000002000019000000500100000f000000000000000000000004000000000002000020000020000000def4655fdef4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000e58ca12e13a240e2b1a22f8d07e8e55f010040", 0x1f, 0x4e0}, {&(0x7f0000000040)="010000000000010000000000d2144ee70b5ba8", 0x13, 0x560}, {0x0, 0x0, 0x1000000000c00}], 0x0, &(0x7f0000012b00)=ANY=[]) 01:00:04 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 75) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:00:04 executing program 6: prctl$PR_SET_ENDIAN(0x14, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x4) syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x3, 0x0, 0x8000) fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000180), &(0x7f0000000200)='./file0/file0\x00', 0xe, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r1, 0x0, 0x0) sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x404c008) r2 = dup(0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00'}) r3 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r2, 0x80, &(0x7f0000000340)=@hci={0x1f, 0x3, 0x1}, 0x0, 0x0, 0x1}, 0x3) syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), r3) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f00000002c0)={{0x1, 0x0, 0x0, 0x0, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7}) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000140)) 01:00:04 executing program 7: r0 = fork() ptrace(0x4208, r0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000080)=0x0) ptrace$getregset(0x4204, r1, 0x202, &(0x7f0000000140)={&(0x7f00000000c0)=""/71, 0x47}) ptrace$getregset(0x4204, r1, 0x200, &(0x7f0000000200)={&(0x7f0000000180)=""/107, 0x6b}) r2 = getpgrp(0x0) pidfd_open(r2, 0x0) waitid(0x0, r2, &(0x7f0000000000), 0x4, 0x0) ptrace(0x2112, r0) [ 1162.886132] FAULT_INJECTION: forcing a failure. [ 1162.886132] name failslab, interval 1, probability 0, space 0, times 0 [ 1162.888509] CPU: 1 PID: 14294 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1162.889981] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1162.891775] Call Trace: [ 1162.892348] dump_stack+0x107/0x167 [ 1162.893139] should_fail.cold+0x5/0xa [ 1162.893974] ? create_object.isra.0+0x3a/0xa30 [ 1162.894957] should_failslab+0x5/0x20 [ 1162.895778] kmem_cache_alloc+0x5b/0x310 [ 1162.896655] create_object.isra.0+0x3a/0xa30 [ 1162.897611] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1162.898711] kmem_cache_alloc+0x159/0x310 [ 1162.899611] __d_alloc+0x2a/0x990 [ 1162.900359] ? find_held_lock+0x2c/0x110 [ 1162.901236] d_alloc_pseudo+0x19/0x70 [ 1162.902071] alloc_file_pseudo+0xce/0x250 [ 1162.902964] ? trace_hardirqs_on+0x5b/0x180 [ 1162.903889] ? alloc_file+0x5a0/0x5a0 [ 1162.904723] anon_inode_getfile+0xc8/0x1f0 [ 1162.905648] io_uring_setup+0x138b/0x2980 [ 1162.906550] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1162.907641] ? wait_for_completion_io+0x270/0x270 [ 1162.908710] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1162.909858] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1162.910997] do_syscall_64+0x33/0x40 [ 1162.911801] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1162.912901] RIP: 0033:0x7f707acaeb19 [ 1162.913715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1162.917694] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1162.919809] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1162.920956] loop5: detected capacity change from 0 to 2103296 [ 1162.921351] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1162.921371] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1162.925700] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1162.927243] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1162.941540] FAULT_INJECTION: forcing a failure. [ 1162.941540] name failslab, interval 1, probability 0, space 0, times 0 [ 1162.944072] CPU: 0 PID: 14301 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1162.945550] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1162.947307] Call Trace: [ 1162.947870] dump_stack+0x107/0x167 [ 1162.948643] should_fail.cold+0x5/0xa [ 1162.949461] ? create_object.isra.0+0x3a/0xa30 [ 1162.950418] should_failslab+0x5/0x20 [ 1162.951216] kmem_cache_alloc+0x5b/0x310 [ 1162.952067] ? lock_chain_count+0x20/0x20 [ 1162.952933] create_object.isra.0+0x3a/0xa30 [ 1162.953854] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1162.954916] __kmalloc+0x16e/0x390 [ 1162.955665] ext4_find_extent+0xa77/0xd70 [ 1162.956540] ext4_ext_map_blocks+0x1c8/0x5880 [ 1162.957492] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1162.958581] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1162.959677] ? ext4_ext_release+0x10/0x10 [ 1162.960541] ? ext4_map_blocks+0x5cd/0x1910 [ 1162.961449] ? lock_release+0x680/0x680 [ 1162.962277] ? ext4_es_lookup_extent+0x485/0xa80 [ 1162.963259] ? lock_downgrade+0x6d0/0x6d0 [ 1162.964132] ? down_write+0xe0/0x160 [ 1162.964904] ? down_write_killable+0x180/0x180 [ 1162.965872] ext4_map_blocks+0x63f/0x1910 [ 1162.966740] ? kmem_cache_alloc+0x2a6/0x310 [ 1162.967634] ? __kernel_text_address+0x9/0x40 [ 1162.968568] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1162.969508] ? jbd2__journal_start+0xf3/0x7e0 [ 1162.970425] ? __ext4_journal_start_sb+0x214/0x390 [ 1162.971419] ? __ext4_journal_start_sb+0x1db/0x390 [ 1162.972415] ext4_iomap_begin+0x3ad/0x700 [ 1162.973271] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1162.974263] ? kasan_save_stack+0x1b/0x40 [ 1162.975143] ? ext4_file_write_iter+0xe0e/0x1530 [ 1162.976145] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1162.977454] ? splice_direct_to_actor+0x387/0x980 [ 1162.978437] ? do_splice_direct+0x1c4/0x290 [ 1162.979333] ? do_sendfile+0x553/0x11e0 [ 1162.980151] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1162.981080] ? do_syscall_64+0x33/0x40 [ 1162.981868] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1162.982956] iomap_apply+0x164/0x810 [ 1162.983705] ? iomap_dio_rw+0x90/0x90 [ 1162.984471] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 1162.985661] ? mark_held_locks+0x9e/0xe0 [ 1162.986491] ? filemap_check_errors+0xa5/0x150 [ 1162.987409] __iomap_dio_rw+0x6cd/0x1110 [ 1162.988219] ? iomap_dio_rw+0x90/0x90 [ 1162.989011] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1162.989950] ? ext4_orphan_add+0x253/0x9e0 [ 1162.990806] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1162.991805] ? ext4_empty_dir+0xae0/0xae0 [ 1162.992631] ? jbd2__journal_start+0xf3/0x7e0 [ 1162.993548] iomap_dio_rw+0x31/0x90 [ 1162.994282] ext4_file_write_iter+0xe0e/0x1530 [ 1162.995225] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1162.996132] ? kasan_save_stack+0x32/0x40 [ 1162.996951] ? kasan_save_stack+0x1b/0x40 [ 1162.997784] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1162.998793] ? iter_file_splice_write+0x165/0xc90 [ 1162.999747] ? direct_splice_actor+0x10f/0x170 [ 1163.000667] ? splice_direct_to_actor+0x387/0x980 [ 1163.001642] ? do_splice_direct+0x1c4/0x290 [ 1163.002504] ? do_sendfile+0x553/0x11e0 [ 1163.003301] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1163.004226] ? do_syscall_64+0x33/0x40 [ 1163.005010] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1163.006092] do_iter_readv_writev+0x476/0x750 [ 1163.006979] ? _cond_resched+0x10/0x30 [ 1163.007750] ? new_sync_write+0x660/0x660 [ 1163.008568] ? avc_policy_seqno+0x9/0x70 [ 1163.009372] ? selinux_file_permission+0x92/0x520 [ 1163.010335] ? security_file_permission+0xb1/0xe0 [ 1163.011303] do_iter_write+0x191/0x700 [ 1163.012077] ? trace_hardirqs_on+0x5b/0x180 [ 1163.012933] vfs_iter_write+0x70/0xa0 [ 1163.013700] iter_file_splice_write+0x726/0xc90 [ 1163.014642] ? generic_splice_sendpage+0x140/0x140 [ 1163.015627] ? security_file_permission+0xb1/0xe0 [ 1163.016591] ? generic_splice_sendpage+0x140/0x140 [ 1163.017572] direct_splice_actor+0x10f/0x170 [ 1163.018447] splice_direct_to_actor+0x387/0x980 [ 1163.019377] ? pipe_to_sendpage+0x380/0x380 [ 1163.020242] ? do_splice_to+0x160/0x160 [ 1163.021029] ? security_file_permission+0xb1/0xe0 [ 1163.021995] do_splice_direct+0x1c4/0x290 [ 1163.022822] ? splice_direct_to_actor+0x980/0x980 [ 1163.023770] ? avc_policy_seqno+0x9/0x70 [ 1163.024578] ? security_file_permission+0xb1/0xe0 [ 1163.025553] do_sendfile+0x553/0x11e0 [ 1163.026318] ? do_pwritev+0x270/0x270 [ 1163.027072] ? wait_for_completion_io+0x270/0x270 [ 1163.028034] ? rcu_read_lock_any_held+0x75/0xa0 [ 1163.028958] ? vfs_write+0x354/0xb10 [ 1163.029703] __x64_sys_sendfile64+0x1d1/0x210 [ 1163.030602] ? __ia32_sys_sendfile+0x220/0x220 [ 1163.031503] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1163.032532] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1163.033556] do_syscall_64+0x33/0x40 [ 1163.034286] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1163.035294] RIP: 0033:0x7fe85904db19 [ 1163.036030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1163.039672] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1163.041180] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1163.042586] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1163.043988] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1163.045399] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1163.046807] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 01:00:04 executing program 0: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000012000101"], 0x14}}, 0x0) readv(0xffffffffffffffff, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:00:04 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000fffffdfc, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:00:04 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1163.057026] EXT4-fs warning (device loop5): ext4_multi_mount_protect:300: Invalid MMP block in superblock [ 1163.059721] loop6: detected capacity change from 0 to 16776704 01:00:04 executing program 7: r0 = fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='cpuset.memory_pressure\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x5, 0x0, 0x6, 0x0, 0x0, 0x101, 0x0, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7, 0x4, @perf_config_ext={0x44b5, 0x9}, 0x4a062, 0xa09, 0x7, 0x3, 0xfffffffffffffffd, 0x496, 0x800, 0x0, 0x0, 0x0, 0x3f7c}, r0, 0x2, r1, 0x5) [ 1163.135196] loop5: detected capacity change from 0 to 2103296 [ 1163.155005] EXT4-fs warning (device loop5): ext4_multi_mount_protect:300: Invalid MMP block in superblock 01:00:05 executing program 0: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000012000101"], 0x14}}, 0x0) readv(0xffffffffffffffff, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) [ 1163.206129] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 01:00:05 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x2, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:00:05 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 42) 01:00:05 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000001480)="200000000002000019000000500100000f000000000000000000000004000000000002000020000020000000def4655fdef4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000e58ca12e13a240e2b1a22f8d07e8e55f010040", 0x1f, 0x4e0}, {&(0x7f0000000040)="010000000000010000000000d2144ee70b5ba8", 0x13, 0x560}, {0x0, 0x0, 0x1000000000c00}], 0x0, &(0x7f0000012b00)=ANY=[]) 01:00:05 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000ffffff8c, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:00:05 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000012000101"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) [ 1163.359536] FAULT_INJECTION: forcing a failure. [ 1163.359536] name failslab, interval 1, probability 0, space 0, times 0 [ 1163.362073] CPU: 1 PID: 14488 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1163.363524] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1163.365262] Call Trace: [ 1163.365827] dump_stack+0x107/0x167 [ 1163.366594] should_fail.cold+0x5/0xa [ 1163.367393] ? __alloc_file+0x21/0x320 [ 1163.368209] should_failslab+0x5/0x20 [ 1163.369008] kmem_cache_alloc+0x5b/0x310 [ 1163.369871] __alloc_file+0x21/0x320 [ 1163.370645] alloc_empty_file+0x6d/0x170 [ 1163.371499] alloc_file+0x5e/0x5a0 [ 1163.372242] alloc_file_pseudo+0x16a/0x250 [ 1163.373125] ? alloc_file+0x5a0/0x5a0 [ 1163.373941] anon_inode_getfile+0xc8/0x1f0 [ 1163.374827] io_uring_setup+0x138b/0x2980 [ 1163.375699] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1163.376765] ? wait_for_completion_io+0x270/0x270 [ 1163.377803] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1163.378898] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1163.379994] do_syscall_64+0x33/0x40 [ 1163.380778] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1163.381875] RIP: 0033:0x7f707acaeb19 [ 1163.382654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1163.386514] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1163.388107] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1163.389630] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1163.391126] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1163.392615] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1163.394116] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:00:05 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x2}, 0x0, 0x0, 0x0, 0x9, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) perf_event_open(&(0x7f00000001c0)={0x5, 0x80, 0x1f, 0x81, 0x1f, 0x7, 0x0, 0x0, 0x600, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x20000074, 0x1, @perf_bp={&(0x7f0000000080)}, 0x200, 0x7, 0x8, 0x2, 0x8, 0x2, 0x7, 0x0, 0xa0, 0x0, 0x4}, 0xffffffffffffffff, 0x4, r0, 0x2) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/timer_list\x00', 0x0, 0x0) lseek(r1, 0x9e46, 0x0) r2 = getpgrp(0x0) tgkill(0x0, r2, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) pipe2(&(0x7f0000000380), 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/kprobe', 0x420000, 0x1) pread64(r3, &(0x7f0000000280)=""/90, 0x5a, 0x7) 01:00:05 executing program 5: r0 = pkey_alloc(0x0, 0x1) mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0) pkey_mprotect(&(0x7f0000ff1000/0xf000)=nil, 0xf000, 0x2, r0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r2, r1, 0x0, 0x9bbb) 01:00:05 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 76) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:00:05 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000fffffff6, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:00:05 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x3, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:00:05 executing program 7: fork() fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000080)={0x0, 0x0}) wait4(r0, &(0x7f00000000c0), 0x2, &(0x7f0000000100)) waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) [ 1163.499596] FAULT_INJECTION: forcing a failure. [ 1163.499596] name failslab, interval 1, probability 0, space 0, times 0 [ 1163.501448] CPU: 0 PID: 14543 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1163.502487] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1163.503711] Call Trace: [ 1163.504107] dump_stack+0x107/0x167 [ 1163.504641] should_fail.cold+0x5/0xa [ 1163.505209] ? create_object.isra.0+0x3a/0xa30 [ 1163.505901] should_failslab+0x5/0x20 [ 1163.506473] kmem_cache_alloc+0x5b/0x310 [ 1163.507068] create_object.isra.0+0x3a/0xa30 [ 1163.507713] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1163.508467] kmem_cache_alloc+0x159/0x310 [ 1163.509077] ext4_mb_new_blocks+0x1fd8/0x45c0 [ 1163.509755] ? trace_hardirqs_on+0x5b/0x180 [ 1163.510386] ? ext4_cache_extents+0x148/0x2d0 [ 1163.511039] ? ext4_discard_preallocations+0xd80/0xd80 [ 1163.511800] ? ext4_ext_search_right+0x2e8/0xbd0 [ 1163.512512] ext4_ext_map_blocks+0x1a55/0x5880 [ 1163.513202] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1163.513990] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1163.514762] ? ext4_ext_release+0x10/0x10 [ 1163.515373] ? ext4_map_blocks+0x5cd/0x1910 [ 1163.516021] ? lock_release+0x680/0x680 [ 1163.516623] ? ext4_es_lookup_extent+0x485/0xa80 [ 1163.517346] ? lock_downgrade+0x6d0/0x6d0 [ 1163.517977] ? down_write_killable+0x180/0x180 [ 1163.518641] ext4_map_blocks+0x63f/0x1910 [ 1163.519249] ? kmem_cache_alloc+0x2a6/0x310 [ 1163.519880] ? __kernel_text_address+0x9/0x40 [ 1163.520525] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1163.521181] ? jbd2__journal_start+0xf3/0x7e0 [ 1163.521846] ? __ext4_journal_start_sb+0x214/0x390 [ 1163.522562] ? __ext4_journal_start_sb+0x1db/0x390 [ 1163.523272] ext4_iomap_begin+0x3ad/0x700 [ 1163.523879] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1163.524579] ? kasan_save_stack+0x1b/0x40 [ 1163.525177] ? ext4_file_write_iter+0xe0e/0x1530 [ 1163.525866] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1163.526771] ? splice_direct_to_actor+0x387/0x980 [ 1163.527466] ? do_splice_direct+0x1c4/0x290 [ 1163.528088] ? do_sendfile+0x553/0x11e0 [ 1163.528656] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1163.529323] ? do_syscall_64+0x33/0x40 [ 1163.529893] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1163.530655] iomap_apply+0x164/0x810 [ 1163.531191] ? iomap_dio_rw+0x90/0x90 [ 1163.531741] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 1163.532574] ? mark_held_locks+0x9e/0xe0 [ 1163.533165] ? filemap_check_errors+0xa5/0x150 [ 1163.533836] __iomap_dio_rw+0x6cd/0x1110 [ 1163.534422] ? iomap_dio_rw+0x90/0x90 [ 1163.534986] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1163.535645] ? ext4_orphan_add+0x253/0x9e0 [ 1163.536247] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1163.536950] ? ext4_empty_dir+0xae0/0xae0 [ 1163.537551] ? jbd2__journal_start+0xf3/0x7e0 [ 1163.538197] iomap_dio_rw+0x31/0x90 [ 1163.538725] ext4_file_write_iter+0xe0e/0x1530 [ 1163.539388] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1163.540042] ? kasan_save_stack+0x32/0x40 [ 1163.540642] ? kasan_save_stack+0x1b/0x40 [ 1163.541234] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1163.541983] ? iter_file_splice_write+0x165/0xc90 [ 1163.542676] ? direct_splice_actor+0x10f/0x170 [ 1163.543323] ? splice_direct_to_actor+0x387/0x980 [ 1163.544004] ? do_splice_direct+0x1c4/0x290 [ 1163.544619] ? do_sendfile+0x553/0x11e0 [ 1163.545176] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1163.545847] ? do_syscall_64+0x33/0x40 [ 1163.546398] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1163.547161] do_iter_readv_writev+0x476/0x750 [ 1163.547799] ? _cond_resched+0x10/0x30 [ 1163.548360] ? new_sync_write+0x660/0x660 [ 1163.548948] ? avc_policy_seqno+0x9/0x70 [ 1163.549530] ? selinux_file_permission+0x92/0x520 [ 1163.550216] ? security_file_permission+0xb1/0xe0 [ 1163.550912] do_iter_write+0x191/0x700 [ 1163.551467] ? trace_hardirqs_on+0x5b/0x180 [ 1163.552091] vfs_iter_write+0x70/0xa0 [ 1163.552630] iter_file_splice_write+0x726/0xc90 [ 1163.553303] ? generic_splice_sendpage+0x140/0x140 [ 1163.554013] ? security_file_permission+0xb1/0xe0 [ 1163.554694] ? generic_splice_sendpage+0x140/0x140 [ 1163.555391] direct_splice_actor+0x10f/0x170 [ 1163.556017] splice_direct_to_actor+0x387/0x980 [ 1163.556678] ? pipe_to_sendpage+0x380/0x380 [ 1163.557287] ? do_splice_to+0x160/0x160 [ 1163.557850] ? security_file_permission+0xb1/0xe0 [ 1163.558530] do_splice_direct+0x1c4/0x290 [ 1163.559123] ? splice_direct_to_actor+0x980/0x980 [ 1163.559796] ? avc_policy_seqno+0x9/0x70 [ 1163.560369] ? security_file_permission+0xb1/0xe0 [ 1163.561053] do_sendfile+0x553/0x11e0 [ 1163.561602] ? do_pwritev+0x270/0x270 [ 1163.562136] ? wait_for_completion_io+0x270/0x270 [ 1163.562818] ? rcu_read_lock_any_held+0x75/0xa0 [ 1163.563473] ? vfs_write+0x354/0xb10 [ 1163.563999] __x64_sys_sendfile64+0x1d1/0x210 [ 1163.564625] ? __ia32_sys_sendfile+0x220/0x220 [ 1163.565275] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1163.566015] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1163.566736] do_syscall_64+0x33/0x40 [ 1163.567262] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1163.567979] RIP: 0033:0x7fe85904db19 [ 1163.568504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1163.571072] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1163.572125] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1163.573113] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1163.574106] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1163.575095] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1163.576086] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 01:00:05 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000fffffffe, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:00:05 executing program 5: ioctl$AUTOFS_IOC_ASKUMOUNT(0xffffffffffffffff, 0x80049370, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write(r0, &(0x7f0000000280)="2a87426c4ddcbf2ded0d711b2c21f8fec88d1e4d7d9187d26488a0", 0x1b) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0xfdef) ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r1, 0x60, 0x5, 0x10001) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x3, 0x0, 0x8000) ioctl$F2FS_IOC_FLUSH_DEVICE(r2, 0x4008f50a, &(0x7f0000000240)={0x1000, 0x3}) fallocate(r0, 0x0, 0x0, 0x1000002) mount$9p_fd(0x0, &(0x7f0000000340)='./file1\x00', 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00', @ANYBLOB=',ufdno=', @ANYBLOB, @ANYRESDEC=0xee01, @ANYBLOB=',uid>', @ANYRESDEC, @ANYRESDEC=0x0, @ANYBLOB="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"]) ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, &(0x7f00000001c0)={0x1, 0x74, "f4748c5d91c3bad4c7bf6fad82da1c4c523666780ada4b98f8879c7b3e3dd0627313648bf428cc41e0dc2707d8ab939ed57cc99873bae565f71440ab1f02a41da489f0ce121c71d9b041fb9a6eeb09f86a9b2e2357b3c28a38e9d87a186ab6ef7112c23eb52f9e6d0296daa80d399302cd697e0c"}) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000f, 0x1f012, r0, 0x0) 01:00:05 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x2, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:00:05 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x4, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:00:20 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 43) 01:00:20 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) syncfs(0xffffffffffffffff) close(0xffffffffffffffff) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x200000a, 0x13, 0xffffffffffffffff, 0x0) openat$ptp0(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(0xffffffffffffffff, 0xc0145401, &(0x7f0000000080)={0x1}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) fchmodat(r2, &(0x7f0000000280)='./file0\x00', 0xc0) ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000400)={0x0, 0x8}) syz_io_uring_setup(0x6895, &(0x7f0000000140)={0x0, 0x6f0, 0x8, 0xfffffffd, 0x219}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000001400)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x104, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000100)}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lseek(r1, 0x0, 0x2) r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x128) copy_file_range(r3, 0x0, r1, 0x0, 0x200f5ef, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f0000000340)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x5}}, './file0\x00'}) getsockname$netlink(r4, &(0x7f00000002c0), &(0x7f0000000300)=0xc) readv(r3, &(0x7f00000000c0)=[{&(0x7f0000000380)=""/111, 0x6f}], 0x1) 01:00:20 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000012000101"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:00:20 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000001580)='status\x00') accept$inet6(0xffffffffffffffff, &(0x7f00000015c0), &(0x7f0000001740)=0x1c) readv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000001a40)=""/258, 0x92}, {&(0x7f0000001500)=""/102, 0x66}, {&(0x7f00000019c0)=""/95, 0xa7}], 0x3) readv(r0, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4095, 0xfff}], 0x17) readv(0xffffffffffffffff, &(0x7f0000000480)=[{&(0x7f0000001640)=""/79, 0x4f}, {&(0x7f0000000200)=""/58, 0x3a}, {&(0x7f00000016c0)=""/100, 0x64}], 0x3) openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x0, 0x0) ioctl$FIONREAD(0xffffffffffffffff, 0x6801, 0x0) getdents(0xffffffffffffffff, &(0x7f0000000380)=""/215, 0xd7) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x3, 0xfe, 0x0, 0x4, 0x16058, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x101, 0x9}, 0x0, 0x100000001000, 0x0, 0x0, 0x7ff, 0x6, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x4, 0x8010, 0xffffffffffffffff, 0x2926e000) readv(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f00000000c0)=""/32, 0x20}, {&(0x7f0000000240)=""/110, 0x6e}, {&(0x7f0000000100)=""/1, 0x1}, {&(0x7f0000000180)=""/49, 0x31}], 0x4) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/cpu', 0x2000, 0x8b) syz_open_dev$ttys(0xc, 0x2, 0x0) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) fstat(r1, &(0x7f0000001880)) r2 = syz_open_dev$usbmon(&(0x7f0000000300), 0x7, 0x400000) fsetxattr$trusted_overlay_nlink(r2, &(0x7f0000000340), &(0x7f00000014c0)={'L-', 0x7fffffff}, 0x16, 0x5) mount$9p_unix(&(0x7f0000000140)='./file1\x00', &(0x7f00000001c0)='./file1\x00', 0x0, 0x1f381d, 0x0) unshare(0x48020200) 01:00:20 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x5, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:00:20 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 77) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:00:20 executing program 7: fork() waitid(0x1, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) 01:00:20 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x4, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1178.775431] FAULT_INJECTION: forcing a failure. [ 1178.775431] name failslab, interval 1, probability 0, space 0, times 0 [ 1178.778151] CPU: 0 PID: 14675 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1178.779717] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1178.781598] Call Trace: [ 1178.782209] dump_stack+0x107/0x167 [ 1178.783037] should_fail.cold+0x5/0xa [ 1178.783903] ? create_object.isra.0+0x3a/0xa30 [ 1178.784935] should_failslab+0x5/0x20 [ 1178.785807] kmem_cache_alloc+0x5b/0x310 [ 1178.786739] create_object.isra.0+0x3a/0xa30 [ 1178.787735] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1178.788896] kmem_cache_alloc+0x159/0x310 [ 1178.789859] __alloc_file+0x21/0x320 [ 1178.790703] alloc_empty_file+0x6d/0x170 [ 1178.791633] alloc_file+0x5e/0x5a0 [ 1178.792448] alloc_file_pseudo+0x16a/0x250 [ 1178.793406] ? alloc_file+0x5a0/0x5a0 [ 1178.794293] anon_inode_getfile+0xc8/0x1f0 [ 1178.795267] io_uring_setup+0x138b/0x2980 [ 1178.796215] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1178.797360] ? wait_for_completion_io+0x270/0x270 [ 1178.798492] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1178.799677] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1178.800845] do_syscall_64+0x33/0x40 [ 1178.801698] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.802861] RIP: 0033:0x7f707acaeb19 [ 1178.803703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.807882] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1178.807908] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1178.807920] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1178.807933] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1178.807946] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1178.807958] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1178.838991] FAULT_INJECTION: forcing a failure. [ 1178.838991] name failslab, interval 1, probability 0, space 0, times 0 [ 1178.841624] CPU: 0 PID: 14676 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1178.843200] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1178.845081] Call Trace: [ 1178.845695] dump_stack+0x107/0x167 [ 1178.846526] should_fail.cold+0x5/0xa [ 1178.847403] ? create_object.isra.0+0x3a/0xa30 [ 1178.848442] should_failslab+0x5/0x20 [ 1178.849310] kmem_cache_alloc+0x5b/0x310 [ 1178.850255] ? lock_chain_count+0x20/0x20 [ 1178.851197] create_object.isra.0+0x3a/0xa30 [ 1178.852202] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1178.853362] __kmalloc+0x16e/0x390 [ 1178.854184] ext4_find_extent+0xa77/0xd70 [ 1178.855135] ext4_ext_map_blocks+0x1c8/0x5880 [ 1178.856163] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1178.857355] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1178.858563] ? ext4_ext_release+0x10/0x10 [ 1178.859509] ? ext4_map_blocks+0x5cd/0x1910 [ 1178.860492] ? lock_release+0x680/0x680 [ 1178.861398] ? ext4_es_lookup_extent+0x485/0xa80 [ 1178.862481] ? lock_downgrade+0x6d0/0x6d0 [ 1178.863441] ? down_write+0xe0/0x160 [ 1178.864288] ? down_write_killable+0x180/0x180 [ 1178.865348] ext4_map_blocks+0x63f/0x1910 [ 1178.866334] ? kmem_cache_alloc+0x2a6/0x310 [ 1178.867314] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1178.868328] ? jbd2__journal_start+0xf3/0x7e0 [ 1178.869350] ? __ext4_journal_start_sb+0x214/0x390 [ 1178.870461] ? __ext4_journal_start_sb+0x1db/0x390 [ 1178.871576] ext4_iomap_begin+0x3ad/0x700 [ 1178.872525] ? ext4_iomap_begin_report+0x5a0/0x5a0 [ 1178.873790] ? kasan_save_stack+0x1b/0x40 [ 1178.874730] ? ext4_file_write_iter+0xe0e/0x1530 [ 1178.875810] ? truncate_exceptional_pvec_entries.part.0+0x510/0x510 [ 1178.877239] ? splice_direct_to_actor+0x387/0x980 [ 1178.878336] ? do_splice_direct+0x1c4/0x290 [ 1178.879310] ? do_sendfile+0x553/0x11e0 [ 1178.880207] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1178.881253] ? do_syscall_64+0x33/0x40 [ 1178.882143] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.883355] iomap_apply+0x164/0x810 [ 1178.884202] ? iomap_dio_rw+0x90/0x90 [ 1178.885070] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 1178.886394] ? mark_held_locks+0x9e/0xe0 [ 1178.887332] ? filemap_check_errors+0xa5/0x150 [ 1178.888369] __iomap_dio_rw+0x6cd/0x1110 [ 1178.889275] ? iomap_dio_rw+0x90/0x90 [ 1178.890167] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1178.891202] ? ext4_orphan_add+0x253/0x9e0 [ 1178.892159] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1178.893276] ? ext4_empty_dir+0xae0/0xae0 [ 1178.894224] ? jbd2__journal_start+0xf3/0x7e0 [ 1178.895251] iomap_dio_rw+0x31/0x90 [ 1178.896079] ext4_file_write_iter+0xe0e/0x1530 [ 1178.897131] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1178.898164] ? kasan_save_stack+0x32/0x40 [ 1178.899099] ? kasan_save_stack+0x1b/0x40 [ 1178.900032] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1178.901179] ? iter_file_splice_write+0x165/0xc90 [ 1178.902276] ? direct_splice_actor+0x10f/0x170 [ 1178.903305] ? splice_direct_to_actor+0x387/0x980 [ 1178.904386] ? do_splice_direct+0x1c4/0x290 [ 1178.905362] ? do_sendfile+0x553/0x11e0 [ 1178.906266] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1178.907314] ? do_syscall_64+0x33/0x40 [ 1178.908198] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.909403] do_iter_readv_writev+0x476/0x750 [ 1178.910430] ? _cond_resched+0x10/0x30 [ 1178.911313] ? new_sync_write+0x660/0x660 [ 1178.912273] ? avc_policy_seqno+0x9/0x70 [ 1178.913190] ? selinux_file_permission+0x92/0x520 [ 1178.914294] ? security_file_permission+0xb1/0xe0 [ 1178.915393] do_iter_write+0x191/0x700 [ 1178.916277] ? trace_hardirqs_on+0x5b/0x180 [ 1178.917260] vfs_iter_write+0x70/0xa0 [ 1178.918140] iter_file_splice_write+0x726/0xc90 [ 1178.919219] ? generic_splice_sendpage+0x140/0x140 [ 1178.920353] ? security_file_permission+0xb1/0xe0 [ 1178.921447] ? generic_splice_sendpage+0x140/0x140 [ 1178.922573] direct_splice_actor+0x10f/0x170 [ 1178.923573] splice_direct_to_actor+0x387/0x980 [ 1178.924629] ? pipe_to_sendpage+0x380/0x380 [ 1178.925624] ? do_splice_to+0x160/0x160 [ 1178.926523] ? security_file_permission+0xb1/0xe0 [ 1178.927628] do_splice_direct+0x1c4/0x290 [ 1178.928571] ? splice_direct_to_actor+0x980/0x980 [ 1178.929670] ? avc_policy_seqno+0x9/0x70 [ 1178.930599] ? security_file_permission+0xb1/0xe0 [ 1178.931699] do_sendfile+0x553/0x11e0 [ 1178.932581] ? do_pwritev+0x270/0x270 [ 1178.933446] ? wait_for_completion_io+0x270/0x270 [ 1178.934547] ? rcu_read_lock_any_held+0x75/0xa0 [ 1178.935596] ? vfs_write+0x354/0xb10 [ 1178.936444] __x64_sys_sendfile64+0x1d1/0x210 [ 1178.937449] ? __ia32_sys_sendfile+0x220/0x220 [ 1178.938500] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1178.939695] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1178.940869] do_syscall_64+0x33/0x40 [ 1178.941724] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.942886] RIP: 0033:0x7fe85904db19 [ 1178.943735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.947892] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1178.949628] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1178.951251] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1178.952870] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1178.954490] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1178.956109] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 01:00:20 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x6, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:00:20 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x7, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:00:20 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x7, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:00:20 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 44) 01:00:20 executing program 7: r0 = fork() clone3(&(0x7f0000001700)={0x200000, &(0x7f00000005c0), &(0x7f0000000600)=0x0, &(0x7f0000000640), {0x15}, &(0x7f0000000680)=""/24, 0x18, &(0x7f00000006c0)=""/4096, &(0x7f00000016c0)=[r0], 0x1}, 0x58) fcntl$setown(0xffffffffffffffff, 0x8, r1) ptrace$poke(0x5, r0, &(0x7f00000000c0), 0xfffffffffffffff9) waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) setsockopt$inet6_IPV6_DSTOPTS(0xffffffffffffffff, 0x29, 0x3b, &(0x7f0000000080)={0x32, 0x0, '\x00', [@ra={0x5, 0x2, 0xfc00}, @enc_lim={0x4, 0x1, 0x5}]}, 0x10) [ 1179.043725] FAULT_INJECTION: forcing a failure. [ 1179.043725] name failslab, interval 1, probability 0, space 0, times 0 [ 1179.046736] CPU: 0 PID: 14794 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1179.048297] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1179.050279] Call Trace: [ 1179.050877] dump_stack+0x107/0x167 [ 1179.051699] should_fail.cold+0x5/0xa [ 1179.052562] ? create_object.isra.0+0x3a/0xa30 [ 1179.053588] should_failslab+0x5/0x20 [ 1179.054459] kmem_cache_alloc+0x5b/0x310 [ 1179.055380] create_object.isra.0+0x3a/0xa30 [ 1179.056366] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1179.057515] kmem_cache_alloc+0x159/0x310 [ 1179.058478] __d_alloc+0x2a/0x990 [ 1179.059271] ? find_held_lock+0x2c/0x110 [ 1179.060186] d_alloc_pseudo+0x19/0x70 [ 1179.061041] alloc_file_pseudo+0xce/0x250 [ 1179.061981] ? trace_hardirqs_on+0x5b/0x180 [ 1179.062950] ? alloc_file+0x5a0/0x5a0 [ 1179.063823] anon_inode_getfile+0xc8/0x1f0 [ 1179.064782] io_uring_setup+0x138b/0x2980 [ 1179.065739] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1179.066886] ? wait_for_completion_io+0x270/0x270 [ 1179.067997] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1179.069173] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1179.070349] do_syscall_64+0x33/0x40 [ 1179.071191] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1179.072359] RIP: 0033:0x7f707acaeb19 [ 1179.073202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1179.077370] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1179.079104] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1179.080717] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1179.082347] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1179.083960] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1179.085578] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:00:20 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0xf, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:00:20 executing program 6: sendmsg$inet6(0xffffffffffffffff, 0x0, 0x10044008) setsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000040), 0x4) connect$802154_dgram(0xffffffffffffffff, 0x0, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, 0x0, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044008) recvmmsg(r0, &(0x7f000000a580)=[{{0x0, 0x0, 0x0}, 0x5}, {{0x0, 0x0, &(0x7f0000003700)=[{&(0x7f0000003500)=""/7, 0x7}, {&(0x7f0000003540)=""/214, 0xd6}, {&(0x7f0000003640)=""/100, 0x64}], 0x3, &(0x7f0000003740)=""/109, 0x6d}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x5, 0x0, 0x0) sendmsg$inet6(r0, &(0x7f00000003c0)={&(0x7f00000000c0)={0xa, 0x4e23, 0x40, @empty, 0x6}, 0x1c, &(0x7f0000000280)=[{&(0x7f0000000180)="f16da1f777fc2b63436135054692d51b95e73e5a5ee937ac5ba05bee6b7f65a180f57dc8212e6eca026d1a25bea91482da3333c5e11673d83242f403", 0x3c}, {&(0x7f00000001c0)="f8b0f2ba0900b740658ae660062548437d6e62889970c953752cf5ee79f6d58b96f30121c8cf62df5142ee07e4c599c3088d29e5b07fa4978032a83ad6868bb06360883a6efe70cbb3e4b959330eb1a61eb1b2ac4d134362ca5d6dfe1246fc5231239efbac9ecb6814d823da4fd784f3ed11411faea568b989550fe48872bb5a2f2cd1dfc64e02fa7e4333db2466a5c7a32639c22721e53fb41fcf86c757c81621334f92d88e7883e32dc6cfb5f3dbb5517da8313cc4fb", 0xb7}], 0x2, &(0x7f00000002c0)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x9}}, @hoplimit={{0x14, 0x29, 0x34, 0x6}}, @hopopts={{0x60, 0x29, 0x36, {0x5e, 0x8, '\x00', [@ra={0x5, 0x2, 0x81}, @jumbo={0xc2, 0x4, 0x7fffffff}, @jumbo={0xc2, 0x4, 0x3b}, @generic={0x0, 0x27, "e4c5f687c91f079570b6975c1093e337bf6a7338080c7a3933aaac5361c542f2074fbd2d8005af"}, @jumbo, @enc_lim={0x4, 0x1, 0x81}]}}}, @dstopts={{0x40, 0x29, 0x37, {0x87, 0x4, '\x00', [@jumbo={0xc2, 0x4, 0x1}, @enc_lim={0x4, 0x1, 0x9}, @calipso={0x7, 0x18, {0x2, 0x4, 0x0, 0x401, [0x4, 0x800]}}]}}}], 0xd0}, 0x6000000) 01:00:20 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x8, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:00:21 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 45) 01:00:21 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000280)=[r2, 0xffffffffffffffff, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x7}, 0x0) setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000000040)=0x3f, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)) bind$packet(r1, &(0x7f0000000240)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) sendfile(r1, r0, 0x0, 0x500000001) [ 1179.410884] FAULT_INJECTION: forcing a failure. [ 1179.410884] name failslab, interval 1, probability 0, space 0, times 0 [ 1179.413318] CPU: 0 PID: 14912 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1179.414790] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1179.416542] Call Trace: [ 1179.417102] dump_stack+0x107/0x167 [ 1179.417890] should_fail.cold+0x5/0xa [ 1179.418707] ? create_object.isra.0+0x3a/0xa30 [ 1179.419672] should_failslab+0x5/0x20 [ 1179.420484] kmem_cache_alloc+0x5b/0x310 [ 1179.421344] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1179.422520] create_object.isra.0+0x3a/0xa30 [ 1179.423443] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1179.424535] kmem_cache_alloc+0x159/0x310 [ 1179.425411] security_file_alloc+0x34/0x170 [ 1179.426321] __alloc_file+0xb7/0x320 [ 1179.427111] alloc_empty_file+0x6d/0x170 [ 1179.427971] alloc_file+0x5e/0x5a0 [ 1179.428721] alloc_file_pseudo+0x16a/0x250 [ 1179.429621] ? alloc_file+0x5a0/0x5a0 [ 1179.430440] anon_inode_getfile+0xc8/0x1f0 [ 1179.431341] io_uring_setup+0x138b/0x2980 [ 1179.432223] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1179.433296] ? wait_for_completion_io+0x270/0x270 [ 1179.434348] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1179.435457] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1179.436552] do_syscall_64+0x33/0x40 [ 1179.437340] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1179.438431] RIP: 0033:0x7f707acaeb19 [ 1179.439216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1179.443141] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1179.444759] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1179.446292] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1179.447804] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1179.449313] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1179.450827] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:00:36 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000012000101"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:00:36 executing program 7: fork() r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x6]}, 0x8, 0x80000) recvmsg$unix(r0, &(0x7f00000002c0)={&(0x7f00000000c0), 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000140)=""/116, 0x74}], 0x1, &(0x7f0000000200)=ANY=[@ANYBLOB="20000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="30000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="29000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32], 0xa8}, 0x2020) stat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)) waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) 01:00:36 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:00:36 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x9, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:00:36 executing program 6: pipe2(&(0x7f0000000280), 0x80800) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56dd, &(0x7f00000001c0)={0x0, 0x770f}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x3, 0x0, 0x8000) recvmsg$unix(r3, &(0x7f0000001680)={&(0x7f0000000380)=@abs, 0x6e, &(0x7f0000001900)=[{&(0x7f0000000400)=""/14, 0xe}, {&(0x7f0000000440)}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/12, 0xc}, {&(0x7f0000001980)=""/72, 0x48}, {&(0x7f00000017c0)=""/34, 0x22}, {&(0x7f0000001800)=""/220, 0xdc}], 0x7, &(0x7f0000001580)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @cred={{0x1c}}], 0xe0}, 0x2000) perf_event_open(&(0x7f0000000300)={0x3, 0x80, 0x0, 0x1, 0x1f, 0x8, 0x0, 0x200, 0x0, 0xc, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffff7fff, 0x1, @perf_config_ext={0x80000000, 0x424e}, 0x420, 0x6d3c, 0x1ff, 0x1, 0xfffffffffffff495, 0x6, 0x8, 0x0, 0x3, 0x0, 0x8}, r5, 0x4, 0xffffffffffffffff, 0x2) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r6, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r7 = socket$unix(0x1, 0x5, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r8, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r7, 0x8983, &(0x7f0000000240)={0x8, 'macvlan0\x00', {'geneve1\x00'}, 0x2}) clock_gettime(0x0, &(0x7f00000016c0)={0x0, 0x0}) futimesat(r4, &(0x7f0000000440)='./file0\x00', &(0x7f0000001700)={{r9, r10/1000+10000}, {0x0, 0xea60}}) 01:00:36 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x1, &(0x7f0000000780)=0x0) r1 = memfd_create(&(0x7f00000000c0), 0x2) fcntl$addseals(r1, 0x409, 0xf) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x3, 0x0, 0x8000) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000000c0)=0x0) r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r4, 0x3, 0x0, 0x8000) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)=@proc={0x10, 0x0, 0x25dfdbfc, 0x2}, 0xc, &(0x7f0000000100)=[{&(0x7f00000007c0)={0x28f8, 0x29, 0x200, 0x70bd26, 0x25dfdbfc, "", [@generic="bbb80405945c56d6e61e58f4cb79e52a048749b02451c8c373fab93aa7f1e4226e4c2b6f83bf06e24093442124beb94c5bd347a918b33283d4623bfbf5b7906b70ee0e99f4d51c79b07c08f97d5b8f10aed0bcf7e2274229ddcc31cc770a7239ee070ab40de32df2f691742312874c942acb68639de2eb24c9b784fca4b31b96ec25c4493b8ef5690774afad4e3229a95484eb80d1240c99d2308deba3e1db10ce43e71a0e8a22a9bd90c4233798227cfdfd3d6cbc4bba38e2f7632cf823b2fb43b4e7dac31d9c942ff6362a22cd922cd87b83aa62b98d", @typed={0x4, 0x1a}, @typed={0x4, 0x36}, @nested={0x102, 0x15, 0x0, 0x1, [@generic="379f326cc68143f7f058b15a2766b96ec313aeb08a39ae29bc827ffae1fd4a71b38838525e7bf14d529d", @generic="b2e189d27323a15a8d0a7bc49379cd4671bfa339167cf16d093d8295e8885867f7c6d97ae5374c0f61fb07cac8e25b87ec1f4a5ffcf3360a38866a7ecbde3f7bbfb0dd815b591f6ef835c540ea871494993ff0fe4e6353f9423e567d94fabca9d0f0a2671005b5089dc7a874e53832a4c252add7dbf2f8d4dad8cee5dd9a3042a79be89800f2d666adcad5d16a64ab9c109867b1fe8495a72d7507e10dc6a504600054962a61839d080ca69483890585dd2891f5f630d4ce9d21389138587e6920ae9c1cd7e6488b149d5fc2bf51775bbf4a1383"]}, @nested={0x227a, 0x3, 0x0, 0x1, [@generic="48990ddea049d82996873bb1a21884e494374ffe8d1dfb78f54704656ecacbe34cc54090c521f68f1948100de6afc34622c19c10078be5ee0b37b67ce0866b214cf130ea0f303505103f6ca4405d6c8c232f50cb55a5042c74edf4cd69a4371071132270eeef44df774fa03a2a6aea426fe3649cec64901df37e8c455a5b3eb1f3238223c68ef537f5e7e905e8ca", @generic="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", @typed={0x5, 0x21, 0x0, 0x0, @str='\x00'}, @generic="b5f0f91adf46b7de52de0b2fafc644864c51d7fb2491ddb48d1358b3331a09b23de894266b2afb4991387cec0dc9f59a5075e0bf2add88800d817c033523", @typed={0x4, 0x19}, @generic="dadc19fc25abd2918ceb4804cb6a22d20b6a5ac29efa4ecb61a9451c9be228cad7f041fcf0f54ead35634b0a0839a50a92b51255817e7d2df6263a07ddca76b8e78ffdac77423686a63718d8c958f2ceadfdd050fb65eaf932159803cab9414d6852b00a7675bbf7cf7f599813f99152dd78f848cfc6291903d2f6a173cdef4f39c5bcbe021f32a11a60b899accaa02dd7a452877402b2ce95218819933fba7c1432f7f4270c6b46f44f7e711ad5075bbe5e034d695efa401ef3c9add522cf4d2ee36795de27e4a94c7b080890b76dffdf332e65ceb700fe0e5d015031a285b02ae7bb95dec222fe53da93162292ecc55158c2a2b7e72d706d024f13a3785bcf34863dac60dace0d65d2a17723dce926a8ddb10314a7f94e012ae5c566df75707bbb41a3d0f611d7ed62f114b44969b56530132cd415d09426c7928b22b3741d719a38fbf71cffa00c671421d188c965c0a5b56f93442729d7e32196139e392626303c4a4cca1b38608f240396a70e572f087fc58922dae0ed3ee41e7ac88e700f3082ed59731798476bc961e22afabc1e2ce8d20904bcb954ca7bbb8526b636cc64448e5d352f1a1cacce04b856feac475c99381ab37ec9d828dc394564ca60b4d22ece3aecb528a727e8baeb74fa21a582d4193bfb280b25e2339951239727cd54d9ff06e2474d95a5fcf5fc4edd49bc971c943257afd951c1d85179f10b0b7420ffaa9a8f4fea7be42f488346089a84257f588ba692ac5f43ddd026e9207072f9b5ad27a685aedb148299f881e827ad634f680ffaf25a6825dedd227e3f0305db11d356b29d50a1a74496c145295f1d3d5a0572797c057a310df69fbf7ba442daa2db1b66d6b41420e7ed013670449180f2db449b967ce2a5acbfe5be72e64771046fbad8cf0f433948ec571fd320252286046cd6a00dbf8273a72b58e2e24b1bd85f153f8b62f06da2441377f564339cb540f4472e6130b4b098bef9a466fff7660faed6aa4d4931c0f032d6b7a8d8ad1afd956305b9fa9ec85b88dac333e76241d7396d9c426cdd7ce063f2516ecb20db4e02b9b0dc6f1ebe9034b7caf27bb38c44a09d9da329cf32f327814cc969776e680894d06ede4591056b5293377eebba5e807050df27684b6e8893e900a3a05f836428a4930cdd65b33c7e31120e68f92e2a32f84534fc3b016f0e43915cc77dc9ba83220b52f1bbe80e1c145de55beabbe04086e1d81ba931d288e62381f3ddb68315b4d7defae54ecc76a6eb00d324c3d1557383ded3ba60094e74d8175b9dd9848b6cf5d7d6c46ba0cb3c44bb5e1d7e216b77ad75d3a3442ff4bea388018b6ca43d6963461203b6e24d9d1b956fe6020b0f808ff154b74640cc51d46e7ebdf03188b6988c2d4f3bb9c046c6d85b9b7371acfc4d25c4ffaa858296e160cf344adcf527f10de79901061a281dd310ae388331d3cc893d2277e73264124e15eca7f71e6776cc06087758f1e1019c9846a854bebd7795c6ff7d79657439ba5305f559a87c76c15b019d921fbbb7547d9f6566ac753a3909d2620119c7eea92bfc2b85da0c4a060d4eb5f27a1ab7b15b7117580a6e9eef82393e2f17b7998264b3766273ede625b6ecd01bf3f9581d36a0045c08c490ec6093decfb59d544e4f3b34bdc3b0dca9bdb0dcdf495279b3282ff48c22dc0d9d1c6c86b1c92b5a81166490f89d71f2df83ca4204ab98007d2adda7d27af17d832dff05ec52922e9c884b2b9da18b62359d149c05b3b3984673ee78c80198fad1d419a75a8ce16ce95f60074a11babccf986b2b036865e2fd392f4a8a6857185fb02cac78fc7f5cba8851a280b293038039d5e1718c986309b5249a7da26cb0a78df63b4e0f9abaaeb696db0c5a77b8165d2287573d985b9bfb2b3e63f6ebe9533d3b658fe38d87d72fcba21f1688e458f8990719cc0c43a2366f9dc9237e351a390175373e44842f1fc47aac28784de38188a491c34f35853dc234e6b252144f7125746304f39cf97dba052d019bd16e5213cf5c01c8acbc487e6666b609e5d8e5be1feb22daae4131f1ea77ae2d2fff58047ba3c52610b56cd144d07f7f490e88b49ccbeacf1af45ae160bc8752cf77697ccc7b933d9201c04b1c8110256a35effe1eeb798bcaf4e44c730335f770d19640b97297d09ccb06dd8173c2bf2f8f72dd9b20c20cede488a5d487f3cb9e2a63660ef9161715cba08a5cb100418558387f16aec26007e2c7a65623343af8ddf7c8b0fc94d67316492a078809a79c7c1508a80aee1ef92bd04607338ae7f9d1ec3f4280b801619785684fd3f2e212217b6f803a7dde5b588edd67bc30994b3c23b05967183fe01c76c8183869a00d13e3fe020a05fc0a898a321cdd63291470500fb7931fbc471a99e220b1a23cd5da41b415e924f072d8b973034072000ff2269ab09a05da8c0ab3484af5e64d1db1399733935a5fa97569e233b8bd65a400fa58cf8fc443ed51945f3d6880183f2f0b484c8219e78ce23df409e031ecce27e6ccdd673df33ff324d8d895e043948c3e1cf1839df152b22f96d51fe4b49eb259b5e146b9c28918c12f774f78704fcb2a6853618c44b49d16cc28fd3d6276226cd485c9615ba67ad13f6f57bc2f0ccdf79e233cde01bfd27651751942c57735e8410b1170d11c325b1bd0708ba346a9fd99b73eff14bbe9e828e80267f6634bf75ce10cd2e1e8107c295a0928e041d8335eff6901d3ee97b252d473b022b66b366b563fa2619806b4c99612c84c7c52acb69e9b21a69377e63b0237398794cd7448cde1f56792a848563c26bfa81b49f49bd2efde890aacce2df5726d33319e3ade28f7e290e4e7379dc9e60ad2b416256ebcd483613c6a0c998c3f0451869143daa54d4ac5a4d460a35bbfe916c5b3e606b70042ec3470e50e5087c30f42ed90b9bfb7aaaea7be847467559e2ec22767f681cc16d3b7e4f921ecfea247e8b947f7e3e69f1e4675e9334d3923a89866218bc0ff542c508ac74543a44f2c00a30db111bb0c7accc6b0f8c437d87255e9128361cd1d5eb5a4d730a2c33c29cea9100c93cd5615e05b7445dae843ed4e9bcb0d0aa46ddac3afb7d24d8f4421be39a1e35b934074ea38c1badbde1a4c9ecc73de75455d9c8c694cbcfd21fac11d6991ee37579c823e19df350ff4194ca9103df4834abf50bf2085af136cc00ae53efa4d02ea2fbea68174e7655f127b47159d3ce82df4ed196f1a547b2c0f1f430525dd02dc90ca7bd54d2d4a2f7bd92cc84558c3c93dbc9e5e4863e4cdc0f909eb4e97a0bddacef7e8b92f0336d5e0c17b84c44c1a16542311a1b72c25ba432ebd803786450f03254b4337896d16e177f301947afcce2b01846af2147e25f1d07e32fff3fef3931f7463a0da23e7e4b83ebffe34afad5e2dfb5d8617a9eb7725ae9ff4ca1a90a77676d44f7f1a348bf5f812636d1f120ab2f7289c43174bba10bb7050d66bff145595ee262a09be50eeb5d7c5203994ff47608937d31ea39182860d7fefe6167acee8841c2c89c4416b1a03492d376b576b2641c73777eb7d97a06c1e01552ca8613c4ae0b83b4d01e3189df9b704be1d5559d3495a1581c9e77d80f47b8b8f8df3ce39b06743788c72efbcc3782382244262114f6484b610a6a011133ab931d065e6b5858aa476db42fe8720877f47e57bc515aea2716a067ffb59adbb2faafb3b5baf6a9d37f86f59542b3d0b09a74c6d31e4d0768ebf9d72bbcea6e1c4c272006128c5b2fd95eba4b684e9ff35ea28040483b3279e3229d149f87fb5de5d541db16fc5dbb6d8ae9e8ca520c0e0ee478b6f97c14e21621d443df0f54a0d3e597f9b2a75d566bfe320314630502b984f9f1cda31ca7936bff3fc66e9802cb361c6f8594d6eab90f87b940a6e4c0c44cb1fa61827e068b392eb7b279617834c4cb3e06c1bb07b64391862ae76c36e30f057180f9770fc5d0b3a85fcf88cf778a8551713af27756220955b5cf639d9271bf63f8a37d1610596f503def31b14a6c03d219720447ed06020e495945dfa0af1f1ea95c8f14aae5b1a3c4c8a0bb63eed66efad7b0eb5edb21c1c3842daaf1cc46b55af2a97ad563b757e312e199cd42322bb5f2ffff267eb66b714926f1f8160d049c50d9372f79fd7f34e25a6da04e210be3486eafc7ef4a5560d4599cc328066be689cea96f9076b1fc32b66d0e31392cfa6212e6402da1046d16af119383fdee98e3ef4fb578f625230392e43bfb7c402bcb555b25eeefeb3fa9b982d8be15c247e70f75a23b5a71a88d489dcb4bb41f3f5974215f4a98bfddf95b62a8efe43db7caf33fb3674f588b385e2c2828585463f3aa12f4d4bc0124a1c3121f7c009df4fe6cdcb07e4a7a2da4bdc4f53f5037b5cb6c096a371b0f84d0b2a876b11e77fe9cf972ffb67018d0396ea89a26c2d3bcb4e033e4c9174b735038ec9d494463a3807918f7ed4309c11b3cd693c1092a505166e0f39c92b3242a9519cc01685330bc3b3b6030e8c77ca4e4ba0f0e64785ce4fb1094e3a9d5e14d5a4edbf7fa8256cd6f85403feefff03c97544c86ddb152906d3e206535b975dcf340d1d5145779f1dafed027595deecb32fb48c39a106af403c89e6fc46e73c306f196bc3bc47b5e45387dc2f38f733b079f682a992cce95926cf09c2424c3b49b478243f2bd9b443b9a53238e67bf22aa2f4830e9a6e505215f3df56a63bb904b07a1222a25f7809b3d7ee404727fbcb49e582beb8622dbe925dc38279b1112658211b729b1ba33d1e74288eecd88f648f76d31ff2539b994bfb6913caaf04c6051a79f9853dd33b4a604a871771b0c2fa07722aac59e9607cf3b0132f8c934a8df485334f1cdcd77873a52fcc09255dbdf75cfd381d544f41841623f2210b28485691e1d1dd4ec09a5f656876e9e91f8be3db266f55a07b8be507201a2841de79920833c38a3fc0b42a1e7bd28cc5766b0831400da4a79e1017d9682caa705cd3b1155d82661342b33329bef0940ce30b73fb7b81f0ce9fe1d27b8186463ccc7cab76e867fb68d4f020d674e10678a11a988bb70ed2fbe3a8bc7f437fb8e6e443db3461f728ad444e6d8341a9d775e7476f32d7245f15cdbc11c6edf442c294f9d5c7dfe236d22419b5136b9d01859a030cdd5d6691b3e552121db38bcc6d458e1d7516fa6f03ce9581705f9b7d34e78888a0ff3fc477746a97ac0a99618de1e4f1c87b09fb40b72b83d857b509d76f9ae1ea89afacd29d6d1be456281a1550e42909447d21ecec7f3cec17b1f6b8f5b2eac2bf1c9c2b51ffe7f1d920aced78e960772261a85c310b09ba37bc2bdb0e48b6a29ad8c8a1add0edf349ad143617122b1eb67418685b55132566e0f7f9bcfdc3975ce351b6c44b026dc71d046ab1d0cbf3a4a1eec6c6f4e5d06b818a0fb110451952fe91023bb7f674320c3ed5acaf38ead12faeefabd1ab3115226c6b1599d015d568a769e9ce356ac928e507e401b333ef1ed94468549841fee427f23b8a7b7e59abcc90f9f3227855b8d84b3a12274b08371bd46c8b854b042f7ef60f39122b0f844bc118c274d8169b5481e5619baa435fb7ce2b4c59d8f431952cd7c767af80dd36b9d215ef065108c7303091b55386a552e9f11196a9d12fb77ea5c6b849fb9718bb38e8e950b6c7b5bcbd102ce447fcefd876b2496e084ad06fe7805b8a237b4b08d925bb1deac44f766903cdeaf1b6b5a01921761dc053d372f40e6f2957d3c868a9df6b371887eb2041128fa4683a31115124b16be4b10623f695acf162f9", @generic="acfb05eb93c26889431878dcdd3d51b666d57246bed1b541b5e078f776d64dffc2aa135ec092c83fc6ae2d973b7be91c1df8f35a5e35c81258fd2fb5dfec78263bd01ac84420f46fe70064e55514a0811aca", @generic="307a66d29edf5ada32fe7c290bc9cbbc16633aeb6e74233831900f8645b681ed103cc9559472cea374848a3c1246cd36f42926ac8e4692b7b05ad288285aa4538d61343c6e12ba1758383c042f4a359e9cfd0dc33cce436a9be651b9", @generic="34fb9c4546b12c240b7464420e5f53076ad8b253d948d7931fbc02345dfd12d3f49cbf104aed57999e89520e3506cc46da6923571e18b3a679c0b4e7e6cc82e80e40e1d32cd44fc10565831038158a8b919e7e0c560cce530b5673755b6733c2176fd1b13fe5b351a57eea21a4591f1f5af5e8c86dd497ec0fde32a213e811f355b94fc6025e0b10e9f240351e8bbf105ec8e799dd4ba1d0a4a6b36d0b0b3c9b5254d204b401536277575057778efca29831dc299ebd700e09c9ddd0275a20eb37282cfc0a0043dccba21b5e45f00fdf66f4f53e7c888391a7e7ddd9227e112bf52930b3a22ae8f25e48aa4e", @typed={0x4, 0x5d}]}, @generic, @nested={0x458, 0x1, 0x0, 0x1, [@generic="b6e1fee0f0f48bdcd99fb09ce653859d97af79bb89c8b5cad88f1724644f1a9a25cc51c59e74fcec877b64a4dfd8fbfe590fea0f67144bbf35f99dd13682499dcb", @generic="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", @typed={0x4, 0x63}, @generic="2b3527bf1520e995adae88ad0e5460473f744e06a0488d97424c4793d29e23c2d6c376f35954ce126408f4dc17250710eb3da42b6a5f6fdd903310d8c1492836a567cdaac40a7b797115010f958e14891422b9f1868354c79bd30e3f2f6c1dfbd07f83af8be9b20f4c092fb05d16e065a004c4c517f9dc898c2f0e9accc66951b648817098eaddc41648a836fcc9e599dd7ce309308d1924e6d899ab1eee4d19076987", @typed={0x14, 0x1d, 0x0, 0x0, @ipv6=@mcast1}, @generic="a49049ef765319bc13da97e871de27a07d812afd5b7951e9bcfcbf16e4667fdd3a875ad40ea9b2a97a5f86f0f47ac81074a018bf9286427070b59237222e771ae886d0c769c80b443287c173323aac9b4e4c4464fe646d2738f1", @generic="12015ec5bdd0e8324c1f5c870fea0ff43f2796b86cf1e65ce66c5f2364c136d2affd6ebdf8adea60064eeb02356e2537fdd9250731a660dad0dbd7b3483951f018ab86fa6422974671029694f7f5b95fc0cd201fb3cd1992e59b1803eb47d33a85c94797817429bffcfd9a554e77910bba3c4e2907278a240f84952e1c1019fb8a7bb4fdd16734875f2af4790fb448788ef10290f62a1bb6365589340b7bf7380a4fa30d832a27d1a34080b22abb0d6a2f43e4fa20cc01", @typed={0x8, 0x92, 0x0, 0x0, @fd=r1}, @generic="37f8a8fe7962878cf6e5c4a22a5a924bc12e66962efa7991d48d2c7299d57e480b83f075889e03e009b711ebb8f9dfdbdcd81cd5f8b759e8d53dc857c0f3e2ec5dcb44f32fb773653b88a08472ac12dcb89011068f5a64d3", @typed={0xe7, 0x39, 0x0, 0x0, @binary="3c19c128d4c1ee51e7c160f801b5be29131aa41ea260d7fd4cc917200beb1b56746f79b02dcb708f11d120f37f57f7db366a07666115aeb6f6196026b8393bc5c10a492ddf1d15aae57c1e9c1422a16539b53537249cbe07985a9afdd0cdbd64c178e6a64e863076427d3697f5b9090223d701691475565792fd29f565c1a730dcfa7be79539551dd033568200566018cbc0d130463cc183acfb106bc119eb01755bb0d8627dc49eeb031ea16c723ed0d624e1839315a51acb9d3bd5788099db36cf1ec351d0d227a35b65a6f69fec64073a62a3f8a87153a7873fd2b6f3b673c08db3"}]}, @typed={0xc, 0x45, 0x0, 0x0, @u64=0x8000}, @typed={0x8, 0x8f, 0x0, 0x0, @ipv4=@rand_addr=0x64010100}, @generic="5f483943bd47be19508a6c3d343d809c455450b9f1ac1c614b2d"]}, 0x28f8}, {&(0x7f00000030c0)={0x10fc, 0x22, 0x300, 0x70bd27, 0x25dfdbfd, "", [@typed={0x8, 0x56, 0x0, 0x0, @fd=r2}, @nested={0x14, 0x2e, 0x0, 0x1, [@typed={0x8, 0x53, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0x8, 0x84, 0x0, 0x0, @pid=0xffffffffffffffff}]}, @nested={0xc, 0x12, 0x0, 0x1, [@typed={0x8, 0x5a, 0x0, 0x0, @pid=r3}]}, @nested={0xc, 0x7b, 0x0, 0x1, [@typed={0x8, 0x6e, 0x0, 0x0, @pid=0xffffffffffffffff}]}, @nested={0xa5, 0x88, 0x0, 0x1, [@generic="c5b12416ea068db7860b3d45f3addf350ce4968a13e1aef159fcaddb941b183a6ead705ac37de8b83de0f2b092a6bab567c75aab7b52f771839c05a30ea19be640802ba5f0dfb731f65c40396e3ae4dd88a71c4d8bfe5c3e993552169b485ccd5ad7ab633ab93a1c3d93a6461e15323343ce4a6a13166e7d73fd91edf7ef7dfe69247adada471e32e26b2499f1ef962ca6afcdf3a582f1336b54fde214e605ac06"]}, @typed={0x1004, 0x1e, 0x0, 0x0, @binary="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"}, @nested={0xc, 0x4a, 0x0, 0x1, [@typed={0x8, 0x44, 0x0, 0x0, @fd=r4}]}]}, 0x10fc}, {&(0x7f00000041c0)={0x34c, 0x32, 0x8, 0x70bd27, 0x25dfdbfe, "", [@nested={0x20, 0x24, 0x0, 0x1, [@typed={0x8, 0x3e, 0x0, 0x0, @u32=0xffff}, @typed={0x4, 0x4b}, @typed={0xe, 0x59, 0x0, 0x0, @str='/dev/ptmx\x00'}]}, @typed={0x8, 0x0, 0x0, 0x0, @u32=0x7fff}, @nested={0x27e, 0x84, 0x0, 0x1, [@typed={0x8, 0x78, 0x0, 0x0, @ipv4=@multicast1}, @generic="8874b296a63ea66f2a09fdb2034659a6a0b3dad1f380b64f14dc28ff76f74a8a6566d4551129ada1", @generic="7b022eaab80bfa347419f805d8ab918f5ce5dc94e5553170ffd2fabae21e1ad6cb893ab5753911dd4aefe97abc3f711d9c421ed9501944f86e979c84311c7564cd24c92a2a0285997abdc14269c941329146300b510008e225ff84bc7a3fa3f8310a872e36dd0d95726ab6e1a580eee1e97e01da159182ece1f988a10d8428d108dd73a8b264386dfde9bde607d33076b6cd1b90ae913b5896414cacaba32b6181e95b13b54593e047502b8d4e0b7f81a8a23db22553fd8f0ec93f33306435a8ac597ef601c1a1b5ebb73e4b2b09d97001b21d6f39c5445d2a0332c5619235fa96a62aaec5d41a0c787eef23918f63", @typed={0x100, 0x54, 0x0, 0x0, @binary="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"}, @typed={0x14, 0x66, 0x0, 0x0, @ipv6=@local}, @generic="cbd11e177c8894f06d1c45a4d487e70169aa7b44f0a1daed6489784961e59f50a72132fd900c9f97594a7885045e405eaad17c2ad5cb676ef522a21bdce0bf6c317b0f4c0c7371"]}, @generic="285d8653110c5f5e992834e08d3ba3a26d637349aad1f0b8bbe179f10cb82076a011c88497ccc317694c540291ddb06c03628053cefdc87e3804dd0227726b70fc7bc0ff48a20c2ed9fee5f98f70e17f153537e452ddf9133f3166433d6b3b229f56bb03ed5836cd0f0e4752849a346b30c63413c5404830ead08bcfa8ade05c94ab51d8a21241508d8e2ca5419aa140f1110562"]}, 0x34c}, {0x0}], 0x4, &(0x7f0000000140)=[@rights={{0x14, 0x1, 0x1, [r1]}}], 0x18, 0x20008000}, 0x81) io_submit(r0, 0x1, &(0x7f00000006c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x1}]) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2, 0x110, r5, 0x3a3b3000) 01:00:36 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 46) 01:00:36 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 78) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) [ 1194.937625] FAULT_INJECTION: forcing a failure. [ 1194.937625] name failslab, interval 1, probability 0, space 0, times 0 [ 1194.940391] CPU: 0 PID: 14934 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1194.942087] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1194.944104] Call Trace: [ 1194.944748] dump_stack+0x107/0x167 [ 1194.945640] should_fail.cold+0x5/0xa [ 1194.946588] ? io_uring_alloc_task_context+0x99/0x6a0 [ 1194.947839] should_failslab+0x5/0x20 [ 1194.948763] kmem_cache_alloc_trace+0x55/0x320 [ 1194.949939] io_uring_alloc_task_context+0x99/0x6a0 [ 1194.951152] ? io_import_iovec+0x1120/0x1120 [ 1194.952221] ? lock_downgrade+0x6d0/0x6d0 [ 1194.953224] ? do_raw_spin_lock+0x121/0x260 [ 1194.954284] ? rwlock_bug.part.0+0x90/0x90 [ 1194.955310] __io_uring_add_tctx_node+0x2c6/0x520 [ 1194.956471] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1194.957735] ? alloc_fd+0x2e7/0x670 [ 1194.958631] io_uring_setup+0x1fbb/0x2980 [ 1194.959642] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1194.960865] ? wait_for_completion_io+0x270/0x270 [ 1194.962052] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1194.963310] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1194.964544] do_syscall_64+0x33/0x40 [ 1194.965436] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1194.966669] RIP: 0033:0x7f707acaeb19 [ 1194.967558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1194.971967] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1194.973805] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1194.975516] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1194.977218] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1194.978915] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1194.980611] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:00:36 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xa, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1194.991599] FAULT_INJECTION: forcing a failure. [ 1194.991599] name failslab, interval 1, probability 0, space 0, times 0 [ 1194.994246] CPU: 0 PID: 14929 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1194.995844] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1194.997752] Call Trace: [ 1194.998371] dump_stack+0x107/0x167 [ 1194.999230] should_fail.cold+0x5/0xa [ 1195.000112] ? mempool_alloc+0x148/0x360 [ 1195.001054] ? mempool_free_pages+0x20/0x20 [ 1195.002055] should_failslab+0x5/0x20 [ 1195.002935] kmem_cache_alloc+0x5b/0x310 [ 1195.003877] ? mempool_free_pages+0x20/0x20 [ 1195.004873] mempool_alloc+0x148/0x360 [ 1195.005775] ? mempool_resize+0x7d0/0x7d0 [ 1195.006747] ? lock_downgrade+0x6d0/0x6d0 [ 1195.007712] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1195.008852] bio_alloc_bioset+0x36e/0x600 [ 1195.009820] ? bvec_alloc+0x2f0/0x2f0 [ 1195.010709] ? iov_iter_npages+0x1fd/0xa70 [ 1195.011688] iomap_dio_bio_actor+0x518/0xef0 [ 1195.012718] iomap_dio_actor+0x36f/0x560 [ 1195.013646] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1195.014724] ? do_syscall_64+0x33/0x40 [ 1195.015615] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1195.016840] iomap_apply+0x289/0x810 [ 1195.017709] ? iomap_dio_rw+0x90/0x90 [ 1195.018595] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 1195.019923] ? mark_held_locks+0x9e/0xe0 [ 1195.020864] ? filemap_check_errors+0xa5/0x150 [ 1195.021932] __iomap_dio_rw+0x6cd/0x1110 [ 1195.022856] ? iomap_dio_rw+0x90/0x90 [ 1195.023744] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1195.024783] ? ext4_orphan_add+0x253/0x9e0 [ 1195.025744] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1195.026871] ? ext4_empty_dir+0xae0/0xae0 [ 1195.027810] ? jbd2__journal_start+0xf3/0x7e0 [ 1195.028842] iomap_dio_rw+0x31/0x90 [ 1195.029672] ext4_file_write_iter+0xe0e/0x1530 [ 1195.030735] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1195.031766] ? kasan_save_stack+0x32/0x40 [ 1195.032702] ? kasan_save_stack+0x1b/0x40 [ 1195.033643] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1195.034792] ? iter_file_splice_write+0x165/0xc90 [ 1195.035879] ? direct_splice_actor+0x10f/0x170 [ 1195.036911] ? splice_direct_to_actor+0x387/0x980 [ 1195.038001] ? do_splice_direct+0x1c4/0x290 01:00:36 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xb, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1195.038969] ? do_sendfile+0x553/0x11e0 [ 1195.040088] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1195.041133] ? do_syscall_64+0x33/0x40 [ 1195.042019] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1195.043227] do_iter_readv_writev+0x476/0x750 [ 1195.044236] ? _cond_resched+0x10/0x30 [ 1195.045113] ? new_sync_write+0x660/0x660 [ 1195.046063] ? avc_policy_seqno+0x9/0x70 [ 1195.046976] ? selinux_file_permission+0x92/0x520 [ 1195.048070] ? security_file_permission+0xb1/0xe0 [ 1195.049168] do_iter_write+0x191/0x700 [ 1195.050059] ? trace_hardirqs_on+0x5b/0x180 [ 1195.051050] vfs_iter_write+0x70/0xa0 [ 1195.051911] iter_file_splice_write+0x726/0xc90 [ 1195.052974] ? generic_splice_sendpage+0x140/0x140 [ 1195.054109] ? security_file_permission+0xb1/0xe0 [ 1195.055199] ? generic_splice_sendpage+0x140/0x140 [ 1195.056308] direct_splice_actor+0x10f/0x170 [ 1195.057303] splice_direct_to_actor+0x387/0x980 [ 1195.058366] ? pipe_to_sendpage+0x380/0x380 [ 1195.059348] ? do_splice_to+0x160/0x160 [ 1195.060243] ? security_file_permission+0xb1/0xe0 [ 1195.061347] do_splice_direct+0x1c4/0x290 [ 1195.062294] ? splice_direct_to_actor+0x980/0x980 [ 1195.063380] ? avc_policy_seqno+0x9/0x70 [ 1195.064301] ? security_file_permission+0xb1/0xe0 [ 1195.065402] do_sendfile+0x553/0x11e0 [ 1195.066287] ? do_pwritev+0x270/0x270 [ 1195.067149] ? wait_for_completion_io+0x270/0x270 [ 1195.068238] ? rcu_read_lock_any_held+0x75/0xa0 [ 1195.069284] ? vfs_write+0x354/0xb10 [ 1195.070137] __x64_sys_sendfile64+0x1d1/0x210 [ 1195.071146] ? __ia32_sys_sendfile+0x220/0x220 [ 1195.072180] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1195.073361] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1195.074538] do_syscall_64+0x33/0x40 [ 1195.075385] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1195.076540] RIP: 0033:0x7fe85904db19 [ 1195.077381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1195.081523] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1195.083248] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1195.084855] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1195.086456] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1195.088042] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1195.089642] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 01:00:36 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 47) 01:00:37 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10018, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0x7, &(0x7f0000000100)={0x3f, 0x3, 0x4, 0x10001}, 0x10) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="28000000100001000000001c59994138a307ea0200000000", @ANYRES32, @ANYBLOB="0400001208001b"], 0x28}}, 0x0) ioctl$BTRFS_IOC_SEND(0xffffffffffffffff, 0x40489426, &(0x7f0000000440)={{}, 0x6, &(0x7f00000001c0)=[0x2, 0x0, 0x9, 0x9, 0x0, 0x3], 0x3, 0x0, [0x0, 0x3, 0x2, 0xfffffffffffffff9]}) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="28000000100001000000001c59994138a307ea0000000000", @ANYRES32, @ANYBLOB="0400001208001b"], 0x28}}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r2) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x200000c, 0x810, 0xffffffffffffffff, 0x8000000) r3 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd, 0x4, {}, 0x5, 0x3, 0x0, {0x0, r5, r3}}, 0x5) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000380)="9044b7a8f972fe6f12b2356a9ac82503071d763419f19709353c0237c21a85998b8c29e6db8367bbeff3b425cfbcae05d73f603f24760fa82dcb4acbd3a47fc3", 0x40}, {&(0x7f0000000180)='v', 0x1}], 0x2) connect$inet6(r4, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @private2, 0x3}, 0x1c) socket$nl_audit(0x10, 0x3, 0x9) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[], 0x28}}, 0x0) sendmsg$NL80211_CMD_RELOAD_REGDB(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r1, 0x1}, 0x14}}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r0) 01:00:37 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xf, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1195.224913] FAULT_INJECTION: forcing a failure. [ 1195.224913] name failslab, interval 1, probability 0, space 0, times 0 [ 1195.229040] CPU: 0 PID: 15031 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1195.230619] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1195.232489] Call Trace: [ 1195.233086] dump_stack+0x107/0x167 [ 1195.233918] should_fail.cold+0x5/0xa [ 1195.234777] ? create_object.isra.0+0x3a/0xa30 [ 1195.235800] should_failslab+0x5/0x20 [ 1195.236652] kmem_cache_alloc+0x5b/0x310 [ 1195.237570] create_object.isra.0+0x3a/0xa30 [ 1195.238561] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1195.239715] kmem_cache_alloc_trace+0x151/0x320 [ 1195.240761] io_uring_alloc_task_context+0x99/0x6a0 [ 1195.241885] ? io_import_iovec+0x1120/0x1120 [ 1195.242872] ? lock_downgrade+0x6d0/0x6d0 [ 1195.243799] ? do_raw_spin_lock+0x121/0x260 [ 1195.244762] ? rwlock_bug.part.0+0x90/0x90 [ 1195.245713] __io_uring_add_tctx_node+0x2c6/0x520 [ 1195.246814] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1195.247986] ? alloc_fd+0x2e7/0x670 [ 1195.248812] io_uring_setup+0x1fbb/0x2980 [ 1195.249752] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1195.250897] ? wait_for_completion_io+0x270/0x270 [ 1195.251999] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1195.253174] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1195.254341] do_syscall_64+0x33/0x40 [ 1195.255178] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1195.256323] RIP: 0033:0x7f707acaeb19 [ 1195.257157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1195.261295] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1195.263026] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1195.264638] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1195.266252] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1195.267859] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1195.269472] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:00:37 executing program 6: syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x0, 0x0, &(0x7f0000000600), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='nodots,rootcontext=u,mask=^MAY_READ,\x00']) [ 1195.373855] FAT-fs (loop6): Unrecognized mount option "mask=^MAY_READ" or missing value 01:00:37 executing program 7: r0 = fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x1, 0x0) wait4(r0, &(0x7f0000000080), 0x1, &(0x7f00000000c0)) [ 1195.413910] FAT-fs (loop6): Unrecognized mount option "mask=^MAY_READ" or missing value [ 1195.419110] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 01:00:37 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x10, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1195.523199] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 01:00:52 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:00:52 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="0300000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:00:52 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 48) 01:00:52 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x11, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:00:52 executing program 6: r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) pwrite64(r2, &(0x7f0000000300)="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", 0x185, 0x80000001) ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000001340)=ANY=[@ANYBLOB="0000000000000000ff0f0000000000000000000000000000020000000000000000009cb8146f000000000000000000000000000000000000160000000000000000000000000000000000000000000000000000000000fbff0000000000000000000000000000000000bafc420500"/133]) openat(r1, &(0x7f0000000000)='./file0\x00', 0x80, 0x1) 01:00:52 executing program 5: syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x0) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000500), 0x9}, 0x50008, 0x0, 0x81, 0x0, 0x0, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rename(&(0x7f0000000000)='mnt/encrypted_dir\x00', &(0x7f0000000080)='mnt/encrypted_dir\x00') 01:00:52 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 79) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:00:52 executing program 7: r0 = fork() wait4(r0, 0x0, 0x80000000, 0x0) r1 = getpgrp(0x0) waitid(0x2, r1, &(0x7f00000001c0), 0x8, 0x0) pidfd_open(r1, 0x0) ptrace$cont(0x7, r1, 0x1, 0x7) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000180)=0x0) getpriority(0x1, r2) waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) getdents64(0xffffffffffffffff, &(0x7f0000000080)=""/194, 0xc2) [ 1210.964148] FAULT_INJECTION: forcing a failure. [ 1210.964148] name failslab, interval 1, probability 0, space 0, times 0 [ 1210.966794] CPU: 0 PID: 15175 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1210.968285] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1210.970079] Call Trace: [ 1210.970654] dump_stack+0x107/0x167 [ 1210.971441] should_fail.cold+0x5/0xa [ 1210.972263] ? create_object.isra.0+0x3a/0xa30 [ 1210.973247] should_failslab+0x5/0x20 [ 1210.974077] kmem_cache_alloc+0x5b/0x310 [ 1210.974962] create_object.isra.0+0x3a/0xa30 [ 1210.975920] kmemleak_alloc_percpu+0xa0/0x100 [ 1210.976890] pcpu_alloc+0x4e2/0x1240 [ 1210.977708] __percpu_counter_init+0x10d/0x2d0 [ 1210.978704] io_uring_alloc_task_context+0xcc/0x6a0 [ 1210.979772] ? io_import_iovec+0x1120/0x1120 [ 1210.980714] ? lock_downgrade+0x6d0/0x6d0 [ 1210.981594] ? do_raw_spin_lock+0x121/0x260 [ 1210.982522] ? rwlock_bug.part.0+0x90/0x90 [ 1210.983426] __io_uring_add_tctx_node+0x2c6/0x520 [ 1210.984460] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1210.985578] ? alloc_fd+0x2e7/0x670 [ 1210.986371] io_uring_setup+0x1fbb/0x2980 [ 1210.987261] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1210.988334] ? wait_for_completion_io+0x270/0x270 [ 1210.989379] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1210.990514] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1210.991613] do_syscall_64+0x33/0x40 [ 1210.992407] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1210.993500] RIP: 0033:0x7f707acaeb19 [ 1210.994300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1210.998231] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1210.999851] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 01:00:52 executing program 6: ftruncate(0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x402}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x69) io_setup(0x3, &(0x7f0000000480)=0x0) r1 = inotify_init1(0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) inotify_add_watch(r1, &(0x7f0000000000)='./file0\x00', 0x43) dup3(r2, r1, 0x0) io_cancel(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x427, r1, &(0x7f0000000080), 0x0, 0x100000000}, &(0x7f0000000180)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r0, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000240)={'sit0\x00', 0x0, 0x2f, 0x2, 0x6a, 0x101, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}, @private2, 0x20, 0x0, 0x61, 0x6}}) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) sendmsg$nl_generic(r4, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x30000008}, 0xc, &(0x7f0000000200)={&(0x7f00000004c0)={0x118, 0x31, 0x1, 0x70bd2d, 0x25dfdbfb, {0x1a}, [@generic="94034672374c5a6e3ae07b169adf67fadd73cbdfb789cb1ebaedb3647389a066f69b782afa1aca0d824ed36b13de6aeeb00aa193bf5a0c7da060fbee3d0d68f0e73dec7cd2b3b3038e2702f2f225a53ea550414f8d061c360f7facc209de218277cb4b8efdf7dc9a8511ea465f5cca2a3670efb57b754848ee2cae0b40e6df5e0b535c0e281f46fff932ede8f7373d13bdcd4f20c724ac89438486ee5455bd819954ba4e844f03a38a16651e7c3b8525e89ecc8a987d631f1b6ac648ece35e6f9bf0d0371de4ce3069b7c89c082f7f3feda50c8728d68224", @nested={0x2c, 0x65, 0x0, 0x1, [@typed={0x14, 0x7e, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @typed={0x4, 0x4e}, @typed={0x8, 0x6d, 0x0, 0x0, @pid=0xffffffffffffffff}, @typed={0x8, 0xb, 0x0, 0x0, @uid=0xee00}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x40}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) [ 1211.001367] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1211.003192] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1211.005052] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1211.006918] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1211.019253] FAULT_INJECTION: forcing a failure. [ 1211.019253] name failslab, interval 1, probability 0, space 0, times 0 [ 1211.020806] CPU: 1 PID: 15181 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1211.021738] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1211.022864] Call Trace: [ 1211.023227] dump_stack+0x107/0x167 [ 1211.023720] should_fail.cold+0x5/0xa [ 1211.024245] ? mempool_alloc+0x148/0x360 [ 1211.024792] ? mempool_free_pages+0x20/0x20 [ 1211.025374] should_failslab+0x5/0x20 [ 1211.025889] kmem_cache_alloc+0x5b/0x310 [ 1211.026468] ? mempool_free_pages+0x20/0x20 [ 1211.027068] mempool_alloc+0x148/0x360 [ 1211.027617] ? mempool_resize+0x7d0/0x7d0 [ 1211.028192] ? lock_downgrade+0x6d0/0x6d0 [ 1211.028776] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1211.029458] bio_alloc_bioset+0x36e/0x600 [ 1211.030047] ? bvec_alloc+0x2f0/0x2f0 [ 1211.030573] ? iov_iter_npages+0x1fd/0xa70 [ 1211.031166] iomap_dio_bio_actor+0x518/0xef0 [ 1211.031790] iomap_dio_actor+0x36f/0x560 [ 1211.032353] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1211.032994] ? do_syscall_64+0x33/0x40 [ 1211.033532] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1211.034278] iomap_apply+0x289/0x810 [ 1211.034797] ? iomap_dio_rw+0x90/0x90 [ 1211.035324] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 1211.036124] ? mark_held_locks+0x9e/0xe0 [ 1211.036691] ? filemap_check_errors+0xa5/0x150 [ 1211.037340] __iomap_dio_rw+0x6cd/0x1110 [ 1211.037897] ? iomap_dio_rw+0x90/0x90 [ 1211.038444] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1211.039078] ? ext4_orphan_add+0x253/0x9e0 [ 1211.039689] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1211.040365] ? ext4_empty_dir+0xae0/0xae0 [ 1211.040954] ? jbd2__journal_start+0xf3/0x7e0 [ 1211.041575] iomap_dio_rw+0x31/0x90 [ 1211.042092] ext4_file_write_iter+0xe0e/0x1530 [ 1211.042729] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1211.043360] ? kasan_save_stack+0x32/0x40 [ 1211.043929] ? kasan_save_stack+0x1b/0x40 [ 1211.044496] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1211.045199] ? iter_file_splice_write+0x165/0xc90 [ 1211.045873] ? direct_splice_actor+0x10f/0x170 [ 1211.046509] ? splice_direct_to_actor+0x387/0x980 [ 1211.047178] ? do_splice_direct+0x1c4/0x290 [ 1211.047772] ? do_sendfile+0x553/0x11e0 [ 1211.048319] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1211.048956] ? do_syscall_64+0x33/0x40 [ 1211.049510] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1211.050271] do_iter_readv_writev+0x476/0x750 [ 1211.050902] ? _cond_resched+0x10/0x30 [ 1211.051438] ? new_sync_write+0x660/0x660 [ 1211.052006] ? avc_policy_seqno+0x9/0x70 [ 1211.052561] ? selinux_file_permission+0x92/0x520 [ 1211.053234] ? security_file_permission+0xb1/0xe0 [ 1211.053898] do_iter_write+0x191/0x700 [ 1211.054441] ? trace_hardirqs_on+0x5b/0x180 [ 1211.055037] vfs_iter_write+0x70/0xa0 [ 1211.055568] iter_file_splice_write+0x726/0xc90 [ 1211.056212] ? generic_splice_sendpage+0x140/0x140 [ 1211.056897] ? security_file_permission+0xb1/0xe0 [ 1211.057557] ? generic_splice_sendpage+0x140/0x140 [ 1211.058246] direct_splice_actor+0x10f/0x170 [ 1211.058848] splice_direct_to_actor+0x387/0x980 [ 1211.059489] ? pipe_to_sendpage+0x380/0x380 [ 1211.060091] ? do_splice_to+0x160/0x160 [ 1211.060636] ? security_file_permission+0xb1/0xe0 [ 1211.061300] do_splice_direct+0x1c4/0x290 [ 1211.061877] ? splice_direct_to_actor+0x980/0x980 [ 1211.062544] ? avc_policy_seqno+0x9/0x70 [ 1211.063103] ? security_file_permission+0xb1/0xe0 [ 1211.063769] do_sendfile+0x553/0x11e0 [ 1211.064300] ? do_pwritev+0x270/0x270 [ 1211.064844] ? wait_for_completion_io+0x270/0x270 [ 1211.065510] ? rcu_read_lock_any_held+0x75/0xa0 [ 1211.066152] ? vfs_write+0x354/0xb10 [ 1211.066667] __x64_sys_sendfile64+0x1d1/0x210 [ 1211.067278] ? __ia32_sys_sendfile+0x220/0x220 [ 1211.067915] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1211.068628] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1211.069347] do_syscall_64+0x33/0x40 [ 1211.069857] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1211.070562] RIP: 0033:0x7fe85904db19 [ 1211.071075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1211.073601] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1211.074646] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1211.075614] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1211.076581] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1211.077547] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1211.078523] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 01:00:52 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="0400000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:00:52 executing program 5: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) ioctl$SNAPSHOT_FREE(r1, 0x3305) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_DEFRAG_RANGE(r0, 0x40309410, &(0x7f0000000000)={0xffffffffffff7fff, 0xfff, 0x1, 0xffff, 0x0, [0xfffffff9, 0x9fd]}) 01:00:52 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xf0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:00:52 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 49) [ 1211.169942] FAULT_INJECTION: forcing a failure. [ 1211.169942] name failslab, interval 1, probability 0, space 0, times 0 [ 1211.171548] CPU: 1 PID: 15206 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1211.172464] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1211.173572] Call Trace: [ 1211.173924] dump_stack+0x107/0x167 [ 1211.174419] should_fail.cold+0x5/0xa [ 1211.174928] ? create_object.isra.0+0x3a/0xa30 [ 1211.175531] should_failslab+0x5/0x20 [ 1211.176035] kmem_cache_alloc+0x5b/0x310 [ 1211.176583] create_object.isra.0+0x3a/0xa30 [ 1211.177166] kmemleak_alloc_percpu+0xa0/0x100 [ 1211.177768] pcpu_alloc+0x4e2/0x1240 [ 1211.178281] __percpu_counter_init+0x10d/0x2d0 [ 1211.178890] io_uring_alloc_task_context+0xcc/0x6a0 [ 1211.179555] ? io_import_iovec+0x1120/0x1120 [ 1211.180147] ? lock_downgrade+0x6d0/0x6d0 [ 1211.180711] ? do_raw_spin_lock+0x121/0x260 [ 1211.181282] ? rwlock_bug.part.0+0x90/0x90 [ 1211.181835] __io_uring_add_tctx_node+0x2c6/0x520 [ 1211.182479] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1211.183168] ? alloc_fd+0x2e7/0x670 [ 1211.183645] io_uring_setup+0x1fbb/0x2980 [ 1211.184206] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1211.184885] ? wait_for_completion_io+0x270/0x270 [ 1211.185562] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1211.186277] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1211.186957] do_syscall_64+0x33/0x40 [ 1211.187444] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1211.188120] RIP: 0033:0x7f707acaeb19 [ 1211.188620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1211.191201] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1211.192202] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1211.193145] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1211.194089] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1211.195034] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1211.195974] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:00:53 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x112, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1211.218566] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1211.220655] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1211.222121] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1211.223515] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1211.225118] print_req_error: 4 callbacks suppressed [ 1211.225138] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1211.229268] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1211.230484] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1211.232649] buffer_io_error: 6 callbacks suppressed [ 1211.232661] Buffer I/O error on dev sr0, logical block 0, async page read [ 1211.236079] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1211.237431] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1211.239555] Buffer I/O error on dev sr0, logical block 1, async page read [ 1211.241417] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1211.242647] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1211.244797] Buffer I/O error on dev sr0, logical block 2, async page read [ 1211.246670] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1211.247881] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1211.250090] Buffer I/O error on dev sr0, logical block 3, async page read [ 1211.253078] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1211.254318] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1211.256467] Buffer I/O error on dev sr0, logical block 4, async page read [ 1211.258454] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1211.259890] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1211.262021] Buffer I/O error on dev sr0, logical block 5, async page read [ 1211.263555] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1211.264724] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 2 prio class 0 [ 1211.266856] Buffer I/O error on dev sr0, logical block 6, async page read [ 1211.268349] Buffer I/O error on dev sr0, logical block 7, async page read 01:00:53 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="0500000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:00:53 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x300, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:01:08 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:01:08 executing program 6: ioctl$sock_inet_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f0000000300)) pipe(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xbe}, 0x0, 0x0, 0x1002, 0x0, 0x7, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x0, @remote={0xac, 0x14, 0x15}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}}) ioctl$sock_SIOCSPGRP(0xffffffffffffffff, 0x8902, &(0x7f00000003c0)) ioctl$VFAT_IOCTL_READDIR_SHORT(0xffffffffffffffff, 0x82307202, 0x0) r1 = creat(&(0x7f0000000240)='./file0\x00', 0x49) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000140)={@in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x4f, 0x0, "3c1c2fd629c4af55a8680f7a892e0865c7fbba0cdfa184016bc00618cdb5732d900802764f98b1af0cd43f34e89ab87a13a460acbb4433cb8a7aaa5797c2f5b5cc15058fbbef4c13daa3094bf3e22ec6"}, 0xd8) syz_io_uring_setup(0x3e01, &(0x7f0000000400)={0x0, 0x100018d7, 0x10, 0x1, 0x376, 0x0, r1}, &(0x7f0000fec000/0x14000)=nil, &(0x7f0000fed000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000340)) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040), 0x4) r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) fstatfs(0xffffffffffffffff, &(0x7f0000002e00)=""/4102) sendmsg$IPVS_CMD_GET_DAEMON(r2, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x5100002}, 0xc, &(0x7f00000002c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="0eab52c2", @ANYRES16=0x0, @ANYBLOB="10002bbd7000fcdbdf250b0000000800050004000000080004000200000024000280080004000900000006000e004e210000080007000000000008000500620800000800040001010000"], 0x50}, 0x1, 0x0, 0x0, 0x804}, 0x20000000) io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f0000000380), 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = creat(&(0x7f0000000080)='./file0\x00', 0x18) ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000000c0)={0x0, 0xfffefffffffffffd}) 01:01:08 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x500, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:01:08 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 50) 01:01:08 executing program 7: r0 = fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) r1 = clone3(&(0x7f00000002c0)={0x108000, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100), {0x16}, &(0x7f0000000140)=""/164, 0xa4, &(0x7f0000000200)=""/127, &(0x7f0000000280)=[r0], 0x1}, 0x58) ptrace(0x4208, r1) 01:01:08 executing program 5: msgctl$IPC_STAT(0x0, 0x2, 0x0) msgctl$IPC_INFO(0x0, 0x3, 0x0) msgctl$IPC_RMID(0x0, 0x0) r0 = getpgrp(0x0) msgctl$IPC_SET(0x0, 0x1, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x18}, 0x0, 0x0, 0x1002, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000000000004000000000002000020000020000000def4655fdef4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000e58ca12e13a240e2b1a22f8d07e8e55f010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="030000000400000005", 0x9, 0x800}, {0x0, 0x0, 0x1000000000c00}, {&(0x7f0000010d00)="ed41000000040000ddf4655fdef4655fdef4655f000000000000040020", 0x1d, 0x1480}, {&(0x7f0000012000)="504d4d00504d4dff", 0x8, 0x10000}], 0x0, &(0x7f0000012b00)=ANY=[]) msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000740)={{0x3, 0x0, 0xee01, 0x0, 0xffffffffffffffff, 0x80, 0x5}, 0x0, 0x0, 0x5, 0x9, 0x58, 0x0, 0x20, 0x0, 0x9, 0x3, r0, r0}) msgctl$IPC_INFO(0xffffffffffffffff, 0x3, &(0x7f00000002c0)=""/151) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000600)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=0xffffffffffffffff, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="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"]) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x800061, &(0x7f0000000540)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@cache_none}, {@afid={'afid', 0x3d, 0x7}}, {@version_u}, {@version_L}, {@noextend}, {@posixacl}], [{@fowner_eq}, {@dont_appraise}]}}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0, 0x0}, &(0x7f0000000140)=0xc) getgroups(0x8, &(0x7f0000000380)=[0x0, 0x0, r7, r4, r7, r4, r7, r7]) r11 = msgget$private(0x0, 0x589) msgctl$IPC_INFO(r11, 0x3, &(0x7f0000001540)=""/214) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r1, {r3, r10}}, './file1\x00'}) r13 = getpid() msgctl$IPC_SET(r11, 0x1, &(0x7f0000000480)={{0x1, r6, r8, r12, r7, 0x52, 0x6}, 0x0, 0x0, 0x3, 0x8, 0x5, 0x0, 0x80000000, 0x2, 0x1, 0x4, r5, r13}) msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000080)={{0x1, 0xee01, r9, 0x0, 0x0, 0x0, 0x1000}, 0x0, 0x0, 0x1ff, 0x6, 0x3, 0x4, 0x1ff, 0x5, 0x5f, 0x1, 0x0, r5}) msgctl$IPC_RMID(0xffffffffffffffff, 0x0) 01:01:08 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="3000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:01:08 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 80) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) [ 1226.756060] FAULT_INJECTION: forcing a failure. [ 1226.756060] name failslab, interval 1, probability 0, space 0, times 0 [ 1226.758870] CPU: 1 PID: 15327 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1226.760429] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1226.762402] Call Trace: [ 1226.763069] dump_stack+0x107/0x167 [ 1226.764056] should_fail.cold+0x5/0xa [ 1226.764895] ? io_wq_create+0xeb/0xc00 [ 1226.765835] should_failslab+0x5/0x20 [ 1226.766764] __kmalloc+0x72/0x390 [ 1226.767651] io_wq_create+0xeb/0xc00 [ 1226.768531] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1226.769730] ? io_import_iovec+0x1120/0x1120 [ 1226.770790] ? io_apoll_task_func+0x2d0/0x2d0 [ 1226.771860] ? __io_req_find_next+0x300/0x300 [ 1226.772947] ? do_raw_spin_lock+0x121/0x260 [ 1226.773955] ? rwlock_bug.part.0+0x90/0x90 [ 1226.774917] __io_uring_add_tctx_node+0x2c6/0x520 01:01:08 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x600, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1226.776008] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1226.777342] ? alloc_fd+0x2e7/0x670 [ 1226.778255] io_uring_setup+0x1fbb/0x2980 [ 1226.779248] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1226.780424] ? wait_for_completion_io+0x270/0x270 [ 1226.781643] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1226.782954] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1226.784222] do_syscall_64+0x33/0x40 [ 1226.785165] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1226.786439] RIP: 0033:0x7f707acaeb19 [ 1226.787240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1226.791301] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1226.792937] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1226.794498] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1226.796029] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1226.797585] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1226.799143] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:01:08 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="200000007f000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:01:08 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x700, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1226.822441] loop5: detected capacity change from 0 to 2103296 [ 1226.837330] FAULT_INJECTION: forcing a failure. [ 1226.837330] name failslab, interval 1, probability 0, space 0, times 0 [ 1226.838790] CPU: 0 PID: 15337 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1226.839595] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1226.840564] Call Trace: [ 1226.840876] dump_stack+0x107/0x167 [ 1226.841300] should_fail.cold+0x5/0xa [ 1226.841744] ? bvec_alloc+0x148/0x2f0 [ 1226.842196] should_failslab+0x5/0x20 [ 1226.842640] kmem_cache_alloc+0x5b/0x310 [ 1226.843113] bvec_alloc+0x148/0x2f0 [ 1226.843535] bio_alloc_bioset+0x40a/0x600 [ 1226.844036] ? bvec_alloc+0x2f0/0x2f0 [ 1226.844482] ? iov_iter_npages+0x1fd/0xa70 [ 1226.844975] iomap_dio_bio_actor+0x518/0xef0 [ 1226.845489] iomap_dio_actor+0x36f/0x560 [ 1226.845957] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1226.846505] ? do_syscall_64+0x33/0x40 [ 1226.846959] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1226.847577] iomap_apply+0x289/0x810 [ 1226.848003] ? iomap_dio_rw+0x90/0x90 [ 1226.848444] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 1226.849117] ? mark_held_locks+0x9e/0xe0 [ 1226.849597] ? filemap_check_errors+0xa5/0x150 [ 1226.850127] __iomap_dio_rw+0x6cd/0x1110 [ 1226.850610] ? iomap_dio_rw+0x90/0x90 [ 1226.851056] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1226.851594] ? ext4_orphan_add+0x253/0x9e0 [ 1226.852085] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1226.852649] ? ext4_empty_dir+0xae0/0xae0 [ 1226.853127] ? jbd2__journal_start+0xf3/0x7e0 [ 1226.853649] iomap_dio_rw+0x31/0x90 [ 1226.854074] ext4_file_write_iter+0xe0e/0x1530 [ 1226.854617] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1226.855138] ? kasan_save_stack+0x32/0x40 [ 1226.855614] ? kasan_save_stack+0x1b/0x40 [ 1226.856091] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1226.856682] ? iter_file_splice_write+0x165/0xc90 [ 1226.857236] ? direct_splice_actor+0x10f/0x170 [ 1226.857762] ? splice_direct_to_actor+0x387/0x980 [ 1226.858322] ? do_splice_direct+0x1c4/0x290 [ 1226.858819] ? do_sendfile+0x553/0x11e0 [ 1226.859282] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1226.859812] ? do_syscall_64+0x33/0x40 [ 1226.860257] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1226.860875] do_iter_readv_writev+0x476/0x750 [ 1226.861387] ? _cond_resched+0x10/0x30 [ 1226.861836] ? new_sync_write+0x660/0x660 [ 1226.862319] ? avc_policy_seqno+0x9/0x70 [ 1226.862784] ? selinux_file_permission+0x92/0x520 [ 1226.863339] ? security_file_permission+0xb1/0xe0 [ 1226.863898] do_iter_write+0x191/0x700 [ 1226.864347] ? trace_hardirqs_on+0x5b/0x180 [ 1226.864845] vfs_iter_write+0x70/0xa0 [ 1226.865284] iter_file_splice_write+0x726/0xc90 [ 1226.865831] ? generic_splice_sendpage+0x140/0x140 [ 1226.866408] ? security_file_permission+0xb1/0xe0 [ 1226.866964] ? generic_splice_sendpage+0x140/0x140 [ 1226.867525] direct_splice_actor+0x10f/0x170 [ 1226.868030] splice_direct_to_actor+0x387/0x980 [ 1226.868561] ? pipe_to_sendpage+0x380/0x380 [ 1226.869058] ? do_splice_to+0x160/0x160 [ 1226.869509] ? security_file_permission+0xb1/0xe0 [ 1226.870063] do_splice_direct+0x1c4/0x290 [ 1226.870558] ? splice_direct_to_actor+0x980/0x980 [ 1226.871109] ? avc_policy_seqno+0x9/0x70 [ 1226.871576] ? security_file_permission+0xb1/0xe0 [ 1226.872131] do_sendfile+0x553/0x11e0 [ 1226.872576] ? do_pwritev+0x270/0x270 [ 1226.873011] ? wait_for_completion_io+0x270/0x270 [ 1226.873567] ? rcu_read_lock_any_held+0x75/0xa0 [ 1226.874097] ? vfs_write+0x354/0xb10 [ 1226.874546] __x64_sys_sendfile64+0x1d1/0x210 [ 1226.875060] ? __ia32_sys_sendfile+0x220/0x220 [ 1226.875583] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1226.876183] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1226.876770] do_syscall_64+0x33/0x40 [ 1226.877195] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1226.877787] RIP: 0033:0x7fe85904db19 [ 1226.878230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1226.880342] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1226.881219] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1226.882041] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1226.882866] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1226.883682] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1226.884507] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 01:01:08 executing program 6: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000007c0)) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write(0xffffffffffffffff, &(0x7f0000000200)="6c917d5068143eb537", 0x9) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r1, 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x2) r3 = inotify_init1(0x0) socket$inet6_udplite(0xa, 0x2, 0x88) socket$netlink(0x10, 0x3, 0x0) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000180), 0x6d00) openat$bsg(0xffffffffffffff9c, &(0x7f0000000b80), 0x10000, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f00000000c0)=ANY=[@ANYRESOCT]) inotify_add_watch(r3, &(0x7f0000000040)='.\x00', 0x2000003) sendfile(r1, r2, 0x0, 0x100000001) r4 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x9, 0x0, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x40000, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = timerfd_create(0x8, 0x0) dup2(r4, r5) 01:01:08 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 51) 01:01:08 executing program 7: r0 = fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) getpriority(0x0, r0) [ 1226.945634] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue [ 1226.947025] ext4 filesystem being mounted at /syzkaller-testdir552384855/syzkaller.X5Du5W/130/file0 supports timestamps until 2038-01-19 (0x7fffffff) 01:01:08 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2002000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:01:08 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x900, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1226.985836] EXT4-fs (loop5): Unrecognized mount option "trans=fd" or missing value [ 1226.997225] FAULT_INJECTION: forcing a failure. [ 1226.997225] name failslab, interval 1, probability 0, space 0, times 0 [ 1226.998565] CPU: 0 PID: 15458 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1226.999365] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1227.000318] Call Trace: [ 1227.000631] dump_stack+0x107/0x167 [ 1227.001054] should_fail.cold+0x5/0xa [ 1227.001494] ? create_object.isra.0+0x3a/0xa30 [ 1227.002023] should_failslab+0x5/0x20 [ 1227.002474] kmem_cache_alloc+0x5b/0x310 [ 1227.002945] create_object.isra.0+0x3a/0xa30 [ 1227.003457] kmemleak_alloc_percpu+0xa0/0x100 [ 1227.003979] pcpu_alloc+0x4e2/0x1240 [ 1227.004420] __percpu_counter_init+0x10d/0x2d0 [ 1227.004973] io_uring_alloc_task_context+0xcc/0x6a0 [ 1227.005560] ? io_import_iovec+0x1120/0x1120 [ 1227.006084] ? lock_downgrade+0x6d0/0x6d0 [ 1227.006577] ? do_raw_spin_lock+0x121/0x260 [ 1227.007094] ? rwlock_bug.part.0+0x90/0x90 [ 1227.007597] __io_uring_add_tctx_node+0x2c6/0x520 [ 1227.008171] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1227.008800] ? alloc_fd+0x2e7/0x670 [ 1227.009233] io_uring_setup+0x1fbb/0x2980 [ 1227.009727] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1227.010340] ? wait_for_completion_io+0x270/0x270 [ 1227.010910] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1227.011532] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1227.012136] do_syscall_64+0x33/0x40 [ 1227.012565] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1227.013157] RIP: 0033:0x7f707acaeb19 [ 1227.013592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1227.015719] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1227.016598] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1227.017422] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1227.018251] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1227.019105] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1227.019955] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:01:23 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:01:23 executing program 7: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x10000, 0x0) write$binfmt_elf64(r0, &(0x7f00000000c0)={{0x7f, 0x45, 0x4c, 0x46, 0x2, 0x9, 0x4, 0xad, 0x8, 0x2, 0x3e, 0x7fff, 0xfd, 0x40, 0x335, 0x6, 0x258, 0x38, 0x2, 0xdf8, 0xcc, 0x81}, [{0x3, 0x4, 0x1, 0x1b, 0x5, 0xc0, 0x92e, 0x8}, {0x1, 0xe, 0xf1f, 0x8, 0x81, 0x7a, 0x9, 0xc2c}], "f6f406e8f87248e0c34a7bdd3fc09a6f0deb82789e161f3eb982f5704f1cd5f36ab4fe45023e3d87546ad07a93a74ea7ea7f7acc6f45fb9af70cfe3f3bb8c0c7e378076a005e264e0e16463292028fb2ec661502637110ee648c5e9ce76d6495d6ff1262c736a600c2c278d036f14ca38ae5d77d027ee481e3c9155af172ef0b1bdda06fc5d077bfc7135fb715e4c48f47651e4a0cedd2f14fa2140020c845814790937ef61f2069c5b73e1ce09413", ['\x00', '\x00', '\x00', '\x00']}, 0x55f) fork() waitid(0x2, 0x0, &(0x7f0000000000), 0x8, 0x0) 01:01:23 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 52) 01:01:23 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 81) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) [ 1242.056426] FAULT_INJECTION: forcing a failure. [ 1242.056426] name failslab, interval 1, probability 0, space 0, times 0 [ 1242.058780] CPU: 0 PID: 15570 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1242.060193] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1242.061860] Call Trace: [ 1242.062405] dump_stack+0x107/0x167 [ 1242.063151] should_fail.cold+0x5/0xa [ 1242.063915] ? io_wq_create+0x6ef/0xc00 [ 1242.064715] should_failslab+0x5/0x20 [ 1242.065483] kmem_cache_alloc_node_trace+0x59/0x340 [ 1242.066496] io_wq_create+0x6ef/0xc00 [ 1242.067275] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1242.068297] ? io_import_iovec+0x1120/0x1120 [ 1242.069169] ? io_apoll_task_func+0x2d0/0x2d0 [ 1242.070058] ? __io_req_find_next+0x300/0x300 [ 1242.070957] ? do_raw_spin_lock+0x121/0x260 [ 1242.071809] ? rwlock_bug.part.0+0x90/0x90 [ 1242.072649] __io_uring_add_tctx_node+0x2c6/0x520 [ 1242.073597] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1242.074666] ? alloc_fd+0x2e7/0x670 [ 1242.075399] io_uring_setup+0x1fbb/0x2980 [ 1242.076246] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1242.077271] ? wait_for_completion_io+0x270/0x270 [ 1242.078246] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1242.079313] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1242.080333] do_syscall_64+0x33/0x40 [ 1242.081092] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1242.082101] RIP: 0033:0x7f707acaeb19 [ 1242.082866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1242.086582] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1242.088109] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1242.089642] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1242.091092] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1242.092518] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1242.093947] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:01:23 executing program 6: pread64(0xffffffffffffffff, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000000)=@ocfs2_parent={0x18, 0x2, {{0x2a1f}}}, 0x0) sendto$inet6(r0, &(0x7f00000020c0)="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", 0x1000, 0x1, &(0x7f0000000300)={0xa, 0x6, 0xffffffff, @mcast1}, 0x1c) syz_open_pts(0xffffffffffffffff, 0x200) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_SHOW_STATS(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r2, 0x2, 0x70bd2d, 0x25dfdbfe, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000800}, 0x24040054) sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x28, r2, 0x0, 0x70bd28, 0x25dfdbfd, {{}, {}, {0xc, 0x14, 'syz0\x00'}}, ["", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x4) r3 = shmget$private(0x0, 0x5000, 0x0, &(0x7f0000ffb000/0x5000)=nil) shmctl$SHM_LOCK(r3, 0xb) r4 = shmget$private(0x0, 0x3000, 0x78000000, &(0x7f0000ffd000/0x3000)=nil) shmctl$SHM_LOCK(r4, 0xb) fcntl$getflags(0xffffffffffffffff, 0xb) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x150}, 0x1, 0x0, 0x0, 0x20000840}, 0x0) 01:01:23 executing program 5: mknod$loop(&(0x7f0000000400)='./file0\x00', 0x6000, 0x0) truncate(0x0, 0x1) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000080)=ANY=[@ANYBLOB="0100049cafad760f177d8c7e774ab8bb9ead0801daa8", @ANYRES32=r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x3, 0x0, 0x8000) ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000000280)={{0x1, 0x1, 0x18, r0, {0x4, 0x101}}, './file0\x00'}) fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000440)='/proc/sys/net/ipv4/tcp_congestion_control\x00', 0x0, r0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x3, 0x0, 0x8000) r4 = fork() fcntl$setown(r0, 0x8, r4) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x18, r3, @in_args={0x1}}, './file0\x00'}) r6 = fcntl$dupfd(r3, 0x406, r5) epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r1, &(0x7f0000000240)={0x1}) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0x9, 0x1000000000004, 0x1}) pread64(r0, &(0x7f0000000100)=""/160, 0xa0, 0xfffffffffffffff9) 01:01:23 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xa00, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:01:23 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2003000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1242.124511] FAULT_INJECTION: forcing a failure. [ 1242.124511] name failslab, interval 1, probability 0, space 0, times 0 [ 1242.128245] CPU: 0 PID: 15572 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1242.129622] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1242.131299] Call Trace: [ 1242.131840] dump_stack+0x107/0x167 [ 1242.132570] should_fail.cold+0x5/0xa [ 1242.133340] ? mempool_alloc+0x148/0x360 [ 1242.134133] ? mempool_free_pages+0x20/0x20 [ 1242.135010] should_failslab+0x5/0x20 [ 1242.135776] kmem_cache_alloc+0x5b/0x310 [ 1242.136588] ? mempool_free_pages+0x20/0x20 [ 1242.137450] mempool_alloc+0x148/0x360 [ 1242.138232] ? mempool_resize+0x7d0/0x7d0 [ 1242.139076] ? lock_downgrade+0x6d0/0x6d0 [ 1242.139923] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1242.140928] bio_alloc_bioset+0x36e/0x600 [ 1242.141761] ? bvec_alloc+0x2f0/0x2f0 [ 1242.142542] ? iov_iter_npages+0x1fd/0xa70 [ 1242.143408] iomap_dio_bio_actor+0x518/0xef0 [ 1242.144316] iomap_dio_actor+0x36f/0x560 [ 1242.145126] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1242.146053] ? do_syscall_64+0x33/0x40 [ 1242.146844] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1242.147924] iomap_apply+0x289/0x810 [ 1242.148683] ? iomap_dio_rw+0x90/0x90 [ 1242.149453] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 1242.150620] ? mark_held_locks+0x9e/0xe0 [ 1242.151455] ? filemap_check_errors+0xa5/0x150 [ 1242.152392] __iomap_dio_rw+0x6cd/0x1110 [ 1242.153212] ? iomap_dio_rw+0x90/0x90 [ 1242.153994] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1242.154925] ? ext4_orphan_add+0x253/0x9e0 [ 1242.155787] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1242.156776] ? ext4_empty_dir+0xae0/0xae0 [ 1242.157608] ? jbd2__journal_start+0xf3/0x7e0 [ 1242.158521] iomap_dio_rw+0x31/0x90 [ 1242.159253] ext4_file_write_iter+0xe0e/0x1530 [ 1242.160191] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1242.161095] ? kasan_save_stack+0x32/0x40 [ 1242.161921] ? kasan_save_stack+0x1b/0x40 [ 1242.162795] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1242.163803] ? iter_file_splice_write+0x165/0xc90 [ 1242.164770] ? direct_splice_actor+0x10f/0x170 [ 1242.165685] ? splice_direct_to_actor+0x387/0x980 [ 1242.166656] ? do_splice_direct+0x1c4/0x290 [ 1242.167536] ? do_sendfile+0x553/0x11e0 [ 1242.168331] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1242.169265] ? do_syscall_64+0x33/0x40 [ 1242.170040] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1242.171112] do_iter_readv_writev+0x476/0x750 [ 1242.172024] ? _cond_resched+0x10/0x30 [ 1242.172819] ? new_sync_write+0x660/0x660 [ 1242.173659] ? avc_policy_seqno+0x9/0x70 [ 1242.174476] ? selinux_file_permission+0x92/0x520 [ 1242.175447] ? security_file_permission+0xb1/0xe0 [ 1242.176426] do_iter_write+0x191/0x700 [ 1242.177209] ? trace_hardirqs_on+0x5b/0x180 [ 1242.178083] vfs_iter_write+0x70/0xa0 [ 1242.178863] iter_file_splice_write+0x726/0xc90 [ 1242.179811] ? generic_splice_sendpage+0x140/0x140 [ 1242.180805] ? security_file_permission+0xb1/0xe0 [ 1242.181769] ? generic_splice_sendpage+0x140/0x140 [ 1242.182762] direct_splice_actor+0x10f/0x170 [ 1242.183648] splice_direct_to_actor+0x387/0x980 [ 1242.184601] ? pipe_to_sendpage+0x380/0x380 [ 1242.185465] ? do_splice_to+0x160/0x160 [ 1242.186271] ? security_file_permission+0xb1/0xe0 [ 1242.187248] do_splice_direct+0x1c4/0x290 [ 1242.188080] ? splice_direct_to_actor+0x980/0x980 [ 1242.189039] ? avc_policy_seqno+0x9/0x70 [ 1242.189851] ? security_file_permission+0xb1/0xe0 [ 1242.190835] do_sendfile+0x553/0x11e0 [ 1242.191614] ? do_pwritev+0x270/0x270 [ 1242.192379] ? wait_for_completion_io+0x270/0x270 [ 1242.193347] ? rcu_read_lock_any_held+0x75/0xa0 [ 1242.194271] ? vfs_write+0x354/0xb10 [ 1242.195029] __x64_sys_sendfile64+0x1d1/0x210 [ 1242.195933] ? __ia32_sys_sendfile+0x220/0x220 [ 1242.196856] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1242.197893] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1242.198937] do_syscall_64+0x33/0x40 [ 1242.199681] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1242.200709] RIP: 0033:0x7fe85904db19 [ 1242.201449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1242.205106] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1242.206644] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1242.208093] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1242.209535] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1242.210981] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1242.212410] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 01:01:23 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2004000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:01:23 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xb00, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:01:24 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 53) [ 1242.258130] netlink: 244 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1242.293971] FAULT_INJECTION: forcing a failure. [ 1242.293971] name failslab, interval 1, probability 0, space 0, times 0 [ 1242.296446] CPU: 1 PID: 15694 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1242.297853] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1242.299777] Call Trace: [ 1242.300325] dump_stack+0x107/0x167 [ 1242.301192] should_fail.cold+0x5/0xa [ 1242.301968] ? create_object.isra.0+0x3a/0xa30 [ 1242.302891] should_failslab+0x5/0x20 [ 1242.303763] kmem_cache_alloc+0x5b/0x310 [ 1242.304723] ? io_wq_create+0x114/0xc00 [ 1242.305627] create_object.isra.0+0x3a/0xa30 [ 1242.306571] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1242.307697] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1242.308848] io_wq_create+0x6ef/0xc00 [ 1242.309732] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1242.310799] ? io_import_iovec+0x1120/0x1120 [ 1242.311696] ? io_apoll_task_func+0x2d0/0x2d0 [ 1242.312606] ? __io_req_find_next+0x300/0x300 [ 1242.313647] ? do_raw_spin_lock+0x121/0x260 [ 1242.314708] ? rwlock_bug.part.0+0x90/0x90 [ 1242.315580] __io_uring_add_tctx_node+0x2c6/0x520 [ 1242.316640] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1242.317864] ? alloc_fd+0x2e7/0x670 [ 1242.318757] io_uring_setup+0x1fbb/0x2980 [ 1242.319593] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1242.320796] ? wait_for_completion_io+0x270/0x270 [ 1242.322032] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1242.323522] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1242.324833] do_syscall_64+0x33/0x40 [ 1242.325806] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1242.327159] RIP: 0033:0x7f707acaeb19 [ 1242.328269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1242.332940] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1242.334940] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1242.336824] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1242.338748] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1242.340552] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1242.342483] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:01:24 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2005000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:01:24 executing program 7: r0 = fork() tkill(r0, 0x2c) r1 = getpgrp(0x0) pidfd_open(r1, 0x0) r2 = getpgrp(r1) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x200, 0x0) perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x9, 0x7f, 0x2, 0xd1, 0x0, 0x1f, 0x10, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x9, 0x3, @perf_config_ext={0x9, 0x9}, 0x274, 0x0, 0x8, 0x8, 0x7fffffff, 0x4, 0x8000, 0x0, 0x3a, 0x0, 0x20}, 0xffffffffffffffff, 0x3, r3, 0xa) pidfd_open(r2, 0x0) waitid(0x2, r2, &(0x7f0000000000), 0xc1042a8df669c7a8, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0) 01:01:24 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xf00, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:01:24 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 54) 01:01:24 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 82) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) [ 1242.511916] FAULT_INJECTION: forcing a failure. [ 1242.511916] name failslab, interval 1, probability 0, space 0, times 0 [ 1242.514175] CPU: 0 PID: 15703 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1242.515556] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1242.517182] Call Trace: [ 1242.517705] dump_stack+0x107/0x167 [ 1242.518444] should_fail.cold+0x5/0xa [ 1242.519190] ? create_object.isra.0+0x3a/0xa30 [ 1242.520078] should_failslab+0x5/0x20 [ 1242.520824] kmem_cache_alloc+0x5b/0x310 [ 1242.521615] ? io_uring_alloc_task_context+0xf5/0x6a0 [ 1242.522664] create_object.isra.0+0x3a/0xa30 [ 1242.523520] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1242.524515] __kmalloc+0x16e/0x390 [ 1242.525212] io_wq_create+0xeb/0xc00 [ 1242.525940] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1242.526947] ? io_import_iovec+0x1120/0x1120 [ 1242.527794] ? io_apoll_task_func+0x2d0/0x2d0 [ 1242.528653] ? __io_req_find_next+0x300/0x300 [ 1242.529514] ? do_raw_spin_lock+0x121/0x260 [ 1242.530370] ? rwlock_bug.part.0+0x90/0x90 [ 1242.531197] __io_uring_add_tctx_node+0x2c6/0x520 [ 1242.532124] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1242.533125] ? alloc_fd+0x2e7/0x670 [ 1242.533841] io_uring_setup+0x1fbb/0x2980 [ 1242.534680] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1242.535657] ? wait_for_completion_io+0x270/0x270 [ 1242.536606] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1242.537619] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1242.538636] do_syscall_64+0x33/0x40 [ 1242.539367] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1242.540359] RIP: 0033:0x7f707acaeb19 [ 1242.541077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1242.544660] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1242.546129] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1242.547511] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1242.548864] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1242.550223] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1242.551599] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1242.565084] blktrace: Concurrent blktraces are not allowed on loop10 [ 1242.580946] netlink: 244 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1242.605018] FAULT_INJECTION: forcing a failure. [ 1242.605018] name failslab, interval 1, probability 0, space 0, times 0 [ 1242.607159] CPU: 0 PID: 15716 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1242.608453] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1242.609994] Call Trace: [ 1242.610516] dump_stack+0x107/0x167 [ 1242.611190] should_fail.cold+0x5/0xa [ 1242.611894] ? bvec_alloc+0x148/0x2f0 [ 1242.612597] should_failslab+0x5/0x20 [ 1242.613297] kmem_cache_alloc+0x5b/0x310 [ 1242.614047] bvec_alloc+0x148/0x2f0 [ 1242.614744] bio_alloc_bioset+0x40a/0x600 [ 1242.615519] ? bvec_alloc+0x2f0/0x2f0 [ 1242.616224] ? iov_iter_npages+0x1fd/0xa70 [ 1242.617018] iomap_dio_bio_actor+0x518/0xef0 [ 1242.617844] iomap_dio_actor+0x36f/0x560 [ 1242.618620] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1242.619479] ? do_syscall_64+0x33/0x40 [ 1242.620196] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1242.621191] iomap_apply+0x289/0x810 [ 1242.621877] ? iomap_dio_rw+0x90/0x90 [ 1242.622601] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 1242.623671] ? mark_held_locks+0x9e/0xe0 [ 1242.624436] ? filemap_check_errors+0xa5/0x150 [ 1242.625290] __iomap_dio_rw+0x6cd/0x1110 [ 1242.626037] ? iomap_dio_rw+0x90/0x90 [ 1242.626778] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1242.627629] ? ext4_orphan_add+0x253/0x9e0 [ 1242.628418] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1242.629318] ? ext4_empty_dir+0xae0/0xae0 [ 1242.630071] ? jbd2__journal_start+0xf3/0x7e0 [ 1242.630919] iomap_dio_rw+0x31/0x90 [ 1242.631584] ext4_file_write_iter+0xe0e/0x1530 [ 1242.632430] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1242.633258] ? kasan_save_stack+0x32/0x40 [ 1242.634007] ? kasan_save_stack+0x1b/0x40 [ 1242.634785] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1242.635705] ? iter_file_splice_write+0x165/0xc90 [ 1242.636580] ? direct_splice_actor+0x10f/0x170 [ 1242.637418] ? splice_direct_to_actor+0x387/0x980 [ 1242.638290] ? do_splice_direct+0x1c4/0x290 [ 1242.639091] ? do_sendfile+0x553/0x11e0 [ 1242.639809] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1242.640655] ? do_syscall_64+0x33/0x40 [ 1242.641362] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1242.642346] do_iter_readv_writev+0x476/0x750 [ 1242.643182] ? _cond_resched+0x10/0x30 [ 1242.643895] ? new_sync_write+0x660/0x660 [ 1242.644651] ? avc_policy_seqno+0x9/0x70 [ 1242.645390] ? selinux_file_permission+0x92/0x520 [ 1242.646272] ? security_file_permission+0xb1/0xe0 [ 1242.647179] do_iter_write+0x191/0x700 [ 1242.647895] ? trace_hardirqs_on+0x5b/0x180 [ 1242.648678] vfs_iter_write+0x70/0xa0 [ 1242.649369] iter_file_splice_write+0x726/0xc90 [ 1242.650216] ? generic_splice_sendpage+0x140/0x140 [ 1242.651136] ? security_file_permission+0xb1/0xe0 [ 1242.652003] ? generic_splice_sendpage+0x140/0x140 [ 1242.652890] direct_splice_actor+0x10f/0x170 [ 1242.653682] splice_direct_to_actor+0x387/0x980 [ 1242.654546] ? pipe_to_sendpage+0x380/0x380 [ 1242.655328] ? do_splice_to+0x160/0x160 [ 1242.656045] ? security_file_permission+0xb1/0xe0 [ 1242.656918] do_splice_direct+0x1c4/0x290 [ 1242.657674] ? splice_direct_to_actor+0x980/0x980 [ 1242.658563] ? avc_policy_seqno+0x9/0x70 [ 1242.659305] ? security_file_permission+0xb1/0xe0 [ 1242.660196] do_sendfile+0x553/0x11e0 [ 1242.660893] ? do_pwritev+0x270/0x270 [ 1242.661575] ? wait_for_completion_io+0x270/0x270 [ 1242.662466] ? rcu_read_lock_any_held+0x75/0xa0 [ 1242.663303] ? vfs_write+0x354/0xb10 [ 1242.663983] __x64_sys_sendfile64+0x1d1/0x210 [ 1242.664787] ? __ia32_sys_sendfile+0x220/0x220 [ 1242.665617] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1242.666590] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1242.667518] do_syscall_64+0x33/0x40 [ 1242.668189] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1242.669107] RIP: 0033:0x7fe85904db19 [ 1242.669768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1242.673063] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1242.674437] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1242.675700] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1242.676965] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1242.678237] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1242.679543] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 01:01:41 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 83) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:01:41 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:01:41 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0xa812c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x7, 0x6, 0x5, 0x4, 0x0, 0x4, 0x20000, 0x5, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0xa741, 0x9}, 0x43b4e, 0x90, 0x2, 0x8, 0x10000, 0x5e1d, 0x1111, 0x0, 0x180, 0x0, 0x7fff}, 0x0, 0x9, r0, 0xa) r1 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = dup(r2) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000200)={@loopback, 0x7b, r5}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8916, &(0x7f0000000100)={@private1}) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x4a, 0x3, 0x1, 0xd, 0x6, 0x7}, 0x20) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001440)=[{{0x0, 0x0, 0x0}, 0xe00}, {{&(0x7f0000000280)={0x2, 0x4e20, @broadcast}, 0x10, 0x0, 0x0, &(0x7f00000014c0)=[@ip_retopts={{0x10}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @empty, @dev}}}], 0x30}}], 0x2, 0x0) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f00000000c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x12, r6}) setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000000640)=ANY=[], 0x190) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000000, 0x11, 0xffffffffffffffff, 0x8000000) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10) sendmmsg$inet(r1, &(0x7f0000000300)=[{{&(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10, 0x0}, 0xe00}], 0x40001a9, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) 01:01:41 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x1100, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:01:41 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2006000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:01:41 executing program 7: r0 = fork() waitid(0x0, r0, &(0x7f0000000080), 0x40000004, 0x0) 01:01:41 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 55) 01:01:41 executing program 6: pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000001280)=@IORING_OP_WRITEV={0x2, 0x4, 0x2000, @fd, 0x2, &(0x7f0000001240), 0x0, 0xc, 0x0, {0x1}}, 0x8000) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x12040, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_IOC_EXPIRE_MULTI(0xffffffffffffffff, 0x40049366, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x3, 0x0, 0x8000) setsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000001140)={{{@in=@remote, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e24, 0x7, 0x4e23, 0x7, 0x2, 0x20, 0x100, 0x2c, 0x0, 0xee01}, {0xd3c, 0x7fffffff, 0x4, 0x0, 0x1, 0x0, 0xffffffff, 0x8000}, {0x5, 0x8001, 0x3, 0x3}, 0x1, 0x6e6bb4, 0x0, 0x1, 0x0, 0x3}, {{@in6=@remote, 0x4d6, 0x33}, 0x2, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x3506, 0x2, 0x1, 0xfd, 0x5, 0x1}}, 0xe8) perf_event_open(&(0x7f00000010c0)={0x1, 0x80, 0x3f, 0x4, 0x20, 0x20, 0x0, 0x0, 0x20020, 0x8, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x4, @perf_config_ext={0x4, 0x1000}, 0x49502, 0x1, 0x1, 0x3, 0x2, 0x2, 0x0, 0x0, 0x4, 0x0, 0x8}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x3) sendfile(r1, r0, 0x0, 0x80464c453f) socket$nl_generic(0x10, 0x3, 0x10) fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f0000000140)={0x0, 0x0, 0xffff, 0x7f}) pread64(0xffffffffffffffff, &(0x7f0000000080)=""/4095, 0xfff, 0x303) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x0, 0x5, &(0x7f0000000040)=[{0x0, 0x0, 0x4e0}, {&(0x7f0000010300), 0x0, 0x800}, {0x0, 0x0, 0x1000000000c00}, {&(0x7f0000010d00), 0x0, 0x1480}, {&(0x7f0000012000)="504d4d00504d4dff", 0x8, 0x10000}], 0x0, 0x0) connect$inet6(r2, &(0x7f0000001080)={0xa, 0x4e23, 0xda4, @mcast2, 0x4}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000280)=0x7, 0x4) [ 1259.708266] FAULT_INJECTION: forcing a failure. [ 1259.708266] name failslab, interval 1, probability 0, space 0, times 0 [ 1259.710813] CPU: 1 PID: 15835 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1259.712346] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1259.714118] Call Trace: [ 1259.714710] dump_stack+0x107/0x167 [ 1259.715494] should_fail.cold+0x5/0xa [ 1259.716334] ? create_object.isra.0+0x3a/0xa30 [ 1259.717325] should_failslab+0x5/0x20 [ 1259.718146] kmem_cache_alloc+0x5b/0x310 [ 1259.719037] create_object.isra.0+0x3a/0xa30 [ 1259.720002] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1259.721098] kmem_cache_alloc_trace+0x151/0x320 [ 1259.722133] __io_uring_add_tctx_node+0x15c/0x520 [ 1259.723183] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1259.724306] ? alloc_fd+0x2e7/0x670 [ 1259.725103] io_uring_setup+0x1fbb/0x2980 [ 1259.725999] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1259.727098] ? wait_for_completion_io+0x270/0x270 [ 1259.728163] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1259.729291] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1259.730404] do_syscall_64+0x33/0x40 [ 1259.731210] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1259.732309] RIP: 0033:0x7f707acaeb19 [ 1259.733109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1259.737109] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1259.738766] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1259.740305] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1259.741840] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1259.743381] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1259.744914] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:01:41 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x1201, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1259.753573] FAULT_INJECTION: forcing a failure. [ 1259.753573] name failslab, interval 1, probability 0, space 0, times 0 [ 1259.756054] CPU: 1 PID: 15828 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1259.757552] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1259.759367] Call Trace: [ 1259.759942] dump_stack+0x107/0x167 [ 1259.760732] should_fail.cold+0x5/0xa [ 1259.761556] ? mempool_alloc+0x148/0x360 [ 1259.762433] ? mempool_free_pages+0x20/0x20 [ 1259.763375] should_failslab+0x5/0x20 [ 1259.764199] kmem_cache_alloc+0x5b/0x310 [ 1259.765079] ? mempool_free_pages+0x20/0x20 [ 1259.766013] mempool_alloc+0x148/0x360 [ 1259.766878] ? mempool_resize+0x7d0/0x7d0 [ 1259.767778] ? mark_lock+0xf5/0x2df0 [ 1259.768592] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1259.769730] __sg_alloc_table+0x24e/0x390 [ 1259.770645] sg_alloc_table_chained+0x9b/0x1f0 [ 1259.771640] ? sg_alloc_table_chained+0x1f0/0x1f0 [ 1259.772686] scsi_alloc_sgtables+0x236/0xaf0 [ 1259.773645] ? scsi_cmd_runtime_exceeced+0x1d0/0x1d0 [ 1259.774755] ? lockdep_init_map_type+0x2c7/0x780 [ 1259.775794] sd_init_command+0x2f6/0x30b0 [ 1259.776687] ? scsi_init_command+0x4ee/0x750 [ 1259.777657] scsi_queue_rq+0xe5e/0x27f0 [ 1259.778545] blk_mq_dispatch_rq_list+0x372/0x1c40 [ 1259.779608] ? elv_rb_del+0x50/0xa0 [ 1259.780398] ? elv_rqhash_del+0x119/0x160 [ 1259.781299] ? blk_mq_dequeue_from_ctx+0x7f0/0x7f0 [ 1259.782364] ? dd_dispatch_request+0x1c0/0x990 [ 1259.783369] blk_mq_do_dispatch_sched+0x7f4/0xa00 [ 1259.784426] ? blk_mq_sched_mark_restart_hctx+0x80/0x80 [ 1259.785580] ? lock_acquire+0x197/0x470 [ 1259.786435] ? hctx_lock+0x7f/0x200 [ 1259.787242] __blk_mq_sched_dispatch_requests+0x2d7/0x450 [ 1259.788431] ? blk_mq_do_dispatch_sched+0xa00/0xa00 [ 1259.789517] blk_mq_sched_dispatch_requests+0xfd/0x1e0 [ 1259.790658] __blk_mq_run_hw_queue+0x12c/0x290 [ 1259.791643] ? blk_mq_start_request+0x3f0/0x3f0 [ 1259.792646] ? lock_acquire+0x197/0x470 [ 1259.793520] __blk_mq_delay_run_hw_queue+0x53f/0x5a0 [ 1259.794625] blk_mq_run_hw_queue+0x170/0x2f0 [ 1259.795572] ? blk_mq_delay_run_hw_queues+0x1f0/0x1f0 [ 1259.796692] ? dd_dispatch_request+0x990/0x990 [ 1259.797677] blk_mq_sched_insert_requests+0x247/0x720 [ 1259.798807] blk_mq_flush_plug_list+0x415/0x6c0 [ 1259.799816] ? blk_mq_insert_requests+0x450/0x450 [ 1259.800864] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 1259.802112] blk_flush_plug_list+0x26c/0x3c0 [ 1259.803073] ? mark_held_locks+0x9e/0xe0 [ 1259.803957] ? blk_insert_cloned_request+0x450/0x450 [ 1259.805071] blk_finish_plug+0x50/0xa0 [ 1259.805916] __iomap_dio_rw+0xca0/0x1110 [ 1259.806811] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1259.807775] ? ext4_orphan_add+0x253/0x9e0 [ 1259.808668] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1259.809713] ? ext4_empty_dir+0xae0/0xae0 [ 1259.810587] ? jbd2__journal_start+0xf3/0x7e0 [ 1259.811535] iomap_dio_rw+0x31/0x90 [ 1259.812302] ext4_file_write_iter+0xe0e/0x1530 [ 1259.813273] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1259.814227] ? kasan_save_stack+0x32/0x40 [ 1259.815097] ? kasan_save_stack+0x1b/0x40 [ 1259.815981] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1259.817062] ? iter_file_splice_write+0x165/0xc90 [ 1259.818065] ? direct_splice_actor+0x10f/0x170 [ 1259.819024] ? splice_direct_to_actor+0x387/0x980 [ 1259.820031] ? do_splice_direct+0x1c4/0x290 [ 1259.820935] ? do_sendfile+0x553/0x11e0 [ 1259.821772] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1259.822785] ? do_syscall_64+0x33/0x40 [ 1259.823607] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1259.824728] do_iter_readv_writev+0x476/0x750 [ 1259.825672] ? _cond_resched+0x10/0x30 [ 1259.826487] ? new_sync_write+0x660/0x660 [ 1259.827382] ? avc_policy_seqno+0x9/0x70 [ 1259.828242] ? selinux_file_permission+0x92/0x520 [ 1259.829269] ? security_file_permission+0xb1/0xe0 [ 1259.830296] do_iter_write+0x191/0x700 [ 1259.831133] ? trace_hardirqs_on+0x5b/0x180 [ 1259.832059] vfs_iter_write+0x70/0xa0 [ 1259.832873] iter_file_splice_write+0x726/0xc90 [ 1259.833874] ? generic_splice_sendpage+0x140/0x140 [ 1259.835180] ? security_file_permission+0xb1/0xe0 [ 1259.836385] ? generic_splice_sendpage+0x140/0x140 [ 1259.837428] direct_splice_actor+0x10f/0x170 [ 1259.838461] splice_direct_to_actor+0x387/0x980 [ 1259.839488] ? pipe_to_sendpage+0x380/0x380 [ 1259.840396] ? do_splice_to+0x160/0x160 [ 1259.841230] ? security_file_permission+0xb1/0xe0 [ 1259.842245] do_splice_direct+0x1c4/0x290 [ 1259.843129] ? splice_direct_to_actor+0x980/0x980 [ 1259.844140] ? avc_policy_seqno+0x9/0x70 [ 1259.845011] ? security_file_permission+0xb1/0xe0 [ 1259.846042] do_sendfile+0x553/0x11e0 [ 1259.846865] ? do_pwritev+0x270/0x270 [ 1259.847671] ? wait_for_completion_io+0x270/0x270 [ 1259.848701] ? rcu_read_lock_any_held+0x75/0xa0 [ 1259.849691] ? vfs_write+0x354/0xb10 [ 1259.850480] __x64_sys_sendfile64+0x1d1/0x210 [ 1259.851429] ? __ia32_sys_sendfile+0x220/0x220 [ 1259.852399] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1259.853503] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1259.854597] do_syscall_64+0x33/0x40 [ 1259.855382] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1259.856485] RIP: 0033:0x7fe85904db19 [ 1259.857267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1259.861133] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1259.862755] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1259.864270] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1259.865774] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1259.867287] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1259.868786] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 01:01:41 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2007000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:01:41 executing program 7: fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x8, 0x0) 01:01:41 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x3f00, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:01:41 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 56) 01:01:41 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2008000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:01:41 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xf000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1260.054348] FAULT_INJECTION: forcing a failure. [ 1260.054348] name failslab, interval 1, probability 0, space 0, times 0 [ 1260.057531] CPU: 1 PID: 15882 Comm: syz-executor.4 Not tainted 5.10.246 #1 01:01:41 executing program 6: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000700)=""/222, 0xde}], 0x1}, 0x0) syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) syz_io_uring_setup(0x8003a75, &(0x7f0000000080)={0x0, 0xa91f, 0x10, 0x0, 0x3be}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r4, r5, 0x0, 0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f0000000040)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r6}}, 0x7ff) syz_io_uring_submit(r1, 0x0, &(0x7f0000000900)=@IORING_OP_SENDMSG={0x9, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000640)={&(0x7f0000000340)=@ax25={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x5}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @default, @default, @null, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}]}, 0x80, &(0x7f00000001c0)=[{&(0x7f00000003c0)="67cde97d6b1afd88262e283cc8ae16b798dfea31b33cfc0a4812fdca89f30f7c6c1ab74c8f154e5bb134bfd05c539aba12f04db189f4dc339a19c577eb6254aae70b419c015c13f30d407e78a00845b3350042d5e44b475f556fab7e8efcb38573b2ae", 0x63}, {&(0x7f0000000480)="8f2d7f1d2e6cd1cc9b87e9821af47fc10996b225f4b3620d1773c1ef2d30e1790c9801d95d2e6df8730e0ad1417e620e326601975a0a8f070bedd8c7cd713f522e7c769462cd6c6db4d6902bc16ec050f9d1a997c059525a797a654df30c08d9cc0a8a12a7e550bad0299eb9dc75863d7a32e280b7b957b47cdca9dab15861557f00a71c9fc970", 0x87}, {&(0x7f0000000540)="1bbcefa678fa618946729d824704dab86ed318df8088307c65c595c434b6698b9717197652c87178b9e81c4739d7e3a4a0914538a4e787dd25f83145bff4099b51d4c1ef737c30227254ca0335d4938e89c0e2a99a2f38d0f89811e06a", 0x5d}, {&(0x7f00000005c0)="0b24149d5748b4fa699fd7e9c4c48867ad573bd10aa65a9f020955b26e492d0bda4313fd017b537dad1834b19626b3f24e5cb3474c63707db3713ead3c49140937a6991c555aff0e2ee41f", 0x4b}], 0x4, &(0x7f0000000800)=[{0x70, 0x102, 0x80, "b0e331cefa8cb06fe4d67d3e49643bcf413668bbe6be7c2fb1c0c445ddbabd38f5b1c2b953b0e49e61c536b98440607d6bee2f52a513c92f52d213524d0dda4093b20871c728d6bca015c5b8aa4119004c76b764776fc4151bbb2135b182d272"}, {0x90, 0x113, 0x2, "d6d7281c79e3408b0161c5de038ba6a0ea88265de244be8dcafa12e979766078c014f371169c71edfe9c535800a5f850a4fe49c83a0ecdfef65ab11325d682fe4fea44aa382a17da9bfc05a818f5a280b854d0db2891dc9f97db7c20469789ee0d06b1a3b200d3dfa67ec69a259290a21350d605b26ce8900430"}], 0x100}, 0x0, 0x8000, 0x0, {0x0, r6}}, 0x401) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000fef000/0x11000)=nil, 0x11000, 0x0, 0x10, r0, 0x8000000) syz_io_uring_complete(r7) pipe2(&(0x7f0000000180), 0x800) connect(0xffffffffffffffff, 0x0, 0x0) r8 = openat(0xffffffffffffff9c, &(0x7f0000000940)='./file1\x00', 0x46e2, 0x0) ftruncate(r8, 0x1) r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1260.059093] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1260.061026] Call Trace: [ 1260.061592] dump_stack+0x107/0x167 [ 1260.062369] should_fail.cold+0x5/0xa [ 1260.063192] ? xas_alloc+0x336/0x440 [ 1260.063978] should_failslab+0x5/0x20 [ 1260.064785] kmem_cache_alloc+0x5b/0x310 [ 1260.065647] ? stack_trace_consume_entry+0x160/0x160 [ 1260.066737] xas_alloc+0x336/0x440 [ 1260.067496] xas_create+0x34a/0x10d0 [ 1260.068294] ? kernel_text_address+0xf2/0x120 [ 1260.069250] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1260.070362] xas_store+0x8c/0x1c40 [ 1260.071151] __xa_store+0x164/0x2d0 [ 1260.071933] ? xa_delete_node+0x280/0x280 [ 1260.072821] ? trace_hardirqs_on+0x5b/0x180 [ 1260.073743] xa_store+0x31/0x50 [ 1260.074446] __io_uring_add_tctx_node+0x1cf/0x520 [ 1260.075474] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1260.076583] ? alloc_fd+0x2e7/0x670 [ 1260.077367] io_uring_setup+0x1fbb/0x2980 [ 1260.078253] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1260.079311] ? wait_for_completion_io+0x270/0x270 [ 1260.080351] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1260.081458] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1260.082561] do_syscall_64+0x33/0x40 [ 1260.083350] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1260.084431] RIP: 0033:0x7f707acaeb19 [ 1260.085221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1260.089115] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1260.090745] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1260.092262] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1260.093769] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1260.095288] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1260.096801] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:01:55 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 84) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:01:55 executing program 6: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) sendmsg$nl_xfrm(r0, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000000)=ANY=[@ANYBLOB="a5ee000010000100000000000000000000000000000000000000000000000000ac1414bb00"/64, @ANYRES32=0x0, @ANYRESHEX=r1, @ANYBLOB="e00000010000000000000000000000000000000033000000ac1e000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007368613235360000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c0000000"], 0x13c}}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) lseek(r0, 0x9, 0x3) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) recvmsg$unix(r1, &(0x7f0000000c00)={&(0x7f0000000680), 0x6e, &(0x7f0000000780)=[{&(0x7f0000000700)=""/19, 0x13}, {&(0x7f0000000980)=""/194, 0xc2}, {&(0x7f0000000a80)=""/206, 0xce}, {&(0x7f0000000740)=""/28, 0x1c}], 0x4, &(0x7f0000000b80)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x48}, 0x1) stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r5, 0x0) sendmsg$nl_generic(r4, &(0x7f00000022c0)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000002280)={&(0x7f0000002e40)={0x15e8, 0x28, 0x200, 0x70bd25, 0x25dfdbfc, {0x14}, [@nested={0x1224, 0x33, 0x0, 0x1, [@generic="26dd434e060126be5230ab2186896b59d755318a4e166307f2b55bee7dc47839adec728e428d7c261713276275c299f365699f68520bf1f457c931b4be7409c2464d105e4e7c341f0eeeb869a6aa5360b96916db70f8a6f8", @typed={0x5, 0x7a, 0x0, 0x0, @binary='A'}, @generic="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", @generic="5276bdb38c84ad696d051a4fecf7e8954ebd95f8e68f326e0ec487e2cf633a68be6e1220ba5fee23830073decfdda247c1d4eec5bc8123223f9708915e8067181a7369cc8d6d3fde24bc8f9f015f38737b92a84b615df73860ee7260b14dc03e32246fab4a06a24beb0f91089e681d7f07587713e0d48f714df69bebcf33c23faea7a212555b299b7a2b373847728d28373049f201c00d7008be4f9bc9cfb1554425da3ef7accf38cb4c4fcc0c2735680878ee2d06cebab3a15c066edff71ba5d7f89f", @typed={0x31, 0x25, 0x0, 0x0, @binary="dfd7781b8f4b3e7478cfe90fa3283343e6ff0c63ea2463ea627d48fb2d2b7a12c4be706e579e89a3f01fdfb0f4"}, @generic="6c9d2d0821d121e37edfe7726a0066aabdd5b084c2cf0080fa2eb41970ff3d92fb3a85b8d28f81a208ed2699a7281a1eb19688827c36c996f8c977be5a907c8a83b9f22e9f72f95164ab05681fda0101ab2554c1ae750a03f970be8e8ef9407efee76df0a7acea5241ce5f40265ebc02f29bb1aa48775d14fb7ff7a259320be185b5a2b53627e7100187decfb4314f1b6d78fb8532d9ce765dbc03411f8baab6850c340dcbaf547dbda5cfe3c179bc57e9fbc3539b3eff20eae105d1bf891649b097af46bf733f23e9"]}, @generic="d05a224c162d8715a22596aaaa835b70af2f55e0b1e14faf3da732d7c127a9955703d6ecabbff0605c72af4db75e4fc433d65fbda3c90c3f5a0a5c0f293861f3078edc978083895d6918ca056869ce0982afe73afa6b8b86258741cdf8231cca69297d9cea50470fd39f59264e4ecca08fb4fa6eeb05447236dc814df4d016a598477c13782ce4c32fc7536f58", @nested={0x8b, 0x5, 0x0, 0x1, [@typed={0xc, 0x14, 0x0, 0x0, @u64=0xa}, @generic="b42e8fbab57c361daf397e7661e1bf35abbb562df29ec7b87647f7c863a9d8e24c3fb94590699ff8431efddc88ad571f41c179d0d696307ed4c8d70c147c4495fb3e0f05cb7ee401073125075e8c46af622d469d8908600d29379cf71e3f09fd3c5b5e0e56accb25211c83e32b83bec64165c05c15b2bee2dbcc4e"]}, @typed={0x8, 0x4c, 0x0, 0x0, @fd}, @nested={0xa3, 0x78, 0x0, 0x1, [@typed={0x8, 0x84, 0x0, 0x0, @uid=0xee00}, @typed={0x8, 0x89, 0x0, 0x0, @pid=0xffffffffffffffff}, @typed={0x8, 0x18, 0x0, 0x0, @ipv4=@loopback}, @generic="4dce8f0a01cbd439120d3d0ee7538312db2524232a52a94d9b6ee011367584344a4ec8410fafc6da5945874c6336dd5291c849c025affb770c89b6ec6293e8290b36d097a7db15de46c958300dea633b6b74514ff66a5d2249f2d27b8155d8775446901df196d2bed2451fa802dd6f06954cc472419524be771546d5f3816cec41e59051d42abe"]}, @generic="10368e26c041421d81aab93f351922adc0f53f24236b6096357c7f567037f05c2609f0a00fdc1e1818f4de6e8583d37ea44a9198c4aea81edd3c4995a459d087c726aaf6f72fa84d8878d8df47972d62b1d8d2d23ff365aac89f7b57afa8f84c7b1397beea2d46c041e6768eb8ef757bf2ad06ff22791cc89f729cba74792d0340f9a177ad2a02ba4e823388d640146ea4f64d1f1a7f2f7f3a7ce2af8e766eeecdf507", @nested={0x3f, 0x89, 0x0, 0x1, [@generic="9e3149dd17edd101f2a71e94d6f2e06aff7e39711b0a70f1ce2964aae6580c2a7bd66880deab2ed0445e2e39ee8b1af794ce04", @typed={0x8, 0x70, 0x0, 0x0, @ipv4=@multicast2}]}, @nested={0x105, 0x87, 0x0, 0x1, [@typed={0x8, 0x6b, 0x0, 0x0, @uid=r5}, @generic="6245e14a7ded34e0e53a200137fd7ccb85a2417ede69fcca352dbf9e544dc09eb4454bb11ae0b3b54897c8a645919750c23945cfa7ca792602df447bbaabb75cce7688d83c95b9b0ad95a2107c3eb56d6baf142e304e4a1175eec198db93d37c0a4254fd7f4642f97e23c243dd2a5fb340db1d37ea9b867650bb599da1017d0012f8f1b0341aaea9d2a4b28105a142a68103f61d9a39d15680219eba4db8a56c5804ca92ded14e1cfe475f70ee88db32584da38552adb68276048740bd04462e4b86cc0701260b3bc6073c72e8f54060ae8eb18da501d6807a91f99c1900c18f7cc9195223598506373b47f622ad37dcdfe42ffe191b686d50"]}]}, 0x15e8}, 0x1, 0x0, 0x0, 0x40000}, 0x20000000) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)={0x2c, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_LINKMODES_OURS={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8}]}]}, 0x2c}}, 0x0) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000540)={{{@in=@loopback, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in6=@private0}}, &(0x7f0000000640)=0xe8) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000800)={'syztnl0\x00', &(0x7f00000007c0)={'ip_vti0\x00', 0x0, 0x8, 0x80, 0x80000000, 0x2, {{0x6, 0x4, 0x2, 0x1a, 0x18, 0x66, 0x0, 0x0, 0x2f, 0x0, @broadcast, @dev={0xac, 0x14, 0x14, 0x35}, {[@end]}}}}}) sendmsg$ETHTOOL_MSG_RINGS_GET(r1, &(0x7f0000000940)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000900)={&(0x7f0000000c80)=ANY=[@ANYBLOB="6900acc7421b21590cd2de995f31513b7fdd9f0a10c3004b5b4617448aa306b482627efa6cbff036eab091b27064f574c581e9a1d122f61f2c5feb8726040680ecdb7c151fc58e7553e3d0e2", @ANYRES16=r3, @ANYBLOB="08002dbd7000fddbdf250f0000000c00018008000300010000003c000180140002006261746164765f736c6176655f300000080003000300000008000100", @ANYRES32=0x0, @ANYBLOB="1400020076657468315f746f5f62726964676500400001801400020076657468315f746f5f6873720000000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r8, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r9, @ANYBLOB], 0x9c}, 0x1, 0x0, 0x0, 0x40000}, 0x2400c800) clone3(&(0x7f00000003c0)={0x8000, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)=0x0, {0x40}, &(0x7f0000000300)=""/35, 0x23, &(0x7f0000000440)=""/2, &(0x7f0000000380)=[0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x4, {r1}}, 0x58) perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x7f, 0xe1, 0x8, 0x20, 0x0, 0x9, 0x4100, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_bp={&(0x7f0000000180), 0x1}, 0xad00, 0xfffffffffffffffe, 0x5706, 0x1, 0x10001, 0x7f00, 0x6, 0x0, 0x3, 0x0, 0x9}, r10, 0x0, 0xffffffffffffffff, 0x0) 01:01:55 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2018000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:01:55 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:01:55 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x80000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:01:55 executing program 7: fork() ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000080)=0x0) ptrace$getregset(0x4204, r0, 0x2, &(0x7f0000000100)={&(0x7f00000000c0)=""/63, 0x3f}) 01:01:55 executing program 5: setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x2, &(0x7f0000000440)=0x11, 0x4) r0 = perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x0, 0x0, 0xff, 0x0, 0x0, 0x5e, 0x10001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f00000002c0), 0x1}, 0x0, 0x37, 0x80, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x8, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) fallocate(r0, 0x30, 0xffffffffffffff75, 0x10001) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x301000, 0x0) r3 = openat(r2, &(0x7f0000000400)='./file1\x00', 0x0, 0x4) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r2, 0x400c6615, &(0x7f0000000240)={0x0, @aes128}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000240), 0x0, 0xffff57ed, 0x4006) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000880)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x0) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r2, &(0x7f0000000800)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000600)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010025bd710000000000030000000500050000004b98bdcd7d209bc3dc695d2aa800072c359e3cb5db5c26b8f6440d0020fbb35351142c7d3355a2791220bec7465cbbd3a4c603f0e19e35a3300d3498ca3a5b520bf27ab8fd83f62ff074008501d03c58a80414819ce31b0f1efdc88c22"], 0x1c}, 0x1, 0x0, 0x0, 0x4001}, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000640)=""/186, 0xba}, {&(0x7f0000000a40)=""/4096, 0x1000}, {&(0x7f0000000500)=""/114, 0x72}], 0x3, 0x16, 0x80000004) ioctl$HCIINQUIRY(0xffffffffffffffff, 0x800448f0, &(0x7f0000000800)={0x0, 0x0, "17f042"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001a40)) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x2) sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000700)={&(0x7f00000005c0)={0x20, 0x0, 0x4, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x80c0) openat$cgroup_procs(r3, &(0x7f0000000200)='cgroup.threads\x00', 0x2, 0x0) 01:01:55 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 57) [ 1273.865428] FAULT_INJECTION: forcing a failure. [ 1273.865428] name failslab, interval 1, probability 0, space 0, times 0 [ 1273.867939] CPU: 1 PID: 15973 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1273.869377] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1273.871126] Call Trace: [ 1273.871677] dump_stack+0x107/0x167 [ 1273.871719] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1273.872432] should_fail.cold+0x5/0xa [ 1273.872457] ? mempool_alloc+0x148/0x360 [ 1273.872486] ? mempool_free_pages+0x20/0x20 [ 1273.877125] should_failslab+0x5/0x20 [ 1273.877932] kmem_cache_alloc+0x5b/0x310 [ 1273.878794] ? mempool_free_pages+0x20/0x20 [ 1273.879699] mempool_alloc+0x148/0x360 [ 1273.880525] ? mempool_resize+0x7d0/0x7d0 [ 1273.881407] ? mark_lock+0xf5/0x2df0 [ 1273.882191] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1273.883307] __sg_alloc_table+0x24e/0x390 [ 1273.883382] FAULT_INJECTION: forcing a failure. [ 1273.883382] name failslab, interval 1, probability 0, space 0, times 0 [ 1273.884186] sg_alloc_table_chained+0x9b/0x1f0 [ 1273.884207] ? sg_alloc_table_chained+0x1f0/0x1f0 [ 1273.884237] scsi_alloc_sgtables+0x236/0xaf0 [ 1273.889568] ? scsi_cmd_runtime_exceeced+0x1d0/0x1d0 [ 1273.890631] ? lockdep_init_map_type+0x2c7/0x780 [ 1273.891656] sd_init_command+0x2f6/0x30b0 [ 1273.892529] ? scsi_init_command+0x4ee/0x750 [ 1273.893439] scsi_queue_rq+0xe5e/0x27f0 [ 1273.894293] blk_mq_dispatch_rq_list+0x372/0x1c40 [ 1273.895332] ? elv_rb_del+0x50/0xa0 [ 1273.896090] ? elv_rqhash_del+0x119/0x160 [ 1273.896945] ? blk_mq_dequeue_from_ctx+0x7f0/0x7f0 [ 1273.897975] ? dd_dispatch_request+0x1c0/0x990 [ 1273.898946] blk_mq_do_dispatch_sched+0x7f4/0xa00 [ 1273.899961] ? blk_mq_sched_mark_restart_hctx+0x80/0x80 [ 1273.901081] ? lock_acquire+0x197/0x470 [ 1273.901900] ? hctx_lock+0x7f/0x200 [ 1273.902660] __blk_mq_sched_dispatch_requests+0x2d7/0x450 [ 1273.903840] ? blk_mq_do_dispatch_sched+0xa00/0xa00 [ 1273.904902] blk_mq_sched_dispatch_requests+0xfd/0x1e0 [ 1273.905995] __blk_mq_run_hw_queue+0x12c/0x290 [ 1273.906961] ? blk_mq_start_request+0x3f0/0x3f0 [ 1273.907935] ? lock_acquire+0x197/0x470 [ 1273.908768] __blk_mq_delay_run_hw_queue+0x53f/0x5a0 [ 1273.909821] blk_mq_run_hw_queue+0x170/0x2f0 [ 1273.910740] ? blk_mq_delay_run_hw_queues+0x1f0/0x1f0 [ 1273.911826] ? dd_dispatch_request+0x990/0x990 [ 1273.912822] blk_mq_sched_insert_requests+0x247/0x720 [ 1273.913946] blk_mq_flush_plug_list+0x415/0x6c0 [ 1273.914976] ? blk_mq_insert_requests+0x450/0x450 [ 1273.916039] ? trace_event_raw_event_iomap_class+0x560/0x560 [ 1273.917291] blk_flush_plug_list+0x26c/0x3c0 [ 1273.918249] ? mark_held_locks+0x9e/0xe0 [ 1273.919147] ? blk_insert_cloned_request+0x450/0x450 [ 1273.920255] blk_finish_plug+0x50/0xa0 [ 1273.921099] __iomap_dio_rw+0xca0/0x1110 [ 1273.921999] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1273.923000] ? ext4_orphan_add+0x253/0x9e0 [ 1273.923916] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1273.924987] ? ext4_empty_dir+0xae0/0xae0 [ 1273.925885] ? jbd2__journal_start+0xf3/0x7e0 [ 1273.926879] iomap_dio_rw+0x31/0x90 [ 1273.927672] ext4_file_write_iter+0xe0e/0x1530 [ 1273.928675] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1273.929662] ? kasan_save_stack+0x32/0x40 [ 1273.930556] ? kasan_save_stack+0x1b/0x40 [ 1273.931462] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1273.932563] ? iter_file_splice_write+0x165/0xc90 [ 1273.933604] ? direct_splice_actor+0x10f/0x170 [ 1273.934594] ? splice_direct_to_actor+0x387/0x980 [ 1273.935631] ? do_splice_direct+0x1c4/0x290 [ 1273.936553] ? do_sendfile+0x553/0x11e0 [ 1273.937407] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1273.938407] ? do_syscall_64+0x33/0x40 [ 1273.939260] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1273.940428] do_iter_readv_writev+0x476/0x750 [ 1273.941400] ? _cond_resched+0x10/0x30 [ 1273.942246] ? new_sync_write+0x660/0x660 [ 1273.943155] ? avc_policy_seqno+0x9/0x70 [ 1273.944036] ? selinux_file_permission+0x92/0x520 [ 1273.945088] ? security_file_permission+0xb1/0xe0 [ 1273.946120] do_iter_write+0x191/0x700 [ 1273.946956] ? trace_hardirqs_on+0x5b/0x180 [ 1273.947868] vfs_iter_write+0x70/0xa0 [ 1273.948668] iter_file_splice_write+0x726/0xc90 [ 1273.949664] ? generic_splice_sendpage+0x140/0x140 [ 1273.950724] ? security_file_permission+0xb1/0xe0 [ 1273.951735] ? generic_splice_sendpage+0x140/0x140 [ 1273.952763] direct_splice_actor+0x10f/0x170 [ 1273.953700] splice_direct_to_actor+0x387/0x980 [ 1273.954687] ? pipe_to_sendpage+0x380/0x380 [ 1273.955602] ? do_splice_to+0x160/0x160 [ 1273.956434] ? security_file_permission+0xb1/0xe0 [ 1273.957456] do_splice_direct+0x1c4/0x290 [ 1273.958328] ? splice_direct_to_actor+0x980/0x980 [ 1273.959348] ? avc_policy_seqno+0x9/0x70 [ 1273.960206] ? security_file_permission+0xb1/0xe0 [ 1273.961231] do_sendfile+0x553/0x11e0 [ 1273.962044] ? do_pwritev+0x270/0x270 [ 1273.962855] ? wait_for_completion_io+0x270/0x270 [ 1273.963865] ? rcu_read_lock_any_held+0x75/0xa0 [ 1273.964837] ? vfs_write+0x354/0xb10 [ 1273.965620] __x64_sys_sendfile64+0x1d1/0x210 [ 1273.966563] ? __ia32_sys_sendfile+0x220/0x220 [ 1273.967545] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1273.968646] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1273.969735] do_syscall_64+0x33/0x40 [ 1273.970519] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1273.971603] RIP: 0033:0x7fe85904db19 [ 1273.972387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1273.976257] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1273.977863] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1273.979373] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1273.980875] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1273.982379] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1273.983890] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 [ 1273.985434] CPU: 0 PID: 15985 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1273.987124] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1273.988805] Call Trace: [ 1273.989346] dump_stack+0x107/0x167 [ 1273.990103] should_fail.cold+0x5/0xa [ 1273.990910] ? create_object.isra.0+0x3a/0xa30 [ 1273.991852] should_failslab+0x5/0x20 [ 1273.992632] kmem_cache_alloc+0x5b/0x310 [ 1273.993464] create_object.isra.0+0x3a/0xa30 [ 1273.994361] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1273.995417] kmem_cache_alloc+0x159/0x310 [ 1273.996275] xas_alloc+0x336/0x440 [ 1273.997003] xas_create+0x34a/0x10d0 [ 1273.997805] ? kernel_text_address+0xf2/0x120 [ 1273.998742] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1273.999808] xas_store+0x8c/0x1c40 [ 1274.000561] __xa_store+0x164/0x2d0 [ 1274.001305] ? xa_delete_node+0x280/0x280 [ 1274.002157] ? trace_hardirqs_on+0x5b/0x180 [ 1274.003053] xa_store+0x31/0x50 [ 1274.003737] __io_uring_add_tctx_node+0x1cf/0x520 [ 1274.004722] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1274.005796] ? alloc_fd+0x2e7/0x670 [ 1274.006574] io_uring_setup+0x1fbb/0x2980 [ 1274.007460] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1274.008532] ? wait_for_completion_io+0x270/0x270 [ 1274.009540] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1274.010609] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1274.011686] do_syscall_64+0x33/0x40 [ 1274.012448] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1274.013502] RIP: 0033:0x7f707acaeb19 [ 1274.014273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1274.018057] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1274.019615] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1274.021063] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1274.022507] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1274.023979] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1274.025447] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:01:55 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xf0ffff, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:01:55 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="201c000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1274.068670] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1274.070211] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1274.072864] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1274.081147] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 01:01:55 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x1000000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1274.108458] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1274.110074] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1274.112384] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 01:02:13 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:02:13 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 85) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:02:13 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2063000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:02:13 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x47e2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) write$binfmt_script(r0, &(0x7f0000000340)=ANY=[@ANYRES32=r0], 0xb8) ftruncate(r0, 0x1000003) faccessat2(r0, &(0x7f0000000900)='./file0\x00', 0x0, 0x0) r2 = getpgrp(0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, {0x0, 0x4}}, './file0\x00'}) ptrace(0xffffffffffffffff, 0x0) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) getpgrp(r2) ioctl$SG_IO(r3, 0x1278, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r3, 0x89f8, &(0x7f0000000280)={'sit0\x00', &(0x7f0000000100)={'syztnl2\x00', 0x0, 0x2f, 0x40, 0x1, 0x4, 0x0, @mcast2, @ipv4={'\x00', '\xff\xff', @empty}, 0x0, 0x20, 0x7, 0x9}}) ioctl$SCSI_IOCTL_GET_PCI(0xffffffffffffffff, 0x5387, &(0x7f00000007c0)) dup2(r0, r1) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x3, 0x0, 0x800000, 0x8}) fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v2, 0x14, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$INCFS_IOC_CREATE_FILE(r4, 0xc058671e, &(0x7f0000000680)={{'\x00', 0x2}, {0x9}, 0x12f, 0x0, 0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='./file0\x00', &(0x7f0000000380)="efeec5a87ea2828212def4ad4f77dad038cd4b65e4130f3744298a9d6ea8f7bcc008bbe872f966acec8b097fc9e3640467fed8bae64585764dcdb978050a8b7c9276d6dbdabbe05101738d0e654678cf7c5eabab05e81244701f8fc4e24d491e236ade5c9a3c068a9e08179074a46e4a8170d6599592fc52c7e3ffd377e53edbc0a9de3d69f3c2a1d9182cdd1005c667f2b787ae0c72879b37227d92b06656a86c336f015e826d18249bcee67d25fd3f3424fa6e77e2d2ea31fea40ab72d572b44833f5189e241d4a7475141f0d530b269454f167966b3fbaf4f223fccf0eaac87d428256fcfdad739ea542d6ddc167c01309b2daf7080a577da3fc9f8e5f174c5e939e4362b", 0x106, 0x0, &(0x7f00000004c0)={0x2, 0xc6, {0x1, 0xc, 0xc, "77b02a77fbf766b450a5a394", 0xad, "f0d26b4b3edc0b6de6ee4fc543e4dad53d987ab2cafbf94d5cd2da624477b97fddab09fcd85a6c279ab92d634a7d90c5d33002fce0986a1bfa00e690964850944f4e0602e123d82e088aa6fbd333eb0e962c0840d03da7eab29163dd320cd0aa07632a670167cdf4f8921a7941689a3b0f2ad1ba56ad59e431028a7c3b05e4ca1b5753e2b1d92119e42e28ce67d400d258072658c3de8cef03e9978bb1bbb45f7aadbf411f9840f6d808d61423"}, 0xb1, "dc4414c8f15777a0c956951385488829a9d03c5d9520e854f5e1c9eacaa87074d10ce19e13e1ccb33313ac96d4e05726c6d0428ca2a5f154136b104a4a20e26336d2c62205591e929c4a202bdd9c946112c1fe3206c4a5a3b321fd7e48eb0a932aa26ed365caed1d2de3e12fb32ed8f53cdabb324d2f091d9789c26c03d45b0d4b820883a1acd80f0f31ba4bde679f123b8beea129ebcf5e13999d8369a3743cfee4c728d63aaf6f3d131c9ade3ffdbd89"}, 0x183}) write$binfmt_script(r1, &(0x7f0000000300)={'#! ', './file0'}, 0xb) syz_io_uring_submit(0x0, 0x0, &(0x7f0000001a40)=@IORING_OP_NOP={0x0, 0x2}, 0xffffffe1) 01:02:13 executing program 7: r0 = fork() waitid(0x2, 0x0, &(0x7f0000000080), 0x8, 0x0) waitid(0x2, r0, &(0x7f0000000000), 0x1, &(0x7f0000000100)) 01:02:13 executing program 5: r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) chdir(&(0x7f0000000040)='./file0\x00') r1 = syz_open_dev$usbmon(&(0x7f00000000c0), 0x2, 0x100) ioctl$BTRFS_IOC_SNAP_CREATE(r0, 0x50009401, &(0x7f0000000340)={{r1}, "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"}) perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44848, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x800004, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000240)='./file0\x00', 0x0) 01:02:13 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x2000000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:02:13 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 58) [ 1291.260864] FAULT_INJECTION: forcing a failure. [ 1291.260864] name failslab, interval 1, probability 0, space 0, times 0 [ 1291.263074] CPU: 0 PID: 16112 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1291.264574] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1291.266174] Call Trace: [ 1291.266695] dump_stack+0x107/0x167 [ 1291.267412] should_fail.cold+0x5/0xa [ 1291.268146] ? xas_alloc+0x336/0x440 [ 1291.268870] should_failslab+0x5/0x20 [ 1291.269608] kmem_cache_alloc+0x5b/0x310 [ 1291.270396] xas_alloc+0x336/0x440 [ 1291.271098] xas_create+0x34a/0x10d0 [ 1291.271827] ? kernel_text_address+0xf2/0x120 [ 1291.272682] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1291.273685] xas_store+0x8c/0x1c40 [ 1291.274378] __xa_store+0x164/0x2d0 [ 1291.275084] ? xa_delete_node+0x280/0x280 [ 1291.275884] ? trace_hardirqs_on+0x5b/0x180 [ 1291.276718] xa_store+0x31/0x50 [ 1291.277352] __io_uring_add_tctx_node+0x1cf/0x520 [ 1291.278275] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1291.279284] ? alloc_fd+0x2e7/0x670 [ 1291.279991] io_uring_setup+0x1fbb/0x2980 [ 1291.280793] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1291.281759] ? wait_for_completion_io+0x270/0x270 [ 1291.282700] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1291.283709] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1291.284713] do_syscall_64+0x33/0x40 [ 1291.285425] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1291.286406] RIP: 0033:0x7f707acaeb19 [ 1291.287123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1291.290631] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1291.292108] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1291.293464] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1291.294823] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1291.296182] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1291.297526] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1291.318377] FAULT_INJECTION: forcing a failure. [ 1291.318377] name failslab, interval 1, probability 0, space 0, times 0 [ 1291.321057] CPU: 1 PID: 16114 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1291.322683] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1291.324789] Call Trace: [ 1291.325425] dump_stack+0x107/0x167 [ 1291.326286] should_fail.cold+0x5/0xa [ 1291.327202] ? iter_file_splice_write+0x165/0xc90 [ 1291.328328] should_failslab+0x5/0x20 [ 1291.329256] __kmalloc+0x72/0x390 [ 1291.330079] iter_file_splice_write+0x165/0xc90 [ 1291.331197] ? __fsnotify_parent+0x47a/0xb10 [ 1291.332244] ? generic_splice_sendpage+0x140/0x140 [ 1291.333386] ? pipe_to_user+0x170/0x170 [ 1291.334325] ? security_file_permission+0xb1/0xe0 [ 1291.335452] ? generic_splice_sendpage+0x140/0x140 [ 1291.336584] direct_splice_actor+0x10f/0x170 [ 1291.337620] splice_direct_to_actor+0x387/0x980 [ 1291.338705] ? pipe_to_sendpage+0x380/0x380 [ 1291.339715] ? do_splice_to+0x160/0x160 [ 1291.340632] ? security_file_permission+0xb1/0xe0 [ 1291.341751] do_splice_direct+0x1c4/0x290 [ 1291.342708] ? splice_direct_to_actor+0x980/0x980 [ 1291.343831] ? avc_policy_seqno+0x9/0x70 [ 1291.344770] ? security_file_permission+0xb1/0xe0 [ 1291.345897] do_sendfile+0x553/0x11e0 [ 1291.346787] ? do_pwritev+0x270/0x270 [ 1291.347682] ? wait_for_completion_io+0x270/0x270 [ 1291.348805] ? rcu_read_lock_any_held+0x75/0xa0 [ 1291.349872] ? vfs_write+0x354/0xb10 [ 1291.350734] __x64_sys_sendfile64+0x1d1/0x210 [ 1291.351767] ? __ia32_sys_sendfile+0x220/0x220 [ 1291.352823] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1291.354025] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1291.355218] do_syscall_64+0x33/0x40 [ 1291.356067] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1291.357242] RIP: 0033:0x7fe85904db19 [ 1291.358095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1291.362282] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1291.364027] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1291.365654] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1291.367296] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1291.368924] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1291.370550] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 01:02:13 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 59) 01:02:13 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x3000000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:02:13 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="20f0000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1291.408346] FAULT_INJECTION: forcing a failure. [ 1291.408346] name failslab, interval 1, probability 0, space 0, times 0 [ 1291.411035] CPU: 1 PID: 16128 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1291.412580] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1291.414400] Call Trace: [ 1291.414999] dump_stack+0x107/0x167 [ 1291.415802] should_fail.cold+0x5/0xa [ 1291.416643] ? create_object.isra.0+0x3a/0xa30 [ 1291.417649] should_failslab+0x5/0x20 [ 1291.418494] kmem_cache_alloc+0x5b/0x310 [ 1291.419404] ? mark_held_locks+0x9e/0xe0 [ 1291.420306] create_object.isra.0+0x3a/0xa30 [ 1291.421278] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1291.422404] kmem_cache_alloc+0x159/0x310 [ 1291.423369] xas_alloc+0x336/0x440 [ 1291.424197] xas_create+0x34a/0x10d0 [ 1291.425059] ? kernel_text_address+0xf2/0x120 [ 1291.426047] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1291.427223] xas_store+0x8c/0x1c40 [ 1291.428024] __xa_store+0x164/0x2d0 [ 1291.428828] ? xa_delete_node+0x280/0x280 [ 1291.429748] ? trace_hardirqs_on+0x5b/0x180 [ 1291.430702] xa_store+0x31/0x50 [ 1291.431441] __io_uring_add_tctx_node+0x1cf/0x520 [ 1291.432495] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1291.433653] ? alloc_fd+0x2e7/0x670 [ 1291.434487] io_uring_setup+0x1fbb/0x2980 [ 1291.435409] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1291.436518] ? wait_for_completion_io+0x270/0x270 [ 1291.437589] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1291.438734] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1291.439874] do_syscall_64+0x33/0x40 [ 1291.440686] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1291.441801] RIP: 0033:0x7f707acaeb19 [ 1291.442616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1291.446639] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1291.448314] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1291.449845] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1291.451395] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1291.452929] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1291.454461] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:02:13 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000030080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:02:13 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 86) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) [ 1291.505175] FAULT_INJECTION: forcing a failure. [ 1291.505175] name failslab, interval 1, probability 0, space 0, times 0 [ 1291.507105] CPU: 0 PID: 16185 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1291.508287] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1291.509692] Call Trace: [ 1291.510148] dump_stack+0x107/0x167 [ 1291.510763] should_fail.cold+0x5/0xa [ 1291.511431] ? create_object.isra.0+0x3a/0xa30 [ 1291.512205] should_failslab+0x5/0x20 [ 1291.512864] kmem_cache_alloc+0x5b/0x310 [ 1291.513545] create_object.isra.0+0x3a/0xa30 [ 1291.514281] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1291.515148] __kmalloc+0x16e/0x390 [ 1291.515750] iter_file_splice_write+0x165/0xc90 [ 1291.516525] ? __fsnotify_parent+0x47a/0xb10 [ 1291.517264] ? generic_splice_sendpage+0x140/0x140 [ 1291.518085] ? pipe_to_user+0x170/0x170 [ 1291.518756] ? security_file_permission+0xb1/0xe0 [ 1291.519570] ? generic_splice_sendpage+0x140/0x140 [ 1291.520384] direct_splice_actor+0x10f/0x170 [ 1291.521113] splice_direct_to_actor+0x387/0x980 [ 1291.521886] ? pipe_to_sendpage+0x380/0x380 [ 1291.522623] ? do_splice_to+0x160/0x160 [ 1291.523298] ? security_file_permission+0xb1/0xe0 [ 1291.524106] do_splice_direct+0x1c4/0x290 [ 1291.524796] ? splice_direct_to_actor+0x980/0x980 [ 1291.525606] ? avc_policy_seqno+0x9/0x70 [ 1291.526289] ? security_file_permission+0xb1/0xe0 [ 1291.527104] do_sendfile+0x553/0x11e0 [ 1291.527752] ? do_pwritev+0x270/0x270 [ 1291.528383] ? wait_for_completion_io+0x270/0x270 [ 1291.529172] ? rcu_read_lock_any_held+0x75/0xa0 [ 1291.529939] ? vfs_write+0x354/0xb10 [ 1291.530548] __x64_sys_sendfile64+0x1d1/0x210 [ 1291.531309] ? __ia32_sys_sendfile+0x220/0x220 [ 1291.532065] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1291.532930] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1291.533790] do_syscall_64+0x33/0x40 [ 1291.534409] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1291.535265] RIP: 0033:0x7fe85904db19 [ 1291.535882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1291.538922] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1291.540179] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1291.541357] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1291.542540] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1291.543737] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1291.544902] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 01:02:13 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x4000000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:02:13 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$cgroup(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000001c0)={[{@subsystem='freezer'}]}) chdir(&(0x7f0000000240)='./file0\x00') syz_mount_image$vfat(0x0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) rmdir(&(0x7f00000000c0)='./file0\x00') r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x3, 0x0, 0x8000) openat(r0, &(0x7f0000000140)='./file0\x00', 0x200, 0x100) creat(&(0x7f0000000000)='./file0\x00', 0x8c) 01:02:13 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 60) [ 1291.655511] FAULT_INJECTION: forcing a failure. [ 1291.655511] name failslab, interval 1, probability 0, space 0, times 0 [ 1291.658160] CPU: 1 PID: 16242 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1291.659717] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1291.661571] Call Trace: [ 1291.662163] dump_stack+0x107/0x167 [ 1291.662989] should_fail.cold+0x5/0xa [ 1291.663842] ? xas_alloc+0x336/0x440 [ 1291.664675] should_failslab+0x5/0x20 [ 1291.665525] kmem_cache_alloc+0x5b/0x310 [ 1291.666464] xas_alloc+0x336/0x440 [ 1291.667272] xas_create+0x34a/0x10d0 [ 1291.668110] ? kernel_text_address+0xf2/0x120 [ 1291.669137] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1291.670364] xas_store+0x8c/0x1c40 [ 1291.671201] __xa_store+0x164/0x2d0 [ 1291.672020] ? xa_delete_node+0x280/0x280 [ 1291.672953] ? trace_hardirqs_on+0x5b/0x180 [ 1291.673920] xa_store+0x31/0x50 [ 1291.674655] __io_uring_add_tctx_node+0x1cf/0x520 [ 1291.675735] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1291.676893] ? alloc_fd+0x2e7/0x670 [ 1291.677710] io_uring_setup+0x1fbb/0x2980 [ 1291.678638] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1291.679768] ? wait_for_completion_io+0x270/0x270 [ 1291.680882] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1291.682040] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1291.683186] do_syscall_64+0x33/0x40 [ 1291.684002] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1291.685114] RIP: 0033:0x7f707acaeb19 [ 1291.685930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1291.689939] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1291.691619] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1291.693182] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1291.694747] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1291.696311] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1291.697859] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:02:13 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:02:13 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2080040080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:02:13 executing program 7: r0 = fork() r1 = gettid() prctl$PR_SCHED_CORE(0x3e, 0x2, r1, 0x3, &(0x7f0000000000)) fcntl$setown(0xffffffffffffffff, 0x8, r0) getpgrp(r1) r2 = getpgrp(0x0) pidfd_open(r2, 0x0) waitid(0x0, r2, &(0x7f0000000080), 0x8, 0x0) 01:02:13 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x5000000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:02:13 executing program 6: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x3, 0x0, 0x8000) r1 = syz_io_uring_setup(0xc8d, &(0x7f0000000100)={0x0, 0xaea0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000dc8000/0x3000)=nil, &(0x7f0000c3f000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000000c0)) io_uring_enter(r1, 0x76d3, 0x0, 0x0, 0x0, 0x0) [ 1292.093141] tmpfs: Unknown parameter '4£ˆ&û™' 01:02:29 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 61) 01:02:29 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xd9a00, 0x1000}, 0x18, 0x0, 0x1000000, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x98}}, 0x0) close_range(r1, r0, 0x0) fcntl$addseals(r1, 0x409, 0x8) syz_open_dev$tty1(0xc, 0x4, 0x1) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd_index=0xffffffff, 0x8, &(0x7f0000000140)="ef3003e7d4d5730dd9bc0d2116cbd2ec2d4cef0397c67262d0882d05da47c1147ab3a8e1b3dfac797791d00529f0be39c7c3024d4751fcbfb4d3ec4b7b6dc1", 0xfffffffffffffcdc, 0x1e, 0x1}, 0x9) lseek(0xffffffffffffffff, 0xa5, 0x0) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000000), &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, 0x0) r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000500)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) add_key$keyring(&(0x7f0000000100), &(0x7f0000000240)={'syz', 0x2}, 0x0, 0x0, r2) request_key(&(0x7f0000000480)='dns_resolver\x00', &(0x7f0000000340)={'syz', 0x2}, &(0x7f0000000380)='\x00', 0x0) add_key(&(0x7f0000000200)='keyring\x00', &(0x7f00000004c0)={'syz', 0x1}, &(0x7f0000000640)="18726d0eed55eaa57fc580dc3a0b12e0a5ee08da294ac8119c4c73f93694f2a935d17a81959d084839f846dca8739131e4a9c45c6509af44529537eae3a4a4793a9a0aacfd7a75f2b566b874939829b82a35d20d1985a92c5d7ba971251e89286f64438d080e8e214a050893fd3fa27a56032a79c1d099b5108ecb2e5f36d3e7e1c749ad35c2064fa087cf6359507a36eb69853e0cdd920cbb7586aedf5a2e5a9a1a6b8d3cb6ad16918b01d07c92179dfae1ef58835b5fa4be28fbd3b3eac1c9f3cf74fbe20900c55d23902439133eecfafb2e0f", 0xd4, 0xffffffffffffffff) r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000080), 0x800, 0x0) ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r3, 0x8008f512, &(0x7f00000002c0)) syz_open_procfs(0xffffffffffffffff, 0x0) unshare(0x48020200) 01:02:29 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 87) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:02:29 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x6000000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:02:29 executing program 6: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x180, 0x0) openat(r0, &(0x7f0000000040)='./file0\x00', 0x40000, 0x106) perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) r2 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0) sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r2) 01:02:29 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000050080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:02:29 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:02:29 executing program 7: r0 = fork() wait4(r0, &(0x7f0000000080), 0x2, &(0x7f00000000c0)) waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) [ 1307.349215] FAULT_INJECTION: forcing a failure. [ 1307.349215] name failslab, interval 1, probability 0, space 0, times 0 [ 1307.350532] CPU: 1 PID: 16364 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1307.351336] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1307.352285] Call Trace: [ 1307.352588] dump_stack+0x107/0x167 [ 1307.353000] should_fail.cold+0x5/0xa [ 1307.353444] ? jbd2__journal_start+0x190/0x7e0 [ 1307.353456] should_failslab+0x5/0x20 [ 1307.353468] kmem_cache_alloc+0x5b/0x310 [ 1307.353481] jbd2__journal_start+0x190/0x7e0 [ 1307.353495] __ext4_journal_start_sb+0x214/0x390 [ 1307.353509] ext4_dirty_inode+0xbc/0x130 [ 1307.353518] ? ext4_setattr+0x21b0/0x21b0 [ 1307.353528] __mark_inode_dirty+0x492/0xd40 [ 1307.353537] ? current_time+0xac/0x120 [ 1307.353550] generic_update_time+0x21c/0x370 [ 1307.353558] ? igrab+0xc0/0xc0 [ 1307.353570] file_update_time+0x43a/0x520 [ 1307.353580] ? evict_inodes+0x470/0x470 [ 1307.353593] ? down_write_killable+0x180/0x180 [ 1307.353606] file_modified+0x7d/0xa0 [ 1307.353618] ext4_file_write_iter+0x8f8/0x1530 [ 1307.353636] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1307.353644] ? kasan_save_stack+0x32/0x40 [ 1307.353652] ? kasan_save_stack+0x1b/0x40 [ 1307.353661] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1307.353671] ? iter_file_splice_write+0x165/0xc90 [ 1307.353680] ? direct_splice_actor+0x10f/0x170 [ 1307.353689] ? splice_direct_to_actor+0x387/0x980 [ 1307.353697] ? do_splice_direct+0x1c4/0x290 [ 1307.353708] ? do_sendfile+0x553/0x11e0 [ 1307.353716] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1307.353725] ? do_syscall_64+0x33/0x40 [ 1307.353736] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1307.353751] do_iter_readv_writev+0x476/0x750 [ 1307.353760] ? _cond_resched+0x10/0x30 [ 1307.353771] ? new_sync_write+0x660/0x660 [ 1307.353782] ? avc_policy_seqno+0x9/0x70 [ 1307.353793] ? selinux_file_permission+0x92/0x520 [ 1307.353805] ? security_file_permission+0xb1/0xe0 [ 1307.353821] do_iter_write+0x191/0x700 [ 1307.353835] ? trace_hardirqs_on+0x5b/0x180 [ 1307.353850] vfs_iter_write+0x70/0xa0 [ 1307.353881] iter_file_splice_write+0x726/0xc90 [ 1307.372638] ? generic_splice_sendpage+0x140/0x140 [ 1307.373200] ? security_file_permission+0xb1/0xe0 [ 1307.373745] ? generic_splice_sendpage+0x140/0x140 [ 1307.374303] direct_splice_actor+0x10f/0x170 [ 1307.374801] splice_direct_to_actor+0x387/0x980 [ 1307.375361] ? pipe_to_sendpage+0x380/0x380 [ 1307.375848] ? do_splice_to+0x160/0x160 [ 1307.376294] ? security_file_permission+0xb1/0xe0 [ 1307.376848] do_splice_direct+0x1c4/0x290 [ 1307.377319] ? splice_direct_to_actor+0x980/0x980 [ 1307.377871] ? avc_policy_seqno+0x9/0x70 [ 1307.378330] ? security_file_permission+0xb1/0xe0 [ 1307.378887] do_sendfile+0x553/0x11e0 [ 1307.379330] ? do_pwritev+0x270/0x270 [ 1307.379765] ? wait_for_completion_io+0x270/0x270 [ 1307.380309] ? rcu_read_lock_any_held+0x75/0xa0 [ 1307.380843] ? vfs_write+0x354/0xb10 [ 1307.381265] __x64_sys_sendfile64+0x1d1/0x210 [ 1307.381774] ? __ia32_sys_sendfile+0x220/0x220 [ 1307.382291] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1307.382883] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1307.383468] do_syscall_64+0x33/0x40 [ 1307.383896] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1307.384472] RIP: 0033:0x7fe85904db19 [ 1307.384888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1307.386954] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1307.387817] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1307.388630] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1307.389429] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1307.390230] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1307.391035] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 [ 1307.394351] FAULT_INJECTION: forcing a failure. [ 1307.394351] name failslab, interval 1, probability 0, space 0, times 0 [ 1307.395624] CPU: 1 PID: 16378 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1307.396394] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1307.397321] Call Trace: [ 1307.397618] dump_stack+0x107/0x167 [ 1307.398029] should_fail.cold+0x5/0xa [ 1307.398457] ? create_object.isra.0+0x3a/0xa30 [ 1307.398969] should_failslab+0x5/0x20 [ 1307.399403] kmem_cache_alloc+0x5b/0x310 [ 1307.399862] ? mark_held_locks+0x9e/0xe0 [ 1307.400322] create_object.isra.0+0x3a/0xa30 [ 1307.400815] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1307.401390] kmem_cache_alloc+0x159/0x310 [ 1307.401861] xas_alloc+0x336/0x440 [ 1307.402260] xas_create+0x34a/0x10d0 [ 1307.402683] ? kernel_text_address+0xf2/0x120 [ 1307.403195] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1307.403785] xas_store+0x8c/0x1c40 [ 1307.404189] __xa_store+0x164/0x2d0 [ 1307.404597] ? xa_delete_node+0x280/0x280 [ 1307.405068] ? trace_hardirqs_on+0x5b/0x180 [ 1307.405557] xa_store+0x31/0x50 [ 1307.405931] __io_uring_add_tctx_node+0x1cf/0x520 [ 1307.406475] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1307.407064] ? alloc_fd+0x2e7/0x670 [ 1307.407479] io_uring_setup+0x1fbb/0x2980 [ 1307.407947] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1307.408512] ? wait_for_completion_io+0x270/0x270 [ 1307.409064] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1307.409651] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1307.410236] do_syscall_64+0x33/0x40 [ 1307.410654] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1307.411231] RIP: 0033:0x7f707acaeb19 [ 1307.411653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1307.413735] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1307.414598] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1307.415406] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1307.416215] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1307.417023] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1307.417824] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1307.419278] netlink: 124 bytes leftover after parsing attributes in process `syz-executor.5'. 01:02:29 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x7000000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:02:29 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000060080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:02:29 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000070080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:02:29 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x8000000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:02:29 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000180080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1307.589234] netlink: 124 bytes leftover after parsing attributes in process `syz-executor.5'. 01:02:44 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 62) 01:02:44 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:02:44 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 88) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:02:44 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x200000000000}, 0x10480, 0x2, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000001a00010900"/19], 0x1c}}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) socket$inet_udp(0x2, 0x2, 0x0) r3 = perf_event_open(&(0x7f00000001c0)={0x5, 0x80, 0x40, 0x35, 0x2, 0x0, 0x0, 0x8, 0x2c1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0xff, 0x0, @perf_bp={&(0x7f0000000180), 0x6}, 0x184, 0x8, 0x800, 0x4, 0x4c, 0x3ff, 0x70d7, 0x0, 0x7, 0x0, 0x400}, 0x0, 0xb, r0, 0x0) r4 = pidfd_getfd(0xffffffffffffffff, r1, 0x0) r5 = syz_open_dev$vcsa(&(0x7f0000000300), 0x100000000, 0x442800) ioctl$AUTOFS_DEV_IOCTL_FAIL(r5, 0xc0189377, &(0x7f0000000340)={{0x1, 0x1, 0x18, r0, {0x0, 0x2}}, './file0\x00'}) ioctl$BTRFS_IOC_SEND(r3, 0x40489426, &(0x7f0000000280)={{r4}, 0x6, &(0x7f0000000240)=[0x5, 0x39a, 0x6, 0x0, 0x7, 0x9], 0xe1a, 0x4, [0x3, 0x5, 0x81, 0xfffffffffffff800]}) r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) bind$inet(r6, &(0x7f0000000040)={0x2, 0x4e24, @empty}, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)={0x24, 0x26, 0x101, 0x0, 0x0, {}, [@nested={0x10, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}]}, 0x24}}, 0x0) read(r2, &(0x7f0000000080)=""/129, 0x81) shutdown(r2, 0x0) 01:02:44 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x9000000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:02:44 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="20001c0080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:02:44 executing program 7: fork() r0 = getpgrp(0x0) r1 = pidfd_open(r0, 0x0) r2 = getpgrp(0x0) pidfd_open(r2, 0x0) r3 = fcntl$getown(r1, 0x9) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000280)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) clone3(&(0x7f00000002c0)={0x10000, &(0x7f0000000000)=0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000100), {0x3a}, &(0x7f0000000140)=""/102, 0x66, &(0x7f00000001c0)=""/71, &(0x7f0000000240)=[r2, r0, r3], 0x3, {r4}}, 0x58) r6 = syz_open_dev$vcsn(&(0x7f0000000340), 0x97, 0x2602) [ 1323.085851] FAULT_INJECTION: forcing a failure. [ 1323.085851] name failslab, interval 1, probability 0, space 0, times 0 [ 1323.088614] CPU: 1 PID: 16508 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1323.090750] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1323.092793] Call Trace: [ 1323.093431] dump_stack+0x107/0x167 sendmmsg$unix(r6, &(0x7f0000004040)=[{{&(0x7f0000000380)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f00000016c0)=[{&(0x7f0000000400)="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", 0x1000}, {&(0x7f0000001400)="9026751a013bf7a4d8a2e9cd144ffbeb31e56e6eda735327dbec1c6b4f5e98119166da0857de951e214f662b7781626773ad2f1643fd6f05ad7fe92e3b2b8dfb6fc7f692f4b407045e6d56cc56d58a9e38711e6191e8e29495816924503c82975d3df1019208ae6e032b964c042a5631736595538d6ea6bb87b62c1abbf4e68c21dc153afe03c14e52da011008342f92f094d38e0c99b4c94c982ecd4444402ca3b008de9d8e93aa5d3c293ade8470e433ba7a659193dcbb235344c1d8f768d66f917f097139403ee3aa79b6a09e541b53fdae3da18096d013acb383cd", 0xdd}, {&(0x7f0000001500)="8b765520f940dac2217f785280d6f880aad8288f08ea07fe616ca1e563cc804a635177277ca3b0d07c6f6ab08320356b185199fa9ccc1085e44fd74f0fd4ba776a8dff9becbb36a1b0e83e130f9ba88f545748011d64548d6a633f30e992ea64dc95f79367c307f941c4238241872ff916ee935d4c93f9d0c86b86f04c18328204da3b84c122bc77679611148339e53d5707070d5188a6002723", 0x9a}, {&(0x7f00000015c0)="a66b44ff76227948b3282dd70a1817e2b8efaa5fcced23b29b4a279c0f5a4cd68531f8605db90b079565624aa740210ad3a187e1d15ab7203d514c39ed69112449b3209e4876a111430b70b1b87c8fc67dbcd0ecfe3fdbd8e7d8b151f7744cf2e4816c0e0db360f36dd1a434b3af5173b01f9e979d48c46cd4b65c3e78879d517c418fb57283626c6eed739f27dce6e659aeeb9096ad8da42c64bd9d9f3875d61725c259255202b803b6223a70afecd803eabd5fec2465ec2afe8c96211ef4d561e008ef3bffcddd6ea0a455898af6176c41d529252f871d3660aa9dad2be8e91a64bf208b0894994338d273b2", 0xed}], 0x4, 0x0, 0x0, 0x90}}, {{&(0x7f0000001700)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000003c00)=[{&(0x7f0000001780)="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", 0x1000}, {&(0x7f0000002780)="93cff9c90720c4ecc93cd2444e5d998e7f9b2aeda9173910a8fd2a2ac1720e41fa245f7ec25f74e8470554d56f9d0067cca6e0d96e3ce2d5485a0962f442f37c3f93c7f54f28d9cf452f304ca9e634bad016d39aed4eb1b7eb7582ff201b4c67a8e36b6e40f725cd09d5413586fa563b2ff893006c3ed0239e78c09cc78bc8bfaba1462ae90a9a2e99f8b17b712186e58cfcb0d16ded887c8985bd83ce84bc18b4805e21ef", 0xa5}, {&(0x7f0000002840)="60ee0ea99985d21919f1c7a6d74ad80387b3c73f4b096860ba643425705f4b5573d652116d94327e5ed6aec489708fb19fd112317203ad2d60c500ee8cd079e338a1bfe76b79", 0x46}, {&(0x7f00000028c0)="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", 0x1000}, {&(0x7f00000038c0)="243ac874af8094441fc0486e70798819c8bab22eeb3ec12e594a419176726359690c170d65455f051dd6005dd474d2dd014aa5465e05714e39", 0x39}, {&(0x7f0000003900)="54ea7d40cb68b5c2fc2bc9ea63436be4ead0db090e27d43641df07979419bdfc212c2428bb3e4d77cc425eb39324763ade282a029bc4282f8a6290b5f3db5d6f28c79f527ec9cddbe113f0308433ee832c38a7ed", 0x54}, {&(0x7f0000003980)="6cda207e53f0b80890fa7a321108943c83bf3d1fc3a4f757414ac29da3a845ea0091fb99e3323bf60452791c7c4a430832e7d0d15fecf625b14143f68a1ee2f78217a0909248d578d85c293f46a1218110bfcfc45a3998277129eadba9f9e792be8df2393699ac49c90be3c2e579ed131cb4b07daa588bb197cff0aa2d02bf72514b82a8b779b5e72c52ccc7072f4282217cf43015a0a3de654b02e8e48644d4419acc5e427079d404acee57b9e5e4dfa84bf2962ac85c905a724ac186c824b8aeeee55c6c65efe597ab96bb54f733873d16b076f72e88e5f7c6594d4072f509bbb942f9330e7e5ff73a9e01d9956fb8cf", 0xf1}, {&(0x7f0000003a80)="07faa1f3b1ecec97e8ded8ab49dd99dbfbae8212252c17343b3af63fd7eb3c411a90743f9f8454fdae2ed3da37e78ff39e5a632d5106c9d2c113d708e302bc548dbbc677125cf09d7b2c", 0x4a}, {&(0x7f0000003b00)="b21198ee96c8f7238d4083d9669cde7dafb9457f46faee4665018ddf1bb4e881c1cf5c349b6e2c09d5fc18e198a38e7cf7d10c07008c48f524b2ff633a9d02fd3cbce05156d2fdf39cebce174ded6b780c22c33990d260298e827853bba2eb148bedfac04da9cceeead63ffdf23b89b3fa798412e28a9d6c65394b554e445805c8cc266c2d1b20932c4084e5c19098682e82297b2dae5d551134b0840eaa62737bd7dfd041701a5c6a29b2b64c8a036f001948170a0fdc346b0c7b03243bb616d49bde838d9bf5489c692c6350949aa875a7843f3f1a67fcf5082043630e2c81b6f3d3d5334e7161cba9", 0xea}], 0x9, &(0x7f0000003cc0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, r4, r1, r5, r1]}}], 0x28, 0x4c000}}, {{&(0x7f0000003d00)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000004000)=[{&(0x7f0000003d80)}, {&(0x7f0000003dc0)="77cc729fc02783a31f7890b53f42f6919b6f412e49a743cfe9ce0d1bcd477c833e369276ecf9446f83189cb40c0f08abbd53cdc81a743db3aae44f483358741af5d9c57f39e584f917a634b01dbf2c53a950281fc54362600db646767ef7deb3f083d66d86a533e1e3ebd739a33114dbb022d93bdfc691cbde67aced7f741fd5665e520e39fa20cb9d3b5f5bb990df148822c2c660e804e401096ac6a6df1ef567925eeff4880942888dd113e92e24", 0xaf}, {&(0x7f0000003e80)="b05c1876eb4c43322dea025e194637ba18e9f0aff63705ea7479520522c7d8aa7b0a61dd3d0a3121919a6ce85dca218b71e421f3f044f0ecda9ff19f34aa773b8f716934712ff4f5df489daa77ee0f3dbe4642694e902037b27fee645944b5409e34b2982f67a6dccc1e7005ba08ee8b0cbd5b81182e82fb66fcb2953f9f117fb96cdc89d7c11f3c5e1bfb06fd4f10bee0ace4", 0x93}, {&(0x7f0000003f40)="757a4084e4a1857ef0f1f1a618dd7400f1e9b33bb0aa0821785b4f8b596246609cc99697cd51f4d150db51edbb7311acee06ae11ca75923e69329a2cf682b2a657cb626c3a29400ec03c9e50007484d3c617c0713e432d4b79c26e1815a5400aadcd2fd6f4c200b121a71643b1852171710bb74d40988c7ac34743356bc2d85ec81b11fe2c737875b0606dcf357ab365381e328b8461e15633e5267e2f9d9454decdff142807dea5678bb8d535b58e99b9977019de0b0731a0805cd3d478", 0xbe}], 0x4}}], 0x3, 0x8020) waitid(0x0, r0, &(0x7f0000000080), 0x1c0000005, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x5) [ 1323.094498] should_fail.cold+0x5/0xa [ 1323.095731] ? xas_alloc+0x336/0x440 [ 1323.096515] should_failslab+0x5/0x20 [ 1323.097312] kmem_cache_alloc+0x5b/0x310 [ 1323.098181] xas_alloc+0x336/0x440 [ 1323.098937] xas_create+0x34a/0x10d0 [ 1323.099744] ? kernel_text_address+0xf2/0x120 [ 1323.100744] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 01:02:44 executing program 6: r0 = syz_io_uring_setup(0x12e8, &(0x7f0000000240)={0x0, 0x4c77}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000080)=0x0, &(0x7f0000000140)=0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco}, 0x0) io_uring_enter(r0, 0xc93, 0xd1c3, 0x3, &(0x7f0000000380)={[0xffffffff]}, 0x8) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x541, 0x1}, 0xb001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) [ 1323.100766] xas_store+0x8c/0x1c40 [ 1323.100800] __xa_store+0x164/0x2d0 [ 1323.100822] ? xa_delete_node+0x280/0x280 [ 1323.100848] ? trace_hardirqs_on+0x5b/0x180 [ 1323.100874] xa_store+0x31/0x50 [ 1323.100896] __io_uring_add_tctx_node+0x1cf/0x520 [ 1323.100915] ? io_uring_alloc_task_context+0x6a0/0x6a0 01:02:44 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000200080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1323.100932] ? alloc_fd+0x2e7/0x670 [ 1323.100962] io_uring_setup+0x1fbb/0x2980 [ 1323.100989] ? __do_sys_io_uring_enter+0x1890/0x1890 01:02:44 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xa000000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1323.101006] ? wait_for_completion_io+0x270/0x270 [ 1323.101048] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1323.101068] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1323.101090] do_syscall_64+0x33/0x40 [ 1323.101109] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1323.101122] RIP: 0033:0x7f707acaeb19 [ 1323.101139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1323.101150] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1323.101170] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1323.101181] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1323.101191] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1323.101202] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1323.101213] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1323.116063] FAULT_INJECTION: forcing a failure. [ 1323.116063] name failslab, interval 1, probability 0, space 0, times 0 [ 1323.116089] CPU: 0 PID: 16504 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1323.116101] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1323.116108] Call Trace: [ 1323.116146] dump_stack+0x107/0x167 [ 1323.116171] should_fail.cold+0x5/0xa [ 1323.116197] ? iter_file_splice_write+0x165/0xc90 [ 1323.116218] should_failslab+0x5/0x20 [ 1323.116240] __kmalloc+0x72/0x390 [ 1323.116275] iter_file_splice_write+0x165/0xc90 [ 1323.116296] ? __fsnotify_parent+0x47a/0xb10 [ 1323.116333] ? generic_splice_sendpage+0x140/0x140 [ 1323.116354] ? pipe_to_user+0x170/0x170 [ 1323.116391] ? security_file_permission+0xb1/0xe0 [ 1323.116417] ? generic_splice_sendpage+0x140/0x140 [ 1323.116440] direct_splice_actor+0x10f/0x170 [ 1323.116466] splice_direct_to_actor+0x387/0x980 [ 1323.116493] ? pipe_to_sendpage+0x380/0x380 [ 1323.116519] ? do_splice_to+0x160/0x160 [ 1323.116538] ? security_file_permission+0xb1/0xe0 [ 1323.116569] do_splice_direct+0x1c4/0x290 [ 1323.116590] ? splice_direct_to_actor+0x980/0x980 [ 1323.116610] ? avc_policy_seqno+0x9/0x70 [ 1323.116637] ? security_file_permission+0xb1/0xe0 [ 1323.116670] do_sendfile+0x553/0x11e0 [ 1323.116704] ? do_pwritev+0x270/0x270 [ 1323.116727] ? wait_for_completion_io+0x270/0x270 [ 1323.116753] ? rcu_read_lock_any_held+0x75/0xa0 [ 1323.116772] ? vfs_write+0x354/0xb10 [ 1323.116798] __x64_sys_sendfile64+0x1d1/0x210 [ 1323.116818] ? __ia32_sys_sendfile+0x220/0x220 [ 1323.116846] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1323.116868] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1323.116893] do_syscall_64+0x33/0x40 [ 1323.116915] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1323.116929] RIP: 0033:0x7fe85904db19 [ 1323.116951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1323.116962] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1323.116985] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1323.116997] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1323.117010] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1323.117022] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1323.117035] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 [ 1325.156811] Bluetooth: hci1: command 0x0405 tx timeout 01:03:01 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 89) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:03:01 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:03:01 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(0x0, 0xffffffffffffffff, 0xa, r0, 0x8) r2 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r1, 0x400c6615, &(0x7f0000000440)={0x0, @aes128, 0x0, @desc4}) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x40010, r2, 0x8000000) r5 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r5, &(0x7f0000000180)={0x2, 0xffff, @local}, 0x10) setsockopt$sock_int(r5, 0x1, 0x2d, &(0x7f0000000040), 0x4) ioctl$BTRFS_IOC_RESIZE(r0, 0x50009403, &(0x7f0000000500)=ANY=[@ANYRES32=r5, @ANYBLOB="000000003030303030300300000000000000303030313277e09d7db8b76b"]) syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x1, 0x0, 0x1}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, {0x1}}, 0x10001) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r6}}, 0x7ff) syz_io_uring_submit(r3, 0x0, &(0x7f0000000000)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd=r5, 0x2, 0x0, 0xffffff4a, 0x5, 0x1, {0x0, r6}}, 0x7) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) syz_io_uring_submit(r7, r4, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x3, 0x2, 0x3, 0x0, {0xa, 0x4e21, 0x5, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1}}}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000240)="35397be5551f622733b48b4b96eebcdfa23a72a52647f25376345420491939ed2c23a3", 0x23}], 0x1, &(0x7f0000002880)=ANY=[@ANYBLOB="d0000000000000000d010000ff0300008a04d454102767a95f13af71ecbc45c976e26f591b1da1469ed16e6814e8303129258043addc75c119ac939f3886cea3b08ac9e57033c71a6d9e993443ddb75ffd21f5de890f120b6938b65441164c2fb2b9d157abe6a32d43d3e1b357b5cc7350efc47a141e82c60d30af770d3e4766daa4113e559fec04def7d7721e44cf9ae487f088debced96be0ad8b75cb11a1dde2f2830dd4e523fd4e966a0e8d4cab2fac61769b690205a52627d62ff36cdd0bf7c63c119eee86e407dbc7e9834000058000000000000000600000044070000e9892adb9b6484c10ba206df36a05a466654e509d1486da154a4fcfd170e027c188d9f91c824a28126f80f424c3e3ac7f52c9fe85430538b403682c8b1cb57c4030000000000000020000000000000000901000002000000901884d7f0abd814826ebe3e0000000098000000000000000401000008000000c16421d6a59b0a2981d1c4016e1755bb65c743a37cd36dad8e5b41cce5ad90c0c872066388a646cd9061abac56165562ed3bfe2e936f1c5c1f195711c232fd7b31a390e7388d865b5628f36f540b46480207a22eda800f9c90018098b8432a3732b265275775ec2b4d75d7a187fb69e9eda861d7064d620c1dc46af910b1822f592f8f65fc000000100000000000000014010000030000001010000000000000110000000500000021317695121294ec8b5229eb654b92751e70c1820b465c5384c4e73b0eaf9cb953ace353204c6ce9b7c878b294039d57972350f3aa12e9fe113668895eada502de984a650a08260f8982662f0c630925e6ce149f89ad8955b1d843e845f0bf5ba653a70c2a27be6aa2d0e5726ded38acab41c73e19778bac0957754cdaf02a739b0bb12d92bbe3ab28ae7ba1ea09019585d406596b67697e5377dab899cead76ef745b1d43d39b2b641d6e88af8dbea3beebc67ad61a2dac5bc8112ae66afc1d70d5860f8d9115ebb2926b144ab4d6b6fe9f1acdfc20e2972fd35a05e085ff37b7ad8ef6c811b5189f62322fb233053a60984bad68674fa2aa1e53e0116c0f82975fb9ee721b478216d8b5dba905eeff6c1808e9b457e22ed11342b2c921382934294979debd617a32b3ed17185d02db8e3c12833cf4161ee47edfe1692524f8a9f9a0b3f3e0dfbabd8d9929a34c9514425c54c8fe3e62c7e2451d8aa3d5fd42499810fe28b38825b936994e8a4cd0f5fc019a0d610f308fb31071391769eb4fbaadbde0cbb90954d0acd89b44e93377b1d6d2a65931a438db7b3abbd86dd2b260dd9809c3d3656dd807f48b92a55ec6fbc66507f5575509e9a3d6d074c54a428b59cacb605cdc92ce316dad340feccee171439e6548f6dc2f550e3f82f74231f7ca84c75dbce9559d935c014cae1561e36304a44b2bfff117cef5a24b0f531f91725a7eaae398f2339157e1676dc3377507b4c435ba1d4f2545b236ea4596ef7f05d14b14ec899493f86ab79ff46fad00d5b044e2c8ab0adc09b93a79257bc745874cc3066b4e45ae4a7b2d6e25af5301205e7db30f1c145e5ae1ff2b9ddab645b8f167db922bee1a0c3082d5354b1cb30b1b1c4585060ceaa071a8fe270523a2df55ba5acdf9e8582bc3063cb5c082720ba168f3b5b81a8a38353748e9eb110ffc3cdcaf80412dba42ab461fe292b881757c21b74d2817461cef3a7c5101051aa3d3902fb4c1f7dace1544beac71f5845397e443eb08e5e9437d479d5f8287d9939fd65948f31f8baaf7f949838cc705fe23ef2fc73a3ccc784cf5d0fa2505d63e814777e757630e8657a5300ab2110a57ed3099d890f3ba44bc3d4c638a340cfc1641554aa5cfe19159fceac1fc948f99d2cd6cf683b968eefe4b3d9e2b275b8ecb795698e14b6c0f386c6e7f60db5f9135b42a550ef864022b8c9a7da746b3ba0fd098fb9232ec14368a05199c47cf4da2a6bebdc0fc015cbefaa40e5e7f45fc84f9daa70038bfd7b88a0501039460b46391af70ebdd67380c2c2b60ad6a7c12be9448d36f76a72462d883defd2e6d64c53a1b11482372d7cc4e1b1c25dc509274a5d53f72e24de06a7a864d47fd06b4b1349f604474084b082cada9fc2ba34133639d4d40d991c2dfc131d0d7345dac3af907fd80cf9ac566d0661b36eda49e07e7c395351343c004de9b2ec020cc3b46779fcdf04106e557cc6b7a4c3e6bd4234d8d756a5f2527f2f14d38316ca6509a7c894c27d525f0d1dbf42cf2f45e14612f8a554b204cc5ef4bfa53000f8b603317a45689f81a62b2847bc29ef14eb910e098c347418abce392f95db51d4d687f448ab64ab8779f4a20d09b091b4da099b692485254f56c145def14bb5f55f64167c285b2dd42791231b080c8491bac7869fcfdb69a28e2667b51dab4ae8bda8f72a464e7ced088248d755e9443e65fcca0cc4600632fa35aa2846739d8e86bafba2bdc4b5c83be8869a18c71e9dd5b6f0b0298489ca0cb5145e16e2c6e3644aa26185667cb12c7f928ab1de2e7309a88e97a492a3b11460c85b2f9d3b86220c0bf34ebac7b2f33fb80309d33da0100cb762b60c5ca0f1c291578dc6fd19103b86739955b54a3a26f8f51d0bf0bff4526f3c47c6bb27f1de91a5f81f4f8f2820391f7c591179998babf452058d64e0ca8abfefcba977f7108e28e2ed4a8493beaa9b829b7028646f930f68491c21964a9d48f30852b4ad19c35e1cc3099b51f6e05ac1601bb42f4b851fc1b3c17ee216f98ffa3d11eec7ae680b0105c27db5161a2bf0af51b9c536f00f8f92068699aab286e3697d4e2061329a712a6639188068a5d8d4302bfed9dffb0e3e67fd56d658a612b140b333b498e6aa520d19e40ed1e7bee76b0d5acf87da58ed8a881f5d8f2fa87cc0ff074a07d06a94b504bf5d4a4fbc36c9d13de9528a1d8d6244ad6c696fea6cef95b9aad81ce789a3a8f75d46bd66fd5cd161848d7be75081212c56656b4796fed168264a06028051db7393f2ef0454c0678e5ed4f35956e9897fa69c7262cd9d5d89d7756ee0641251294834779ef3dc17dd63d735cdb6d407d6c89771f2388dc2a7837476828f03712b4e03221b605ab1c1bad9062d4c18ead174ff85af8364d80323fb2a5fc2ac777223914ee889ceb819eff62434f02abe1eb31fa66074c7fd780e6685dad166dd0e9df35deb8ef0e732d27e3c5b02df3042a3f98d3b0e2396ed44b8c146c433c7516d4281014085684456dfa0f32ee3c7e16aaea1c32889f933b2849575a3d648311687c57e1569d98140216db9aec32b01796a1eafb269c416e801a8fdbb0be90fa90f1724a0251b8e4034f0e3f627896fe80d6041f0c7599685d2a45eae43f56bcec7fad1c4581b410aa10bd420f36b84023ba781b805d4d846aa049094dd0b958b99db3d2a70809d31ea8f322e105c5de0aaea83eba4cdda6ebb64fccacff4336d4c20d7a772b7f990888172833f07d39a8a4af8d6984c805360c1256cdb311b1a846beec0fcfe63af185d2fdd378d320cd3810a8201b5c89818d9018f74be7cc95ea231e09d3c6d1b0dcedef7030d179bd6e6564e439e00f6309b0f549e3137230ebaed46b242d272547a75083315de5aed3cbe133f5d16bc61d0a6c5ac98ee0b96af5124d24f2023b204377c2a7fe2e39d6b3eeb538a4ab3ea92882fe7ebbb6a2f42f2efde689de6e31fd765a862bf684f21c8755368d01726df42e1000b9831dfbc57acfe12291e503b91e9365342eafe607792b35f6558db0ba09925b2c8ce41e7ee4b9943ce2ac0c781f2d98a780eeb74481cb03a3b755ec208e5c707a9a49e11e7e0cd065267daa2b58debfc4aa8d883b7c688eaee43a69b11d46ea29bd6898eafc93e26ab6556ca180ef64ae7b78cf7297c2e86d5e90e08b1323e50c566747274d699df19afdde69fe5875b87044b40dacfb334cfd181804dd2682e4b2acdf256b0f00558da0c5de7184f7fb626b8be3e522ec566cdaca44d118fb5497fa9c5c67ccb494d0cd096d0c183bb5bfda1f71419224a4d86b99ce5ae59390de64188fa2fd2866cb8f035a567602a9fa4f76a411676cbad46b829d40b2d09cff1e940625deda7bfafb82a0e36b8f16646e392e4d1a621c4adb3c5df68216779dab07c85d16c449f86b694ba63b4273c22dcf19a580fa02bcfc3be829ddbe933871600246d383e7a607632b8206f36ffa714e002af3a539c250c3950f97347cb12a3aa480fe1c9e59f4f8acc153fe2b4d78e0b46b59e166d5579e75ef51a8bc67192ba21aa0ccbb8b0684026c19e9c417051085e29a4644dd504caa15fd9cab8c32522f85d87bcd5486304038cea3bc8c575c6c8fefd8068b99b31bab2595a8a4a92978f3b5092748f1adc81749eb1b22cf0b457d83293e155e5e226558ff084aa9fe3e7b1458f554b458883e8bb70d4e4dc97c73dcdd38c9d540f9a43a8975d9e6fe4a10359593e01c13d3217210b54bd3e976391aaf46421806eefaacf96fcfce634c7b710c65586b1eb4209e8145b0735ef57d96ba6f88a293eb4a25f6f916b65dfe168b0ad970edfab142af09b4172b8ee7587c60855a14fc923c82bf778cf636c9cf0b16361fc509e12875cc632c9831b3d0b6f4712c0aae013e1c7f8a0f6bf6c46eff95c313e1d0bda387f928ab1f5dac6e1d4383107726125fdc93830df9238e91b3006cc2887ca588d5c24739156ece9713865f07bd374d8623f8612425415800715a8e5bf73b330a10d31020731cc13bdc2267b8287dc1ecfd56428369f759ae1a75c43bf3c75c7ada116f4dffb7ab39af60560e6cb936afc17069ba2d72348c74316bd98eb3b17d9b35ebe165c9e36cfc8c026dab60e4eb1cc6a7b0e8305143eeaf80134c8513073662b94aef3fa4dea015e5d0f23a799ab32f5fa9c90201f3a6fc86ff8bfcea614dcef1488c5b6e658345df44f38b3b64124c08d2ac31b4c533f85a81dcb4dffdcb9823e5c62483e3322860115c2200643fec690e33608eca94ffecdd9555553d819041b8de849b45680152c04fc9fa9b611b319a0b21a47ff205e98a74a2a818524c8df55cf94e8237ecc2bd851d8c3cbd51737173baefcdb4b2df540069f8a0844e45d904daacb2e1d82fe6f96d2a85b3cd3b294b1537610797ad6d3c2be9dad5c16e4894eed9f4f55f5315889edc5916869ea29f2f3c83b47cb5dc3fadf104537dfcc0169a0124647abc048ca95ed71243d9950bddbd997623d5f41b73782ed738e977bb2dadd56d2cc4df716eea6b063eac63482dbbb936966a9a297a780451c07dac734576ddd1dfc65b3f85a024ebc2a7d746d76ba4fb1626fb57c6acad74c898dcbc236bce75793a7287cbaf8cf73b68f24812a0f5ef9781cc3010439ee5849ddd6d29dd248404878f7181a07a347ba6f815dc9b2750427240ba010caaa415335c28f37a20e0775ffe8606df2bd8cad9842c25c95a996d0b87c667460108217d0ba2278aa5c126dee90301a815200f5db0cfc948ab48a5eb11b6b710b27edc785a86f78354a48ba825944e8bc66d59cf676b23808cf46221db912d26b21b5ebfb3106ec7500a138473148c3414fcb4a222016f9b737ef3d5b440c0b46eaa23634cb1cc1999bcdddbfd71dc60758519bc526e15dcc84a3168b8a6cee8c57d768cac1af4666a1a8da5d7535f293a74bb7aab1fa8d2ea0e3cb8540ef1023b59d7a40da12a446830fd84d15c3cb2c9741c78800c0e665a7df68d86f79bd2e5eeb0855732edf1410bd5687306a9abf6ce442e66df6e1d84210b03138b5be3ed4825c3335384421e6d2f8665cbf5651ff6ade8df8edcb9ad193af83cb26604aac4fbaf9fa8b008fc82fa7f68aac6cb85ee7130b16b31f11ea5ae04743f583f2aa561c73c346b0fb1ad9b653bdbb05272cdb076847c2a77755a8e161dc73d66dd12fb4e2b61b9a6b879b61fa6f81d69e4038fcf336dff3b7b02ea6884dd0d2db963418da7fdae227c4baed9cf216b45673be54dae62e82d21316a4b17295ab63537f46150414709d1279d46f0568327ff4b1b182bdb57771be6d06ae48545647cb7717b914621cd3664cb4145fe6cc8157f326cafeb5ec3ba8c05f1a045d46b89015d9334aebae3d38742d5fff4e207d9249b13ce84eda727d7756f91ee7faefcb74cf1a1ac564cee63e76642992c7fceb0f0fc0a0abf283d35932ade2c78a3dae78e89a502faab2f2753ad800862f2fbe62dedf7b249a5f89304c6b078ed65b00a8b4e9dda495676232d3d75f6dfd373a64c59dd19cf925ff31fdb1f3ce75af788000d9e78f64b57edba8c9d23a7683ea7eb7f7b502a133f25853ee50d3f1f7205819a725bf8a5fda2e1d46b8686234dc8c0f15d71465a6a2137bf8f86311dc343b440d4a6e63dd2acda8fdf65b421248f065ccd74c1d4fd334879d81e7d35435d0bce289aa2a7822e6b437e71b95a60315a947d01e1944c2a3a7f8205b2db7338e27f1e7b04f880976803627ca549f1a3beb001498a822e04effb7bcddda7844fb0d8000000000000000d01000005000000f117b922b732f7104a7e405a2b1b3c75349b68d9a554fe9d344e27583bb964871bdf4118f7600f96b369542925b4daa41bdb47e1ab6b841fe5a38ab0cdfc77cc5a23e433f539f22e0cf7cd77822641c9d0dacd1c986980ad615ceeff8f7a85a715a20751a470e09b7b31a46592e6f63f0327522d3a578b282b59269639a5ede9acd8c50de3353206a34d164aaba65613c3c5b1c8af90fd26c880f7070587729b40d9a3eb74b938bcff1e5c9860c3f8571dcc92331fdd31bd871a794db453ef72f68761000000000010100000000000000f01000000080000218c9e72bda2be01912b235ddffa0309a0ed4a1a17588591e206a9252aeae37f2cbd33db80e5050ff149535ca9cc4be052fff5dcf39f67dc23853a063e921f61d2085594719333c33e3117b5a5256d613ae2fcb0e70b1203e9fcf808b45e2c59aa5b876943768a95bd51973cdb6cfab3cf8722b46c7cbf39090d8ccb62263c8d654b08209b7fe6db9e8458e5315fe869daf54fa97d0d95738a6c8a9a2393ba59b21fb87defdf2e16e3962760cbb93f67ffa1f623385a284f3e71d051ba9aff5566d71289cf9832d30c50fac33a77e91c4cf397395715096e17f65be0ea27e1a6af839bd12ceb8158b0b34b754952ec601bfe860b3a1f9f5882e79b599fd3f338fcb115f967ba6d9f9a34ced3c18c400176a7afec3a7e941c72d7858d7f17ba9390d20a0e5ecb995937c8447bd2057ac3e5e1de576a8741d283b31e5190f24523fecf35383afe6e9076c62cbc35a9d69ed28b63b6c6cb28b0c41fc563dfdfa5ef66edbd6fe9c98b307fedf578a01c618ed64fa5780c01268cdf47d3c640cb677680ac2ea7041cc4ecfcf4644e80de74ff7e7d052ad8cd77f7251dc5b3114c9b5d9d755e284fd10b32a8d994e2d5ddf741749161d1744fefc5ca4ceb50867f93e482dae8d7cea4df4834e1fb811eb612ccaf8abb457e098b61df031e724660b8b3ec26c0b3d2c195b6cf74e45a6f64ad88bb528aec759ccc1dd4e257b00830492b644350b34591aac784db0e319245c0dde5d57623dd9dec7343e74b187f68e254c53c59789ccb7cbbe4f3cf8d93068955d36975f682180355585624dcdb95fdd1e0b273127748b9ff5a9d2d6c06e3e1b71986316e0b673dabb94ce4d728cc99f72a70fd205984ccb9dce77da55ee3e945dcb108d4c86e5a6d3728132063839c8e4c092b265e121117d632a37d938cabba76758921466bf9e87136fba2e09f3f4608d41276be0b91b5283dd36bd97eaed5409a26453461d4f42fa0e248410237a29cfbfaa447fee5ac166188c7bc8032626ba58f54548ddde855c1ad5da85a447818b8aa57c565e429e538e94fd12eca93a93cd03dc167342022590e07ed29bd5fa874cf79cca4b3afb3fb432369479748cd5a66890e6de1e939542cc9cc929b26b4f75f46bb1070f8c43dab859068842f485c75b08ea53993b13fd3b9b574ad38d86e3aa1e20370b408a4cc6e2fc8f619d066bdae3117a13ce7f5f7cc3ff91bde692f8099287807d7e0871fa66369ce109fda5d389eeda03f916275fdbc18767917e7bf66a061c892367ba3e526dd4781702a6195ada0e494cbf483346fd9afa98aabaec420b5fc6fae9ef2304bb63e11d26b8ad841e6bb55d5eea0b24a7e6e14c3fd090f0fc09153e225198264a3910df1427407a66e8bc4f4ea28c99224f7b30f9a4c9371197adaddb90f2e3c1c5ac3f61de382253d5c0a47abebfb9c6c8c670807651f0fcc9adcfab73ce4e5e56a32f10a4544c9bb697dfc9f4cc9a2fd2b1923b632352dedb515cb35d64b80df5e4bb0703dde4f467150fce2aff1e6491b715609104771245cf37eaf7cff55750907969a421e62fd698b635bb03eae2045976054d49e78f45a5d211a023fdcde2517f5268a12ffd700b3df525d3614ec4abf2ba09e0e45be934cf852f9031ba8853260ef0903466e4ae38ddd427ea3b721e85b587f7b24af2734e43cd9dd679f3e32f86089175090c92fbb19b92b5e60b5bc93751bfce5ae6882d08be35d0ea0973d5294ff9533c34bc5cbd2d27e6a2ec87cf6457c060031dd171c69d219b78561f79867bb553dde6d2998bc93ff6a01ec10d85cf0ce7c6362970993a18db6f385471a16c4794a41cc012e4c9a80e3c1c97ddcff7de61c87072eecaf8c43ae6780df8566094ad56097bfb20b86c20bd50bd778937fa6c45776035bc7024333705788e6328120b0dcc4ad2646d1afa6447f63169e886cdcc2a6dd5adc2754f15ed441da83be1b35c0c1b5c3aa287021c5187a44bef31cad258bf713250e6ea60db1886ab13007937506f0c2a9e09f3dae5ac5051aa47eb17f47b91e2fbf46ef58c0c5b5c98748713e7f8df1926ef07ea386342ac4a083322efaf8af5541323335403cdc39d885caf54d42e0092ad1fe4d31fab34f50170caddb328531723347fc644420db6c5a4d82a20779b21772fe4c51557accd69405e66918d85cdc48fbdaaf8b0308a7a70c8e36cd21e1d588490cc874e8cd6142e85f05ca0b3e5b5a1137a4ee965f63217729794aa2f455face735c6a074ef82e41896f310b467c9f3de5b3c4e7a7cf9c00874e94e6dded40a03db80274e1ceedac18e5cc1245559e49833e369ffa836ed70fb3b1229ea5e3be6e5a738da326bb474fe377e7f9d8152636904d50903ed27af8d6fc34f17455dff60a93385b977a2304cb0f010a1a04fb46b6f05f4839077c1a0aaa14ce6e6e6734ef201a8968003ccb9ba0a7f4d24acfa3bb7b5ab4d79f5b33e2d94a0d8b561f7ef56cdd7b481e435e424695da0c4579847f92e9bd53968656906910c8af16ea69e5bf9da057900975b68644528f7e113d7e49b604e32725cf16243292883ba9b09743001f058d5574110659043fe428e14a1a08e76395063324d09dddbcc588dab39a3413666453554196b3750d0d802f6af4d1c3a4350cafb208ee9f45e7a12af68b20d7754cff621f5728886ba3332684d318385b192f791a1318acc5395f13001b351de19ff5df3da060afe1544b3e4ddfda96eefc1bdf0e96826ebce3eb310d09e0cf36032af1fb31c43735a8c5367ff0c6b97b4856e8b1f156d3b9c1497aa9cc8ee8b415c922f764863c2360cc3c75c9a4d8a59dc0fe815f4bd064f310e71d003a4ed084c5e62bf5fe587b3163d0065f1d0e83db934a4f04ef757a49f4d34985ac8e3b0415cd10ae98d00e9e6eaa2e9b8925e8c8ce8802a819b2430e229771a80e568816551fc7c67a73c4bc70eaed737cd9a4d082a3b7f10f83d53d325adbfe6a58ff7042e266aa020f1003c2ed1fd376a16eb4e6f55cba48cae80c59d185e4c0a858aa1c75c88a65cae840c250b5f994c87e81da35304039fd10b4b0fc9a6da0797b4378344425527407d7700302977a993e58c96f29e094b5aaafc7a7a9552ed2c42f858b101adcff0ef9c99ef6f4b0b06b368b7985e20eb178d5e57e38f3d295a728603bb4c436ac71034488b049c711568c257dd31a032c1fe2cf27af036dcb93ededa476695823e58b2aa0356e9079214b7d9be360e673ae5b286d643fbab588a6e05f5a500f097a7590aac4a9cde596b71e2077247d063e76d35ecb4924f12524946a29aa9cebfd13b2dd13cc5de5f6e34938f912d405c9e33a6556caeec5f8e72ec4e94ccc1cc94fc2b2edc5bbbdef85c6d24b7672b126fb6ca8acbd73cd3177299d7ca10dd849f94ad81b3ce9a3cf7e79339afa1cee0592f15993b5189955d4f6eb3c8a4578e23995fa17a254040f82779d05e1030e3a8fb2249d36abe0fd91ad0a05dd56a2c22bdf319b7b18d208d1df3893feba21e7af23bf2a17cc25fc6b99aad0ad6a7a55acfc6a51512c2eaed6a27b4fcd71fce5d11644a3e667a8b14c6b631e34cae5806a211d06899a5bc7afccfc3bf9d71406d1bc38aa153ec67c4c3d78cda7981c1b7491a85e2af936fede8f9250b023c9cac3f03977529182fb60da1685fe61a0670bb248286f21c98fe62315ca747a01df0dfbd0dd4d1b2d69bcca752df86b4f372db440c574d872a08c327ec9d8c24666bd230b379953f6c20552d781e447815095a69b4336e35c9500002c45955451e76b91bb81299371ba259e40f9156ee1aa767cdecc108fbd6ad877addd4b0e1bb6149471f981fb53745164dd4707f11412fd7cd2f813d71995e4870ac54ea73eae1cfd65165c23717c2547a7c3f9c9a262a900d9b9bedf4ba7d7a0caeb09ab7a2e06a896d7f2cba772260ae6a0a14178d356d418dc1e7fa6007bbb9544b2e975954712ca72345c5f8b4d3add1617f8e60ecf70b32d5bc5a9fd07c5c35bdc5910f101f2ca9b31bfa05e5e1a4356875d95cc0f4ca1823e64e70e21ddae31882a80823632614c953bb4b77d8b997e2297608c09ad303e6ec63c79e658add5146c19ab5f9a18807f2a611881eb8cced8e23cbcf668e8b4057feaaee125cafbffeb86f723f371e468280981296b29d6e28151649948a588de0e8955045d9753cd1a37c5e4dcd3a9bbd587a5989c60daaa68d76b78c78136b43febd83b24af54bab9170f7fa5298f6ce10990be8203acd227f138f8f418a1ff00f2eff658e2a2e0e7cf345302948ed258351f9dc2dd5431828eb4c400bf392cf6da29e9c310c8a4b07b07867b724f87ff7d38ae85c1729a54aca17479ad458b0764306a86cedbd139e096328f9acaf981c21496b29571c556aebded6c431cc85f6d7601d96911c8834266e353f088e9e615337a84fce2fb6eaaeba35339ebe6f102648379c79256379d31494258457c344388b65f25546e30878d3c08f94379b6283fa8133c3df2a2ac00ad30df3a45887b4a89f7abc85c9f5291a96c1be10532b8f0a43f359d51e3605e606a26f3a30b78451f798b90be1d51647925a248822d7613d7166638bbf0ce958f84fe1a8aab02f12b12a6939b3c09acb61ae95f73c8760a90eac79800230e5ccab475413471ba178d3752f710c29246b131cfa41e8fc20d974aa028624d38a24836fa41357f6b2c8dc70b17b9b8c2788458748627a09462bfb94b101ad903c99ed98f0968fc848a781249c7a5739b89960b4859aa452899b5609d9f1c4085b465844436e76fd29481e77a0b524057993bfb300e078fe790ef0fc8aecc7103f2fd6ec56e48457c509e6090df8b3d466da2fc6fb30b26324a4d79bb01ae7e22897f07a42a0219158759ec6ac39a876fbb4c4eb21e9f2d979c28372833ddf2dd2288c40bb8b11cbae9357c3ebe5734b26f6a0c90a895bae0855f9ecc4f9ffcd8c8b1ff92a62272e346f7ff63e53f1af8adc5fd7738049a7459e317f50ea57e21342ca027ff52887c4aa075bac1a9195188a8a56f3d5350bec6be75248a20124887762384db8b7aa5345baaf7444a913ab8b169c96cae812058a7503d1bc6d0d1c8421eaee8e067303152e4c2651e370b11fcbdb77b8e0a5bec7ae35bb52aaf75a8ee8c2a9a1bb1df65c55c93b5ce21abf44ab525be702cc299bb5791b01fbbce48de15ad4bb70e85c79616b18163037912786babb35175ad76e7d66c3c61186bd379fc3cc76935cd3bc8fce3ea80575c3b10f5c3236c8a70901661c3fd3247ddee520f3dd69c05b4611121241a24a29dc8c6dbfdf79ea31f1e6cae43d1158fd2e4b9ac64d625cafd693bbfc321bdd0846505b9f9d51fd89b23ee0b3ba0d8e1c7f85af5ddb27e8d15bee3dbc2bd6b45d0b3dd98bc080584406ceedfaa57138c7aafe812cc63e15fc903e53700b5493e63ad019cc5cc5eb9f0b90c721130003b5fcf473568e4f759831283b9f6d1b602d97e7e5d080d5ba9dd3ac23dac5b65414667dcb133f9afffc47379b13553c5ec41bb59205bcfb8aa74edfc10fcbb171b5a4d3c80af67f3ef98ee278363a969d87e47cd3689337258a2e8874f62c19b3c0742b152fab51c4efa37effa2034e2d4b4f56984459571ae5d66f1299a8307c0dd11a1943af90bdb5c0411fddcce50739f76294e404cde2ced455020ead2e695a58fc635a16b3fe4206fbdcd3e225c52d64086b61c18e24cfc48b6b57ac4cf3cf20de50d5e24d739ed227cda75fe3b60518345a8a8fb51ab24b2e61a03f6b048675977e9506e251cd365c92c06fa084ee60741c1715a2c84fb78e5af4504ddce25b82547186576bfef91f6efeb61a3a40e8f4ab62c7f58227e84746992ad3aea6a5eeeb53677ba9c3223ae304f10b1cc03daaea586d03a5634f7ec617629cb0e7888e8b3bac42e6b9d1ec87cfb1708f0e0e0c257ed126b75bac50a09d1ece08855a662085c50efa72a54c576018f58f7c4f473e7fadfe31cefdda8766c"], 0x22e8}, 0x0, 0x440c0, 0x1}, 0x80000001) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, &(0x7f0000000340)) 01:03:01 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="20003f0080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:03:01 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 63) 01:03:01 executing program 6: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_BLA_CLAIM(r0, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x1c, 0x0, 0x10, 0x70bd2c, 0x25dfdbfc, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x804) sendmsg$NL80211_CMD_SET_MESH_CONFIG(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)={0x110, r1, 0x10, 0x70bd25, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x4c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT={0x8, 0x17, 0x5}, @NL80211_MESHCONF_HWMP_ROOT_INTERVAL={0x6, 0x18, 0x9}, @NL80211_MESHCONF_FORWARDING={0x5}, @NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT={0x8, 0x17, 0x3}, @NL80211_MESHCONF_FORWARDING={0x5, 0x13, 0x1}, @NL80211_MESHCONF_PLINK_TIMEOUT={0x8}, @NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR={0x8, 0x15, 0xbe}, @NL80211_MESHCONF_POWER_MODE={0x8, 0x1a, 0x1}, @NL80211_MESHCONF_AUTO_OPEN_PLINKS={0x5, 0x7, 0x72}]}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x3, 0x33}}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x81, 0x3b}}, @NL80211_ATTR_MESH_CONFIG={0x4c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0x10}, @NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL={0x6, 0x12, 0x100}, @NL80211_MESHCONF_CONNECTED_TO_GATE={0x5, 0x1d, 0x1}, @NL80211_MESHCONF_HWMP_RANN_INTERVAL={0x6}, @NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x9}, @NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT={0x6, 0xa, 0x7}, @NL80211_MESHCONF_TTL={0x5, 0x6, 0x8}, @NL80211_MESHCONF_HWMP_RANN_INTERVAL={0x6, 0x10, 0x7}, @NL80211_MESHCONF_POWER_MODE={0x8, 0x1a, 0x1}]}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x41}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_MESH_CONFIG={0x3c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0xe}, @NL80211_MESHCONF_POWER_MODE={0x8, 0x1a, 0x2}, @NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT={0x6, 0xa, 0x1}, @NL80211_MESHCONF_HWMP_RANN_INTERVAL={0x6, 0x10, 0x7}, @NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT={0x6, 0xa, 0x7fff}, @NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR={0x8, 0x15, 0x75}, @NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0xb}]}]}, 0x110}, 0x1, 0x0, 0x0, 0x4000000}, 0x101) r2 = syz_open_dev$ptys(0xc, 0x3, 0x1) stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r3, 0x0) mount$9p_fd(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x141001, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',6ache=mmap,an`me=(,version=9p2000.L,df\b\x00\x00\x00d=', @ANYRESHEX=r3, @ANYBLOB="2c7365636c6162656c2c6673757569643d06613133346237382d666235c22d376237392d666432642d33383230663661342c61707072616973655f747970653d696d617369672c7063723d30303030303030303030303030303030303035372c6673757569643d64313934360033382d313364642d343262612d322a34302d31333038633539662c736d61636b66736465663d76666174002c736d61636b66737472616e736d7574653d6e6c3830323131002c61756469742c00"]) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000000)="ed1b9662a911904e662f", 0xa, 0x5}, {0x0, 0x0, 0xfffffffffffffff8}], 0x8000, &(0x7f00000000c0)=ANY=[]) 01:03:01 executing program 7: fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x40000000, 0x0) ptrace(0x8, 0xffffffffffffffff) 01:03:01 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xb000000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1339.996251] FAULT_INJECTION: forcing a failure. [ 1339.996251] name failslab, interval 1, probability 0, space 0, times 0 [ 1339.999224] CPU: 0 PID: 16637 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1340.000983] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1340.003039] Call Trace: [ 1340.003743] dump_stack+0x107/0x167 [ 1340.004655] should_fail.cold+0x5/0xa [ 1340.005646] ? xas_alloc+0x336/0x440 [ 1340.006565] should_failslab+0x5/0x20 [ 1340.007569] kmem_cache_alloc+0x5b/0x310 [ 1340.008590] xas_alloc+0x336/0x440 [ 1340.009520] xas_create+0x34a/0x10d0 [ 1340.010490] ? kernel_text_address+0xf2/0x120 [ 1340.011684] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1340.012927] xas_store+0x8c/0x1c40 [ 1340.013716] __xa_store+0x164/0x2d0 [ 1340.014748] ? xa_delete_node+0x280/0x280 01:03:01 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0xb) r2 = epoll_create(0x0) sendfile(r1, r2, 0x0, 0x7) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) dup2(r0, r3) mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}}) [ 1340.015672] ? trace_hardirqs_on+0x5b/0x180 [ 1340.016793] xa_store+0x31/0x50 [ 1340.017640] __io_uring_add_tctx_node+0x1cf/0x520 [ 1340.018755] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1340.020136] ? alloc_fd+0x2e7/0x670 [ 1340.020953] io_uring_setup+0x1fbb/0x2980 [ 1340.021845] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1340.022947] ? wait_for_completion_io+0x270/0x270 [ 1340.024226] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1340.025337] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1340.026459] do_syscall_64+0x33/0x40 [ 1340.027233] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1340.028597] RIP: 0033:0x7f707acaeb19 [ 1340.029414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1340.033597] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1340.035452] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1340.037002] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1340.038756] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1340.040514] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1340.042037] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1340.067527] FAULT_INJECTION: forcing a failure. [ 1340.067527] name failslab, interval 1, probability 0, space 0, times 0 [ 1340.070097] CPU: 1 PID: 16645 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1340.071669] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1340.073612] Call Trace: [ 1340.074264] dump_stack+0x107/0x167 [ 1340.075190] should_fail.cold+0x5/0xa [ 1340.076160] ? create_object.isra.0+0x3a/0xa30 [ 1340.077271] should_failslab+0x5/0x20 [ 1340.078135] kmem_cache_alloc+0x5b/0x310 [ 1340.079069] create_object.isra.0+0x3a/0xa30 [ 1340.080083] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1340.081229] __kmalloc+0x16e/0x390 [ 1340.082030] iter_file_splice_write+0x165/0xc90 [ 1340.083087] ? __fsnotify_parent+0x47a/0xb10 [ 1340.084124] ? generic_splice_sendpage+0x140/0x140 [ 1340.085219] ? pipe_to_user+0x170/0x170 [ 1340.086144] ? security_file_permission+0xb1/0xe0 [ 1340.087244] ? generic_splice_sendpage+0x140/0x140 [ 1340.088406] direct_splice_actor+0x10f/0x170 [ 1340.089434] splice_direct_to_actor+0x387/0x980 [ 1340.090522] ? pipe_to_sendpage+0x380/0x380 [ 1340.091545] ? do_splice_to+0x160/0x160 [ 1340.092484] ? security_file_permission+0xb1/0xe0 [ 1340.093632] do_splice_direct+0x1c4/0x290 [ 1340.094618] ? splice_direct_to_actor+0x980/0x980 [ 1340.095784] do_sendfile+0x553/0x11e0 [ 1340.096682] ? do_pwritev+0x270/0x270 [ 1340.097592] ? wait_for_completion_io+0x270/0x270 [ 1340.098929] ? rcu_read_lock_any_held+0x75/0xa0 [ 1340.100257] ? vfs_write+0x354/0xb10 [ 1340.101331] __x64_sys_sendfile64+0x1d1/0x210 [ 1340.102608] ? __ia32_sys_sendfile+0x220/0x220 [ 1340.103950] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1340.105465] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1340.106947] do_syscall_64+0x33/0x40 [ 1340.108019] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1340.109304] RIP: 0033:0x7fe85904db19 [ 1340.110165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1340.114444] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1340.116226] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1340.117839] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1340.119497] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1340.121175] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1340.122825] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 01:03:01 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000630080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:03:01 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) r2 = socket$packet(0x11, 0x3, 0x300) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000100)={r4, 0x3, 0x7}, 0x10) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001b80)={0x0, @empty, @local}, &(0x7f0000001bc0)=0xc) sendmmsg$inet6(r1, &(0x7f0000003440)=[{{&(0x7f0000000080)={0xa, 0x4e24, 0x4, @mcast2, 0x3ff}, 0x1c, &(0x7f0000000100)=[{&(0x7f00000000c0)="e9b130f6bcbe4502", 0x8}], 0x1, &(0x7f0000000140)=[@flowinfo={{0x14, 0x29, 0xb, 0x1}}, @dontfrag={{0x14, 0x29, 0x3e, 0x80000001}}, @tclass={{0x14, 0x29, 0x43, 0x20}}, @hopopts_2292={{0x50, 0x29, 0x36, {0x156, 0x6, '\x00', [@hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @hao={0xc9, 0x10, @mcast2}, @padn={0x1, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @enc_lim={0x4, 0x1, 0x3f}]}}}, @tclass={{0x14, 0x29, 0x43, 0x5}}, @pktinfo={{0x24, 0x29, 0x32, {@mcast1}}}, @pktinfo={{0x24, 0x29, 0x32, {@remote}}}], 0x100}}, {{&(0x7f0000000240)={0xa, 0x4e22, 0x2, @ipv4={'\x00', '\xff\xff', @loopback}, 0x4}, 0x1c, &(0x7f00000006c0)=[{&(0x7f0000000280)="5ccdac2b30ac3e5dbd44233ab994d006e8c8764ede96e942d110acc13cdd8d1e5c6fd1b417b854ae8e", 0x29}, {&(0x7f0000000300)="323fc1f6f1baa5e5a8acfea7ac03e40d6973b49b4f547633fc", 0x19}, {&(0x7f0000000340)="27262a86017757b4e24b6029e2fd3f5d7fde211e394a648efa85fe22723186304be6666f2aba66fc44f867edbf23f38d2ea2cfb85e63b2a3c9de8c16c07a", 0x3e}, {&(0x7f0000000380)="0144a908becb56842afb115fd7478738e17bffe7dfa35307bbac183e9e81d0986754584aa8b5ad3795f0823e247bbca1bf4f4d815ab3454c3f639eaeaf1012a14a708a6008bad284c0cbeddb3a6e31f52616a4d427c838861b7566dc99d2b46ae868bc85cfb31b1501b12aab7d099e3ceb7bff9a4ac15539b131a370e4dc594ae25928a6a2429b01bd85d17c1a42c71b4784885527de869903da", 0x9a}, {&(0x7f0000000440)="7011120cec8d252764883728b80abdf44e4433c5de4a49f32a5b2f6f664b01ed3dab687c30f6f000c82319167232fc3a995bf484842d018df1822d4e45629518bbfef184beb48aa65589e32d9d9c96d0dda4f0fb53084282153729298f2c9dc1d97f7a253ea2912fe8469b10b2c388f1dfa33bd3c6850ba56a090cc0d15b07cad53a6d41b044238bd9d06a27ef67533982f71c8849c83fb29fa2835fc06c8b02c22d9334689b9948aaf53dd895c0dcd2141e5522cd82b1d50748aa66c8b5", 0xbe}, {&(0x7f0000000500)="2aef3a29305426ea46872476c263d024dcffbf56bf5be4614ce7075cce77d4f1b3e3572f7946448413593b722f786b8fa7", 0x31}, {&(0x7f0000000540)="efa1d28f548c9be7deb35bdfcd7af127a68b5612b7365e25703f8cf573ddcb0d3b7fc1cab14c6afa8eede9edd0ed8736c51ae3d91f5b543f719d1f0e8c807e206931df2925f1c542a2de3b", 0x4b}, {&(0x7f00000005c0)="17bf3ec2d193da4aa39c24f87e5b8c0f9e46fb9117c5b2f8b5e1b555ea7e6c679e158648047906f2ce0e37d89b6886825f32a81546cb389b1244afb99d2f07c96559c8fc62594d546ceab358472754188e60ea8f871ad455694a6198d96acedd82f77382a5afe39aeb4c7f8f7f8ff1d062ecc6ff4ceb74d4c9ee553a18b1ae2099ccd5407c2c8c72a677288de694690b6a391110f779f202333db461e5a1bd", 0x9f}, {&(0x7f0000000680)="a068119298e2d88a9af2f391937232a5b0d4fa8ad053bdd9", 0x18}], 0x9, &(0x7f0000000780)=[@rthdrdstopts={{0xf0, 0x29, 0x37, {0x2f, 0x1a, '\x00', [@ra={0x5, 0x2, 0xff04}, @pad1, @jumbo={0xc2, 0x4, 0xffffff81}, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @generic={0x5, 0xb3, "fe94a60cf78829bb6887d10fdb3812d08cf8b0557a78586fdaa7c60b747a2ae27696bebd2103b39e249f1465a1582ddd247ebbe3688f6d99fb2b6b22f5a0fddab1bf9fa9a32fb13146e95e7a7260a876581910241647d102b25523a8de69e54f0d4440ea53f8248c4e935b55eee5879b9ace7fcc134619d9d743ea90e510fd01f205e032767d5ac9318a3af698ddd80d2917e94169fe0a170e057df6e7928785868d77471abcec82e61fd77aab86384c44027f"}]}}}, @pktinfo={{0x24, 0x29, 0x32, {@empty}}}, @pktinfo={{0x24, 0x29, 0x32, {@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x4}}, @tclass={{0x14, 0x29, 0x43, 0x3}}], 0x170}}, {{0x0, 0x0, &(0x7f0000001b00)=[{&(0x7f0000000900)="9db52025c8dace3ef97eefc7a9e87db5f3f3a7d453", 0x15}, {&(0x7f0000000940)="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", 0x1000}, {&(0x7f0000001940)="4b12f14590c196dffbc38f8dd7fc971d9217a0768bd80f2124a2769e23045bff1de11949d7e53996537d4dbc", 0x2c}, {&(0x7f0000001980)="71354c9aabda881d53588ddd3067db6bea4161792c29b5a37e8a8302ac5060c44848b06006fb4216043c017c33096e613df53dfb9e693a8a915f01eb3563c4a3e0440fd072d1545246c2afb976eef033cfe9f0304ab02d87192def8a708c9580f3120b47895df8f0921fbda148f013f4fe50df30d2f811074f04f791c405afabdc2f04b249b96e46c984e3e28767ee00f39385523122ee00a2d30508d02bd0e85dae91b11ffb888981fc2eeddd5f946fe3c45918c42b9f", 0xb7}, {&(0x7f0000001a40)="ff539cc19ecf3d8f3ed2e64db119e1544b2ad7c5fbaa1df9626b95fff3e3151e8cd5e9b3eaf1aedc9407c003f29a398ff40ffad589edc0b2920f3dd8d58de19fca53a555831775cd62", 0x49}, {&(0x7f0000001ac0)="da522f6445c76103bbca405b", 0xc}], 0x6, &(0x7f0000001c00)=[@dontfrag={{0x14, 0x29, 0x3e, 0x8001}}, @rthdrdstopts={{0x28, 0x29, 0x37, {0x0, 0x1, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @enc_lim={0x4, 0x1, 0x9b}]}}}, @pktinfo={{0x24, 0x29, 0x32, {@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x33}}, r4}}}, @pktinfo={{0x24, 0x29, 0x32, {@private0={0xfc, 0x0, '\x00', 0x1}, r5}}}, @rthdr_2292={{0x28, 0x29, 0x39, {0x2f, 0x2, 0x1, 0x6, 0x0, [@loopback]}}}, @hopopts={{0x108, 0x29, 0x36, {0x89, 0x1d, '\x00', [@ra={0x5, 0x2, 0x5b}, @enc_lim={0x4, 0x1, 0xff}, @generic={0x23, 0x53, "6a303f179e93b00d7edfa84bd509a8ac8bfd23ad422879143baa6c8296ff255597682be5100b1be4ff2f16a00072f9e968493f027029b23b5340856c398dcd648445811f7b7250799ee5079c4c5d7887b5fc60"}, @calipso={0x7, 0x18, {0x0, 0x4, 0x3, 0x5, [0x4, 0x0]}}, @ra, @padn={0x1, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @padn, @calipso={0x7, 0x50, {0x0, 0x12, 0x0, 0x1, [0x7, 0x8001, 0x7, 0xd06, 0x1000, 0x3dd7, 0x1, 0x0, 0x1]}}, @pad1, @hao={0xc9, 0x10, @mcast2}]}}}, @hopopts_2292={{0xc8, 0x29, 0x36, {0x4, 0x15, '\x00', [@ra={0x5, 0x2, 0x7}, @generic={0x81, 0xa0, "b692d0f0b2b2a413a7da77370e2c1f69068b5e45b59c77b4eb3d9e552a497e15d3d31c16f122200d35f83b9c7fd97fe3ff3ae714771186726c6f1ebe969dd2086080cb5e8be407ead4d317429339f1db53d4687bc35e193d9ce48333ba37fc9bfde6fbdc12e140986c7febf6b67b300459e85267f7157e9e749387582d565102defd546fb5b1dd38299d0bffe7bdd31d92669ae1ffbe8a860619ec662d012299"}, @jumbo={0xc2, 0x4, 0x5}]}}}, @dstopts={{0x28, 0x29, 0x37, {0x0, 0x1, '\x00', [@padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @pad1, @generic={0xf8}]}}}, @rthdr={{0x68, 0x29, 0x39, {0x62, 0xa, 0x1, 0x9, 0x0, [@dev={0xfe, 0x80, '\x00', 0x2c}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @loopback, @private1={0xfc, 0x1, '\x00', 0x2}, @private1]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x31}}], 0x330}}, {{&(0x7f0000001f40)={0xa, 0x4e22, 0xce, @mcast2, 0x10001}, 0x1c, &(0x7f0000003180)=[{&(0x7f0000001f80)="c982687a17c65dc781dd82fdc293c43709c38990af123e9e19feb5fc446f47742b91ea1535d8bb33f373b338a4e7a059f5414f5d01c0ec29d52d05f3a97e9f0153e10f06d7b24aaf5e47c12287bae23e681b8b030a8522", 0x57}, {&(0x7f0000002000)="76a97c3b2fda700ba6b4b2ced670154be7784879ad8c6e720f7596856113aa747d104fef2094daa0033bd8cffc51bf9ff5c97cccdaaa89df9008a8263a1226de236bccaf802d27109984b998b13ade443f5e098bc5d65dd751eca14b598af850048d00f55a376abcaef69642074e6ad6bd401a23", 0x74}, {&(0x7f0000002080)="a9a1099349c4e6a75679f47d1be5e015424a0a676f458b5be4dc3d330cb8c740f1bd63819872dc98231668ffa838538384c0d1628335cb68215bcf491afdd2a83b731149aa12df55e3e45bce6c007d50fcc543ee22359cce33ab491fa7a7c0c0b8de507b53149aedb87b1527d456a3560156e7df776c34bf5c0efdac04a106ff4c29afbd6a823a6210ebd4c96231194d953af40996e468f069ec2b94b9da8404ba8abb8886ebec62376cf5ae41b5490c48f1f375d16d758abbfaef7cbf0edf2a78730c9b599a5adca4", 0xc9}, {&(0x7f0000002180)="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", 0x1000}], 0x4, &(0x7f00000031c0)=ANY=[@ANYBLOB="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"], 0x248}}], 0x4, 0x4040001) r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r6, 0x3, 0x0, 0x8000) connect$inet6(r6, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @private0}, 0x1c) 01:03:02 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xf000000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:03:21 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:03:21 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2004800080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:03:21 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10084, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x40, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000016c0)={0x0, 0x0}) r1 = syz_open_procfs(r0, &(0x7f0000001580)='cmdline\x00') readv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000001780)=""/251, 0x6}, {&(0x7f0000001500)=""/102, 0x66}, {&(0x7f0000001900)=""/130, 0x82}, {&(0x7f00000019c0)=""/95, 0x5f}], 0x4) readv(r1, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4095, 0xfff}], 0x17) readv(0xffffffffffffffff, &(0x7f0000000340), 0x0) r2 = syz_open_procfs(r0, &(0x7f0000000280)='net/ip_mr_cache\x00') ioctl$FIONREAD(r2, 0x6801, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000001e00)=ANY=[@ANYRES32=0xffffffffffffffff, @ANYBLOB="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"]) getdents(r3, &(0x7f0000000380)=""/215, 0xd7) sendfile(r1, 0xffffffffffffffff, &(0x7f0000000140), 0x1000) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000180)={'L+', 0x7fffffff}, 0x16, 0x2) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mkdir(&(0x7f0000000080)='./file0/file1\x00', 0x0) openat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)={0x41, 0x0, 0x16}, 0x18) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) fsetxattr$security_selinux(r4, &(0x7f0000000240), &(0x7f00000002c0)='system_u:object_r:dlm_control_device_t:s0\x00', 0x2a, 0x0) write$P9_RXATTRCREATE(r2, &(0x7f0000000340)={0x7, 0x21, 0x2}, 0x7) mkdir(&(0x7f0000000300)='./file0/../file0\x00', 0x13d) unshare(0x48020200) 01:03:21 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x10000000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:03:21 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 64) 01:03:21 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x0, 0x2, &(0x7f0000000040)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[]) 01:03:21 executing program 7: r0 = fork() waitid(0x0, r0, &(0x7f0000000000), 0xc9ae310522f2e856, 0x0) 01:03:21 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 90) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) [ 1359.267749] FAULT_INJECTION: forcing a failure. [ 1359.267749] name failslab, interval 1, probability 0, space 0, times 0 [ 1359.271561] CPU: 0 PID: 16772 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1359.273317] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1359.275431] Call Trace: [ 1359.276118] dump_stack+0x107/0x167 [ 1359.277051] should_fail.cold+0x5/0xa [ 1359.278015] ? xas_alloc+0x336/0x440 [ 1359.278959] should_failslab+0x5/0x20 [ 1359.279938] kmem_cache_alloc+0x5b/0x310 [ 1359.281004] xas_alloc+0x336/0x440 [ 1359.282162] xas_create+0x34a/0x10d0 [ 1359.283415] ? kernel_text_address+0xf2/0x120 [ 1359.284889] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1359.286600] xas_store+0x8c/0x1c40 [ 1359.287715] __xa_store+0x164/0x2d0 [ 1359.288777] ? xa_delete_node+0x280/0x280 [ 1359.290103] ? trace_hardirqs_on+0x5b/0x180 [ 1359.291196] xa_store+0x31/0x50 [ 1359.292080] __io_uring_add_tctx_node+0x1cf/0x520 [ 1359.293326] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1359.294689] ? alloc_fd+0x2e7/0x670 [ 1359.294726] io_uring_setup+0x1fbb/0x2980 01:03:21 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x11000000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:03:21 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000f00080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1359.294759] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1359.294779] ? wait_for_completion_io+0x270/0x270 [ 1359.294829] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1359.294853] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1359.294879] do_syscall_64+0x33/0x40 [ 1359.294902] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1359.294917] RIP: 0033:0x7f707acaeb19 [ 1359.294940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 01:03:21 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 65) 01:03:21 executing program 6: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100)={0x2, &(0x7f00000000c0)=[{0x0, 0x7f, 0x5}, {0x5, 0x0, 0x1, 0x3}]}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000700)=ANY=[@ANYBLOB="070000000700000000efff000000007ed8487c35c97ce46bc77944469551eeab973cb29e75191bfb010069acb18a51a73a7d210a33086066d41c9acd8cdb91366b97bdd67cf36eaf7a206f8447e760e0f0fbedc930a72f6dd0a09c088bba80008b8e19f5473d9b67b05ad720bb9d00a3c688ed9870ae3bf3ff456ce18dcc306ac227701913a9f7418daf1b1c0ca61f2034f64eb4b2bc3fab7c6185e1ca202dd29d06f7308b4bbc946bc9a306290c6c86d7aa4bf1609678b1084c47e3d2a7ea9c54b5649ec38a84c791dce3365617ca08fb4f86f65da60837204771c52ff400e176fb4fab8249169abd0ab03a"]) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mknod$loop(&(0x7f0000000400)='./file0\x00', 0x6000, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000500)) r1 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x101982, 0x0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c) ioctl$LOOP_SET_STATUS(r1, 0x4c00, 0x0) ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f0000000440)={0x0, {}, 0x0, {}, 0xa9, 0x12, 0x1d, 0x19, "6e60147ae2fcdc3f1d52584aebeafaa0edd69266edf29bbff612a7a730c97b72b322d0b8aff13a679593d52a3c987ef7c88e49e70f44c10f719a7c0f41774981", "f8258a6ec00c2423b3415e80f5dcc6b04bdfa5322086b2c40bc141347fe2216a", [0x100000001, 0x9]}) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000280), 0x220000, 0x0) ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xfff, 0x0, 0x10, 0xc, "a33ffde15ac5e3597997ca8986bc6d30fb365a162412350d2dbb5f02e4b9158f3b699d557e93639a919a636fc399cb69327ad1688070049903904fc96628577b", "2f87934459fd43a9829984709a2e821126913d74f3d1ad8285ca2e3a4a403d99", [0xffff, 0x80]}) creat(&(0x7f0000000380)='./file0\x00', 0x9) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f0000000200)=ANY=[@ANYBLOB="9789cdc1a58bb7523a45992fbb476b7ba2f081093dc81803cc6745a634a85feaf8ebcd4ec14543c88d990c72ba873c406408925ef7240019f7bd2bc2541505748aaf018bad5ffbb866b332d87a3c99b80c1603203a1131ef91e6"]) creat(&(0x7f0000000040)='./file1\x00', 0xc) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) getsockopt$IP6T_SO_GET_ENTRIES(r3, 0x29, 0x41, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)=0xc6) mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000, 0x4, &(0x7f0000ffb000/0x3000)=nil) open(&(0x7f0000000080)='./file2\x00', 0x80, 0x26) acct(&(0x7f00000001c0)='./file1\x00') openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x20082, 0xf4) [ 1359.294952] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1359.294976] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 01:03:21 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000020080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:03:21 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x12010000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1359.294989] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 01:03:21 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 66) [ 1359.295002] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1359.295015] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 01:03:21 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 91) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) [ 1359.295028] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1359.300547] loop6: detected capacity change from 0 to 33559552 [ 1359.319673] FAULT_INJECTION: forcing a failure. [ 1359.319673] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1359.319687] CPU: 1 PID: 16775 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1359.319693] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1359.319697] Call Trace: [ 1359.319714] dump_stack+0x107/0x167 [ 1359.319731] should_fail.cold+0x5/0xa [ 1359.319746] __alloc_pages_nodemask+0x182/0x600 [ 1359.319757] ? jbd2_journal_stop+0x61f/0xdc0 [ 1359.319770] ? kmem_cache_free+0x249/0x2d0 [ 1359.319781] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1359.319803] alloc_pages_current+0x187/0x280 [ 1359.319816] allocate_slab+0x26f/0x380 [ 1359.319829] ___slab_alloc+0x470/0x700 [ 1359.319841] ? jbd2__journal_start+0x190/0x7e0 [ 1359.319850] ? ext4_dirty_inode+0x107/0x130 [ 1359.319862] ? __mark_inode_dirty+0x12e/0xd40 [ 1359.319874] ? jbd2__journal_start+0x190/0x7e0 [ 1359.319886] ? kmem_cache_alloc+0x301/0x310 [ 1359.319896] kmem_cache_alloc+0x301/0x310 [ 1359.319909] jbd2__journal_start+0x190/0x7e0 [ 1359.319923] __ext4_journal_start_sb+0x214/0x390 [ 1359.319937] ext4_file_write_iter+0xee9/0x1530 [ 1359.319966] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1359.319974] ? kasan_save_stack+0x32/0x40 [ 1359.319982] ? kasan_save_stack+0x1b/0x40 [ 1359.319991] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1359.320000] ? iter_file_splice_write+0x165/0xc90 [ 1359.320009] ? direct_splice_actor+0x10f/0x170 [ 1359.320018] ? splice_direct_to_actor+0x387/0x980 [ 1359.320027] ? do_splice_direct+0x1c4/0x290 [ 1359.320037] ? do_sendfile+0x553/0x11e0 [ 1359.320045] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1359.320054] ? do_syscall_64+0x33/0x40 [ 1359.320065] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1359.320079] do_iter_readv_writev+0x476/0x750 [ 1359.320088] ? _cond_resched+0x10/0x30 [ 1359.320098] ? new_sync_write+0x660/0x660 [ 1359.320110] ? avc_policy_seqno+0x9/0x70 [ 1359.320120] ? selinux_file_permission+0x92/0x520 [ 1359.320132] ? security_file_permission+0xb1/0xe0 [ 1359.320148] do_iter_write+0x191/0x700 [ 1359.320160] ? trace_hardirqs_on+0x5b/0x180 [ 1359.320175] vfs_iter_write+0x70/0xa0 [ 1359.320187] iter_file_splice_write+0x726/0xc90 [ 1359.320206] ? generic_splice_sendpage+0x140/0x140 [ 1359.320226] ? security_file_permission+0xb1/0xe0 [ 1359.320238] ? generic_splice_sendpage+0x140/0x140 [ 1359.320249] direct_splice_actor+0x10f/0x170 [ 1359.320261] splice_direct_to_actor+0x387/0x980 [ 1359.320275] ? pipe_to_sendpage+0x380/0x380 [ 1359.320288] ? do_splice_to+0x160/0x160 [ 1359.320297] ? security_file_permission+0xb1/0xe0 [ 1359.320317] do_splice_direct+0x1c4/0x290 [ 1359.320328] ? splice_direct_to_actor+0x980/0x980 [ 1359.320337] ? avc_policy_seqno+0x9/0x70 [ 1359.320350] ? security_file_permission+0xb1/0xe0 [ 1359.320365] do_sendfile+0x553/0x11e0 [ 1359.320382] ? do_pwritev+0x270/0x270 [ 1359.320392] ? wait_for_completion_io+0x270/0x270 [ 1359.320405] ? rcu_read_lock_any_held+0x75/0xa0 [ 1359.320414] ? vfs_write+0x354/0xb10 [ 1359.320426] __x64_sys_sendfile64+0x1d1/0x210 [ 1359.320436] ? __ia32_sys_sendfile+0x220/0x220 [ 1359.320450] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1359.320460] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1359.320472] do_syscall_64+0x33/0x40 [ 1359.320483] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1359.320490] RIP: 0033:0x7fe85904db19 [ 1359.320500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1359.320505] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1359.320517] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1359.320523] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1359.320529] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1359.320535] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1359.320541] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 [ 1359.441517] FAULT_INJECTION: forcing a failure. [ 1359.441517] name failslab, interval 1, probability 0, space 0, times 0 [ 1359.441545] CPU: 0 PID: 16844 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1359.441556] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1359.441562] Call Trace: [ 1359.441587] dump_stack+0x107/0x167 [ 1359.441609] should_fail.cold+0x5/0xa [ 1359.441630] ? create_object.isra.0+0x3a/0xa30 [ 1359.441648] should_failslab+0x5/0x20 [ 1359.441668] kmem_cache_alloc+0x5b/0x310 [ 1359.441688] ? mark_held_locks+0x9e/0xe0 [ 1359.441710] create_object.isra.0+0x3a/0xa30 [ 1359.441732] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1359.441757] kmem_cache_alloc+0x159/0x310 [ 1359.441782] xas_alloc+0x336/0x440 [ 1359.441803] xas_create+0x34a/0x10d0 [ 1359.441830] ? kernel_text_address+0xf2/0x120 [ 1359.441851] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1359.441872] xas_store+0x8c/0x1c40 [ 1359.441905] __xa_store+0x164/0x2d0 [ 1359.441926] ? xa_delete_node+0x280/0x280 [ 1359.441952] ? trace_hardirqs_on+0x5b/0x180 [ 1359.441978] xa_store+0x31/0x50 [ 1359.441999] __io_uring_add_tctx_node+0x1cf/0x520 [ 1359.442019] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1359.442035] ? alloc_fd+0x2e7/0x670 [ 1359.442065] io_uring_setup+0x1fbb/0x2980 [ 1359.442092] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1359.442108] ? wait_for_completion_io+0x270/0x270 [ 1359.442149] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1359.442169] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1359.442191] do_syscall_64+0x33/0x40 [ 1359.442210] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1359.442224] RIP: 0033:0x7f707acaeb19 [ 1359.442241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1359.442252] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1359.442272] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1359.442283] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1359.442294] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1359.442305] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1359.442316] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1359.494709] FAULT_INJECTION: forcing a failure. [ 1359.494709] name failslab, interval 1, probability 0, space 0, times 0 [ 1359.494729] CPU: 1 PID: 16865 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1359.494735] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1359.494739] Call Trace: [ 1359.494756] dump_stack+0x107/0x167 [ 1359.494771] should_fail.cold+0x5/0xa [ 1359.494784] ? xas_alloc+0x336/0x440 [ 1359.494796] should_failslab+0x5/0x20 [ 1359.494807] kmem_cache_alloc+0x5b/0x310 [ 1359.494822] xas_alloc+0x336/0x440 [ 1359.494834] xas_create+0x34a/0x10d0 [ 1359.494850] ? kernel_text_address+0xf2/0x120 [ 1359.494863] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1359.494875] xas_store+0x8c/0x1c40 [ 1359.494893] __xa_store+0x164/0x2d0 [ 1359.494905] ? xa_delete_node+0x280/0x280 [ 1359.494921] ? trace_hardirqs_on+0x5b/0x180 [ 1359.494936] xa_store+0x31/0x50 [ 1359.494951] __io_uring_add_tctx_node+0x1cf/0x520 [ 1359.494962] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1359.494972] ? alloc_fd+0x2e7/0x670 [ 1359.494988] io_uring_setup+0x1fbb/0x2980 [ 1359.495003] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1359.495012] ? wait_for_completion_io+0x270/0x270 [ 1359.495037] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1359.495048] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1359.495063] do_syscall_64+0x33/0x40 [ 1359.495074] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1359.495081] RIP: 0033:0x7f707acaeb19 [ 1359.495092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1359.495098] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1359.495111] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1359.495119] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1359.495125] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1359.495131] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1359.495137] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1359.627898] FAULT_INJECTION: forcing a failure. [ 1359.627898] name failslab, interval 1, probability 0, space 0, times 0 [ 1359.627922] CPU: 0 PID: 16907 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1359.627933] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1359.627940] Call Trace: [ 1359.627968] dump_stack+0x107/0x167 [ 1359.627991] should_fail.cold+0x5/0xa [ 1359.628016] ? __iomap_dio_rw+0x1ee/0x1110 [ 1359.628035] should_failslab+0x5/0x20 [ 1359.628058] kmem_cache_alloc_trace+0x55/0x320 [ 1359.628087] __iomap_dio_rw+0x1ee/0x1110 [ 1359.628118] ? jbd2_journal_stop+0x188/0xdc0 [ 1359.628142] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1359.628163] ? ext4_orphan_add+0x253/0x9e0 [ 1359.628182] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1359.628205] ? ext4_empty_dir+0xae0/0xae0 [ 1359.628222] ? jbd2__journal_start+0xf3/0x7e0 [ 1359.628252] iomap_dio_rw+0x31/0x90 [ 1359.628275] ext4_file_write_iter+0xe0e/0x1530 [ 1359.628310] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1359.628325] ? kasan_save_stack+0x32/0x40 [ 1359.628340] ? kasan_save_stack+0x1b/0x40 [ 1359.628357] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1359.628376] ? iter_file_splice_write+0x165/0xc90 [ 1359.628393] ? direct_splice_actor+0x10f/0x170 [ 1359.628410] ? splice_direct_to_actor+0x387/0x980 [ 1359.628427] ? do_splice_direct+0x1c4/0x290 [ 1359.628448] ? do_sendfile+0x553/0x11e0 [ 1359.628466] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1359.628483] ? do_syscall_64+0x33/0x40 [ 1359.628503] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1359.628538] do_iter_readv_writev+0x476/0x750 [ 1359.628556] ? _cond_resched+0x10/0x30 [ 1359.628577] ? new_sync_write+0x660/0x660 [ 1359.628596] ? avc_policy_seqno+0x9/0x70 [ 1359.628616] ? selinux_file_permission+0x92/0x520 [ 1359.628639] ? security_file_permission+0xb1/0xe0 [ 1359.628670] do_iter_write+0x191/0x700 [ 1359.628694] ? trace_hardirqs_on+0x5b/0x180 [ 1359.628722] vfs_iter_write+0x70/0xa0 [ 1359.628746] iter_file_splice_write+0x726/0xc90 [ 1359.628782] ? generic_splice_sendpage+0x140/0x140 [ 1359.628821] ? security_file_permission+0xb1/0xe0 [ 1359.628844] ? generic_splice_sendpage+0x140/0x140 [ 1359.628866] direct_splice_actor+0x10f/0x170 [ 1359.628890] splice_direct_to_actor+0x387/0x980 [ 1359.628916] ? pipe_to_sendpage+0x380/0x380 [ 1359.628940] ? do_splice_to+0x160/0x160 [ 1359.628959] ? security_file_permission+0xb1/0xe0 [ 1359.628987] do_splice_direct+0x1c4/0x290 [ 1359.629007] ? splice_direct_to_actor+0x980/0x980 [ 1359.629025] ? avc_policy_seqno+0x9/0x70 [ 1359.629050] ? security_file_permission+0xb1/0xe0 [ 1359.629081] do_sendfile+0x553/0x11e0 [ 1359.629113] ? do_pwritev+0x270/0x270 [ 1359.629133] ? wait_for_completion_io+0x270/0x270 [ 1359.629157] ? rcu_read_lock_any_held+0x75/0xa0 [ 1359.629174] ? vfs_write+0x354/0xb10 [ 1359.629198] __x64_sys_sendfile64+0x1d1/0x210 [ 1359.629217] ? __ia32_sys_sendfile+0x220/0x220 [ 1359.629242] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1359.629264] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1359.629287] do_syscall_64+0x33/0x40 [ 1359.629307] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1359.629321] RIP: 0033:0x7fe85904db19 [ 1359.629339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1359.629351] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1359.629373] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1359.629385] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1359.629396] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1359.629408] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1359.629420] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 [ 1359.632432] Process accounting resumed [ 1359.648308] Process accounting resumed 01:03:40 executing program 6: r0 = syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={[{@mpol={'mpol', 0x3d, {'local', '', @void}}}]}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) statx(r0, &(0x7f00000000c0)='./file0\x00', 0x2000, 0x80, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r2, 0x0) getresgid(&(0x7f00000010c0), &(0x7f0000001100), &(0x7f0000001140)=0x0) r4 = semget(0x2, 0x0, 0x20b) r5 = getuid() stat(&(0x7f0000000240)='./file0/file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) semctl$IPC_SET(r4, 0x0, 0x1, &(0x7f0000000640)={{0x2, r2, 0x0, 0x0, 0x0, 0x19, 0x6}, 0x40, 0x4, 0x0, 0x0, 0x0, 0x0, 0x6}) semctl$IPC_SET(r4, 0x0, 0x1, &(0x7f00000002c0)={{0x1, r5, r3, r6, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7}) stat(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f00000010c0), &(0x7f0000001100), &(0x7f0000001140)=0x0) r9 = semget(0x2, 0x0, 0x20b) r10 = getuid() stat(&(0x7f0000000240)='./file0/file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) semctl$IPC_SET(r9, 0x0, 0x1, &(0x7f00000002c0)={{0x1, r10, r8, r11, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7}) setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='system.posix_acl_access\x00', &(0x7f0000000340)={{}, {0x1, 0x4}, [{0x2, 0x3, 0xffffffffffffffff}, {0x2, 0x4, r1}, {0x2, 0x5, r2}], {0x4, 0x3}, [{0x8, 0x9, r3}, {0x8, 0x2, 0xee01}, {0x8, 0x0, r7}, {0x8, 0x7, r8}, {0x8, 0x0, 0xffffffffffffffff}], {}, {0x20, 0x1}}, 0x64, 0x0) creat(&(0x7f0000001680)='./file0/file0\x00', 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000000, 0x10, 0xffffffffffffffff, 0x10000000) 01:03:40 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:03:40 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x3f000000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:03:40 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 67) 01:03:40 executing program 7: r0 = fork() r1 = gettid() ptrace(0x4207, r1) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000080)=0x0) r3 = getpgrp(0x0) pidfd_open(r3, 0x0) r4 = getpgrp(0x0) pidfd_open(r4, 0x0) getpid() waitid(0x3, r2, &(0x7f0000000180), 0x8, 0x0) wait4(r0, 0x0, 0x40000000, &(0x7f00000000c0)) 01:03:40 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000030080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:03:40 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) (fail_nth: 92) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:03:40 executing program 5: ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000100)={r0, 0x3, 0x7}, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'batadv_slave_0\x00', 0x0}) ioctl$sock_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000340)={0x0, @xdp={0x2c, 0x0, 0x0, 0x1d}, @nfc={0x27, 0x1, 0x0, 0x1}, @isdn={0x22, 0x9, 0xbd, 0xf4, 0x3f}, 0x8000, 0x0, 0x0, 0x0, 0x58, 0x0, 0x3f, 0xd8, 0x5}) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000100)={r5, 0x3, 0x7}, 0x10) r6 = socket$packet(0x11, 0x3, 0x300) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r6, 0x107, 0x1, &(0x7f0000000100)={r8, 0x3, 0x7}, 0x10) r9 = socket$packet(0x11, 0x3, 0x300) r10 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r9, 0x107, 0x1, &(0x7f0000000100)={r11, 0x3, 0x7}, 0x10) sendmsg$TEAM_CMD_OPTIONS_GET(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000000), 0xc, &(0x7f00000003c0)={&(0x7f0000000500)={0x7fc, 0x0, 0x100, 0x70bd25, 0x25dfdbfc, {}, [{{0x8}, {0x50, 0x2, 0x0, 0x1, [{0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}]}}, {{0x8}, {0xb0, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0xffff8298}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}]}}, {{0x8}, {0x78, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xf50}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8}}}]}}, {{0x8}, {0x128, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1000}}}]}}, {{0x8}, {0xec, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0xffff4c88}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}]}}, {{0x8}, {0x13c, 0x2, 0x0, 0x1, [{0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x9526}}, {0x8, 0x6, r0}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x8af}}, {0x8, 0x6, r1}}}, {0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0x81, 0x5, 0x0, 0x401}]}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xf, 0x4, 'roundrobin\x00'}}}]}}, {{0x8}, {0xb0, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x915}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r2}}}]}}, {{0x8, 0x1, r5}, {0x130, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8ad}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8}}, {0x8, 0x6, r11}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}]}}, {{0x8}, {0x74, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}]}}]}, 0x7fc}, 0x1, 0x0, 0x0, 0x40}, 0x10) r12 = socket$inet(0xa, 0x3, 0xff) setsockopt$SO_TIMESTAMPING(r12, 0x1, 0x41, &(0x7f00000004c0)=0x2198, 0x4) sendto(r12, 0x0, 0xfc, 0x0, &(0x7f0000000140)=@nl=@unspec={0x0, 0xff00, 0x0, 0x80fe}, 0x80) [ 1378.243859] FAULT_INJECTION: forcing a failure. [ 1378.243859] name failslab, interval 1, probability 0, space 0, times 0 [ 1378.245459] CPU: 0 PID: 16923 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1378.246413] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1378.247551] Call Trace: [ 1378.247943] dump_stack+0x107/0x167 [ 1378.248454] should_fail.cold+0x5/0xa [ 1378.248985] ? create_object.isra.0+0x3a/0xa30 [ 1378.249564] should_failslab+0x5/0x20 [ 1378.250083] kmem_cache_alloc+0x5b/0x310 [ 1378.250624] ? mark_held_locks+0x9e/0xe0 [ 1378.251190] create_object.isra.0+0x3a/0xa30 [ 1378.251811] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1378.252547] kmem_cache_alloc+0x159/0x310 [ 1378.253116] xas_alloc+0x336/0x440 [ 1378.253646] xas_create+0x34a/0x10d0 [ 1378.254217] ? kernel_text_address+0xf2/0x120 [ 1378.254889] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1378.255673] xas_store+0x8c/0x1c40 [ 1378.256246] __xa_store+0x164/0x2d0 [ 1378.256804] ? xa_delete_node+0x280/0x280 [ 1378.257425] ? trace_hardirqs_on+0x5b/0x180 [ 1378.258076] xa_store+0x31/0x50 [ 1378.258591] __io_uring_add_tctx_node+0x1cf/0x520 [ 1378.259306] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1378.260094] ? alloc_fd+0x2e7/0x670 [ 1378.260595] io_uring_setup+0x1fbb/0x2980 [ 1378.261162] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1378.261844] ? wait_for_completion_io+0x270/0x270 [ 1378.262522] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1378.263247] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1378.263980] do_syscall_64+0x33/0x40 [ 1378.264498] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1378.265190] RIP: 0033:0x7f707acaeb19 [ 1378.265708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1378.268283] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1378.269356] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1378.270326] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1378.271286] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1378.272255] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1378.273194] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1378.305602] FAULT_INJECTION: forcing a failure. [ 1378.305602] name failslab, interval 1, probability 0, space 0, times 0 [ 1378.307479] CPU: 1 PID: 16914 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1378.308520] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1378.309777] Call Trace: [ 1378.310149] dump_stack+0x107/0x167 [ 1378.310672] should_fail.cold+0x5/0xa [ 1378.311197] ? create_object.isra.0+0x3a/0xa30 [ 1378.311917] should_failslab+0x5/0x20 [ 1378.312461] kmem_cache_alloc+0x5b/0x310 [ 1378.313096] create_object.isra.0+0x3a/0xa30 [ 1378.313713] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1378.314475] kmem_cache_alloc_trace+0x151/0x320 [ 1378.315192] __iomap_dio_rw+0x1ee/0x1110 [ 1378.315867] ? jbd2_journal_stop+0x188/0xdc0 [ 1378.316504] ? iomap_dio_bio_actor+0xef0/0xef0 [ 1378.317232] ? ext4_orphan_add+0x253/0x9e0 [ 1378.317814] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 1378.318492] ? ext4_empty_dir+0xae0/0xae0 [ 1378.319070] ? jbd2__journal_start+0xf3/0x7e0 [ 1378.319698] iomap_dio_rw+0x31/0x90 [ 1378.320227] ext4_file_write_iter+0xe0e/0x1530 [ 1378.320867] ? ext4_file_read_iter+0x4c0/0x4c0 [ 1378.321496] ? kasan_save_stack+0x32/0x40 [ 1378.322051] ? kasan_save_stack+0x1b/0x40 [ 1378.322613] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1378.323299] ? iter_file_splice_write+0x165/0xc90 [ 1378.323955] ? direct_splice_actor+0x10f/0x170 [ 1378.324586] ? splice_direct_to_actor+0x387/0x980 [ 1378.325240] ? do_splice_direct+0x1c4/0x290 [ 1378.325832] ? do_sendfile+0x553/0x11e0 [ 1378.326359] ? __x64_sys_sendfile64+0x1d1/0x210 [ 1378.326988] ? do_syscall_64+0x33/0x40 [ 1378.327489] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1378.328194] do_iter_readv_writev+0x476/0x750 [ 1378.328773] ? _cond_resched+0x10/0x30 [ 1378.329278] ? new_sync_write+0x660/0x660 [ 1378.329816] ? avc_policy_seqno+0x9/0x70 [ 1378.330335] ? selinux_file_permission+0x92/0x520 [ 1378.330949] ? security_file_permission+0xb1/0xe0 [ 1378.331570] do_iter_write+0x191/0x700 [ 1378.332086] ? trace_hardirqs_on+0x5b/0x180 [ 1378.332649] vfs_iter_write+0x70/0xa0 [ 1378.333149] iter_file_splice_write+0x726/0xc90 [ 1378.333809] ? generic_splice_sendpage+0x140/0x140 [ 1378.334452] ? security_file_permission+0xb1/0xe0 [ 1378.335109] ? generic_splice_sendpage+0x140/0x140 [ 1378.335773] direct_splice_actor+0x10f/0x170 [ 1378.336376] splice_direct_to_actor+0x387/0x980 [ 1378.337141] ? pipe_to_sendpage+0x380/0x380 [ 1378.337727] ? do_splice_to+0x160/0x160 [ 1378.338286] ? security_file_permission+0xb1/0xe0 [ 1378.339076] do_splice_direct+0x1c4/0x290 [ 1378.339639] ? splice_direct_to_actor+0x980/0x980 [ 1378.340329] ? avc_policy_seqno+0x9/0x70 [ 1378.340870] ? security_file_permission+0xb1/0xe0 [ 1378.341506] do_sendfile+0x553/0x11e0 [ 1378.342003] ? do_pwritev+0x270/0x270 [ 1378.342522] ? wait_for_completion_io+0x270/0x270 [ 1378.343199] ? rcu_read_lock_any_held+0x75/0xa0 [ 1378.343860] ? vfs_write+0x354/0xb10 [ 1378.344391] __x64_sys_sendfile64+0x1d1/0x210 [ 1378.345015] ? __ia32_sys_sendfile+0x220/0x220 [ 1378.345804] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1378.346546] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1378.347274] do_syscall_64+0x33/0x40 [ 1378.347782] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1378.348532] RIP: 0033:0x7fe85904db19 [ 1378.349061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1378.351674] RSP: 002b:00007fe8565c3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1378.352668] RAX: ffffffffffffffda RBX: 00007fe859160f60 RCX: 00007fe85904db19 [ 1378.353610] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 1378.354596] RBP: 00007fe8565c31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1378.355570] R10: 0000000100000a00 R11: 0000000000000246 R12: 0000000000000002 [ 1378.356610] R13: 00007ffe2abe178f R14: 00007fe8565c3300 R15: 0000000000022000 [ 1378.356687] FAULT_INJECTION: forcing a failure. [ 1378.356687] name failslab, interval 1, probability 0, space 0, times 0 [ 1378.359337] CPU: 0 PID: 16935 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1378.360313] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1378.361450] Call Trace: [ 1378.361809] dump_stack+0x107/0x167 [ 1378.362292] should_fail.cold+0x5/0xa [ 1378.362811] ? xas_alloc+0x336/0x440 [ 1378.363330] should_failslab+0x5/0x20 [ 1378.363866] kmem_cache_alloc+0x5b/0x310 [ 1378.364438] xas_alloc+0x336/0x440 [ 1378.364942] xas_create+0x34a/0x10d0 [ 1378.365452] ? kernel_text_address+0xf2/0x120 [ 1378.366072] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1378.366792] xas_store+0x8c/0x1c40 [ 1378.367289] __xa_store+0x164/0x2d0 [ 1378.367794] ? xa_delete_node+0x280/0x280 [ 1378.368387] ? trace_hardirqs_on+0x5b/0x180 [ 1378.369008] xa_store+0x31/0x50 [ 1378.369467] __io_uring_add_tctx_node+0x1cf/0x520 [ 1378.370106] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1378.370812] ? alloc_fd+0x2e7/0x670 [ 1378.371321] io_uring_setup+0x1fbb/0x2980 [ 1378.371901] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1378.372601] ? wait_for_completion_io+0x270/0x270 [ 1378.373282] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1378.374011] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1378.374736] do_syscall_64+0x33/0x40 [ 1378.375230] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1378.375969] RIP: 0033:0x7f707acaeb19 [ 1378.376488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1378.379071] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1378.380172] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1378.381162] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1378.382190] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1378.383125] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1378.384139] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:03:40 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000040080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:03:40 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 68) 01:03:40 executing program 6: r0 = syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={[{@mpol={'mpol', 0x3d, {'local', '', @void}}}]}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) statx(r0, &(0x7f00000000c0)='./file0\x00', 0x2000, 0x80, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r2, 0x0) getresgid(&(0x7f00000010c0), &(0x7f0000001100), &(0x7f0000001140)=0x0) r4 = semget(0x2, 0x0, 0x20b) r5 = getuid() stat(&(0x7f0000000240)='./file0/file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) semctl$IPC_SET(r4, 0x0, 0x1, &(0x7f0000000640)={{0x2, r2, 0x0, 0x0, 0x0, 0x19, 0x6}, 0x40, 0x4, 0x0, 0x0, 0x0, 0x0, 0x6}) semctl$IPC_SET(r4, 0x0, 0x1, &(0x7f00000002c0)={{0x1, r5, r3, r6, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7}) stat(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f00000010c0), &(0x7f0000001100), &(0x7f0000001140)=0x0) r9 = semget(0x2, 0x0, 0x20b) r10 = getuid() stat(&(0x7f0000000240)='./file0/file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) semctl$IPC_SET(r9, 0x0, 0x1, &(0x7f00000002c0)={{0x1, r10, r8, r11, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7}) setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='system.posix_acl_access\x00', &(0x7f0000000340)={{}, {0x1, 0x4}, [{0x2, 0x3, 0xffffffffffffffff}, {0x2, 0x4, r1}, {0x2, 0x5, r2}], {0x4, 0x3}, [{0x8, 0x9, r3}, {0x8, 0x2, 0xee01}, {0x8, 0x0, r7}, {0x8, 0x7, r8}, {0x8, 0x0, 0xffffffffffffffff}], {}, {0x20, 0x1}}, 0x64, 0x0) creat(&(0x7f0000001680)='./file0/file0\x00', 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000000, 0x10, 0xffffffffffffffff, 0x10000000) 01:03:40 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x80ffffff, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:03:40 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000050080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:03:40 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) ftruncate(r2, 0x1) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="ff02000000060000008800030019", @ANYRES32=r3, @ANYBLOB="0800050002000000"], 0x24}}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$RTC_AIE_ON(r2, 0x7001) io_setup(0x4, &(0x7f0000000000)=0x0) r6 = creat(&(0x7f0000000000)='./file0\x00', 0x0) write$P9_RREADDIR(r6, &(0x7f0000000380)={0x87, 0x29, 0x0, {0x0, [{{0x2, 0x3, 0x83}, 0x3ff, 0x1, 0x7, './file0'}, {{0x40, 0x3, 0x1}, 0xffffffffffff8000, 0x1, 0x7, './file0'}, {{0x7cee5bbbdea45f45, 0x1}, 0x9, 0xfb, 0x7, './file0'}, {{0x8, 0x0, 0x3}, 0x5, 0xf8, 0x7, './file0'}]}}, 0x87) fallocate(r6, 0x3, 0x0, 0x8000) io_cancel(r5, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2, 0x3f, 0xffffffffffffffff, &(0x7f0000000100)="436d94da0abb1c6ce62eec3610971ee4298d4b9303a903bf6d2d398d94daa0d5a9ce70783519a3af169792a930a4577635c9e590f5ed9058ac8789a8dcf128a8a9ff0dd99ed02880805282039c839513c1a6d3581038154a6180ed9db7b5e0127486aa7e870d949dc49846caf71cb44495f53340bbd9e38411157b083488c3e3b32792d9c6a7527fabf4a4664ade3c683dc6", 0x92, 0x8, 0x0, 0x3}, &(0x7f0000000280)) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x28, r7, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x28}}, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) syz_80211_join_ibss(&(0x7f0000000080)='wlan1\x00', 0x0, 0x0, 0x0) 01:03:40 executing program 7: r0 = fork() r1 = gettid() wait4(r1, &(0x7f0000000080), 0x40000000, &(0x7f00000000c0)) r2 = openat2(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x308201, 0x180, 0xa}, 0x18) r3 = getpgrp(0x0) pidfd_open(r3, 0x0) ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f0000000200)=r3) waitid(0x0, r0, &(0x7f0000000000), 0x1c0000005, 0x0) 01:03:40 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x9effffff, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:03:40 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000060080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:03:40 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 69) [ 1378.586189] FAULT_INJECTION: forcing a failure. [ 1378.586189] name failslab, interval 1, probability 0, space 0, times 0 [ 1378.587572] CPU: 0 PID: 17053 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1378.588428] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1378.589413] Call Trace: [ 1378.589735] dump_stack+0x107/0x167 [ 1378.590171] should_fail.cold+0x5/0xa [ 1378.590640] ? create_object.isra.0+0x3a/0xa30 [ 1378.591187] should_failslab+0x5/0x20 [ 1378.591644] kmem_cache_alloc+0x5b/0x310 [ 1378.592714] ? mark_held_locks+0x9e/0xe0 [ 1378.594033] create_object.isra.0+0x3a/0xa30 [ 1378.595502] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1378.596219] kmem_cache_alloc+0x159/0x310 [ 1378.596817] xas_alloc+0x336/0x440 [ 1378.597320] xas_create+0x34a/0x10d0 [ 1378.597864] ? kernel_text_address+0xf2/0x120 [ 1378.598505] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1378.599237] xas_store+0x8c/0x1c40 [ 1378.599754] __xa_store+0x164/0x2d0 [ 1378.600826] ? xa_delete_node+0x280/0x280 [ 1378.602243] ? trace_hardirqs_on+0x5b/0x180 [ 1378.603724] xa_store+0x31/0x50 [ 1378.604828] __io_uring_add_tctx_node+0x1cf/0x520 [ 1378.606491] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1378.608295] ? alloc_fd+0x2e7/0x670 [ 1378.609611] io_uring_setup+0x1fbb/0x2980 [ 1378.611013] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1378.612651] ? wait_for_completion_io+0x270/0x270 [ 1378.614321] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1378.616091] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1378.617578] do_syscall_64+0x33/0x40 [ 1378.618648] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1378.620118] RIP: 0033:0x7f707acaeb19 [ 1378.621161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1378.626486] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1378.628310] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1378.629275] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1378.630246] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1378.631215] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1378.632593] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:03:53 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 70) 01:03:53 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:03:53 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x2400, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) sendmsg$IPCTNL_MSG_EXP_DELETE(r1, &(0x7f0000000b00)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f0000000880)={0x278, 0x2, 0x2, 0x201, 0x0, 0x0, {0xa, 0x0, 0x3}, [@CTA_EXPECT_NAT={0x19c, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_TUPLE={0x38, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x41}}, {0x8, 0x2, @private=0xa010101}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}, @CTA_EXPECT_NAT_TUPLE={0x64, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @empty}}}]}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_TUPLE={0x6c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @rand_addr=' \x01\x00'}, {0x14, 0x4, @private1}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_EXPECT_NAT_TUPLE={0x78, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x1a}}, {0x8, 0x2, @broadcast}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @local}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_ZONE={0x6}]}]}, @CTA_EXPECT_MASK={0x50, 0x3, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x8800}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x22}}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x25}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}, @CTA_EXPECT_CLASS={0x8, 0x9, 0x1, 0x0, 0x3}, @CTA_EXPECT_FN={0x13, 0xb, 'callforwarding\x00'}, @CTA_EXPECT_ZONE={0x6}, @CTA_EXPECT_MASTER={0x30, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_EXPECT_HELP_NAME={0x9, 0x6, 'snmp\x00'}, @CTA_EXPECT_HELP_NAME={0xe, 0x6, 'ftp-20000\x00'}, @CTA_EXPECT_CLASS={0x8, 0x9, 0x1, 0x0, 0x5}]}, 0x278}, 0x1, 0x0, 0x0, 0x20004081}, 0x4004001) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000001040)=ANY=[@ANYBLOB="240000000104010200000000000000000000000008000440000000000500010002020000"], 0x24}}, 0x0) r2 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe) keyctl$invalidate(0x15, r2) keyctl$set_timeout(0xf, r2, 0x0) r3 = add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$chown(0x4, 0x0, 0xffffffffffffffff, 0x0) sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x7, 0x1, 0x701, 0x0, 0x0, {0x0, 0x0, 0x9}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x8800) keyctl$chown(0x4, 0x0, 0xffffffffffffffff, 0x0) sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f00000003c0), 0xc, &(0x7f0000000500)={&(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0xe4}, 0x1, 0x0, 0x0, 0x800}, 0x0) r4 = add_key$fscrypt_v1(&(0x7f0000000300), &(0x7f0000000340)={'fscrypt:', @desc3}, &(0x7f0000000580)={0x0, "18ff11eada931e41726aff50a770f500fb0e3d624c1f5e589d4ca6212ff40f02cb85ab0459396e259d56687243ff072d79e07739f2c22c265dc682c378abec78", 0x29}, 0x48, r3) r5 = add_key(&(0x7f0000000400)='cifs.spnego\x00', &(0x7f0000000440)={'syz', 0x0}, &(0x7f00000007c0)="4ba799398557c3a0a00fb7ed27e0f2a5dbd6d066ff8c8b352a047df08b62583a7aa82ef1c9a4827d2f18c1ae8d4052304cf46ec3fb26f3c5e7479b925848825beb0c07f84d1230dc8f17fe10305e629a3f395bba7230f91be831f59081306f6fc76ab0e271f815c6a194c923bfd82602af084e923870ff3d71d9bd2fd2dd493417b1ddbbe75a34a1d19224744e7b406c1f7ad0bf1c7a48c236ca47c11a58bf", 0x9f, 0x0) request_key(&(0x7f0000000040)='pkcs7_test\x00', &(0x7f00000002c0)={'syz', 0x3}, &(0x7f0000000380)='e8dab99234bb312e', r5) keyctl$KEYCTL_MOVE(0x1e, 0x0, 0x0, r4, 0x1) 01:03:53 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000a00) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:03:53 executing program 6: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x12000, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x2, @perf_config_ext={0x5}, 0x44002, 0x0, 0x0, 0x0, 0xfffffffffffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000500)={0x4, 0x80, 0x76, 0x0, 0x0, 0x3f, 0x0, 0xa83, 0x38441, 0x2, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x4, @perf_bp={&(0x7f00000004c0)}, 0x0, 0x4, 0x7, 0x0, 0x4, 0x6, 0x7, 0x0, 0xffff, 0x0, 0x10000}, 0xffffffffffffffff, 0x6, r0, 0x8) syz_read_part_table(0x4, 0x3, &(0x7f0000000300)=[{0x0, 0x0, 0x7fff}, {&(0x7f00000000c0)="c38cf7bc4643814e0c3c102f3b75e3c485e1953666867ff0b760954b5332fb483e5202228f1d3639fb7e217fc1641ed544264d6d64acb87d45fd283a67394a4e2e2701aa50bb03876578363361", 0x4d}, {&(0x7f0000000180)="5bffa097ec44ff12ea1e69793d84533c7cb8a98876a1d69640b9350e43bd6dbde6d292e3ec889a2f997ed8ca47e1ce40613b86425c9456f874799fb3e850dbcfeb73af445005e7561b8047b6d9437d7a6c73b62e7124fb2699949fe472ecbf145e1c365cd2287639641d1a0c04144114d1bc776d64b3bf20c3e73b4249f23d53201bfb8491e7b24e3c110cf6fa7d1d67d5ee06beeb1646190fdbb6bc2b1b44a917d0612a21f3a5a8a4911756e842a9b14ac53892cdeca6ea25b9228b5bc75aed64cee705e38f18640770a2a4d5d901853a031c6cc4cddff8c22897481b3c52649adbfe44f9e62e445b1bbfc9af83", 0xee}]) r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000280), 0x40200, 0x0) pidfd_getfd(r1, r0, 0x0) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000740)={'#! ', './file1', [], 0xa, "36f1ff0100000000000043e33b6455ca876e2a117d09cdd409e0016a5f0dd4f394d029c70d82941c5f830945000000007cc48c8506377c5e96f7acf63c7c99f5dbbad0"}, 0x4e) getpgrp(0xffffffffffffffff) r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x105400, 0x8) close(r2) write$P9_RREADLINK(r2, &(0x7f0000000140)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10) 01:03:53 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xf0ffffff, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:03:53 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000070080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:03:53 executing program 7: r0 = fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2c7a, 0x5, &(0x7f0000000440)=[{&(0x7f0000000100)="5879e6ecd717fe72375d420c3e4916000fe35360f16bff7adcfe7ed9deaa22c65d80ae71678821f937bfaf1ba94c77741ab2c7702db20fe08484fb11369f54bed3bcec15b433b2656dabca", 0x4b, 0x4}, {&(0x7f0000000180)="c9ec447f1b995926583dccd6f697b786ade041c475d8da711a9f5a61a74f0a61bacea6a940ea76fc32fc33022a13f531a8289b7db14f95107b042821052d91752365a8c4f069583db0c8d1a877fdff0e9f27690b4ed8994394855a85a69f716bde840a121bde5f3f1a5ddc43e3eb566efb4b576d160c23983f65ea80c63e2e60c2f35351a238134413d30bf82f0fb137db940820b5d93397a0785d9d8389b524a8f1133ff0", 0xa5, 0x4}, {&(0x7f0000000240)="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", 0xfe, 0x9}, {&(0x7f0000000340)="2e5aa342426d994c31dcf9a115af7fe65158ee659d0cb7b50ed3d41b1ee8c0bc00ed207bbd7f6a23021209c039a6834252923948d143b17b8fd7582c8eeaa4e3d65d3ec746e241bf2ec00ad2947c425bccc5d574b65084a6f95744f5c39a51f069182dc43dfea57d7143811d0985d2ec1997063dd36efa96a6d2d854fa1327c61a111c017e6ef35361cc85a99d8ae9960a11", 0x92, 0xffffffffffff4e21}, {&(0x7f0000000400)="1e35c8f171b0d63da166a38fb45c62835a3a3dd2dc6dbaf53723f627239c0ccdd39521a3262956d374395df38a3e490f25b896fde8fbcd97792274f41f1db6", 0x3f, 0x3}], 0x100004, &(0x7f0000001640)=ANY=[@ANYBLOB="756e695f786c6174653d312c73686f72746e616d653d77696e6e742c6e6e6f6e44756d7461696c3d312c6e6f6e756d7461696c3d302c6e6f6e756d7461696c3d302c646f6f677e18b170745f61707072616973652cc8580f0800a26c9d417681a28187f62874c0e5f784aaca3ebe6ffb89354b1c9f8e99134a7eab0000528f598f01923e2efb4118727181174b7248127b68e329d92d5ae2e2b39295f6164e415daf5c37782c61f0f7d9a587a098f51eeef89cfd0563cd04f4192e85042fec65aaa047b138e9333b9b46cb1c48d88046f4f1f08ac00bd3777c70fc5d980b2ab0d1a4542fe643c940736203372e4960adabbf0cd8d53e7d"]) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000700)=""/222, 0xde}], 0x1, 0x0, 0x1, {0x0, r4}}, 0x0) openat(0xffffffffffffffff, &(0x7f0000000540)='./file0\x00', 0x101000, 0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) wait4(r0, &(0x7f0000000500), 0x20000000, 0x0) syz_io_uring_submit(r2, 0x0, &(0x7f00000004c0)=@IORING_OP_SEND={0x1a, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000640)="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", 0x1000, 0x4c811, 0x1, {0x0, r5}}, 0x2) [ 1392.128384] FAULT_INJECTION: forcing a failure. [ 1392.128384] name failslab, interval 1, probability 0, space 0, times 0 [ 1392.130869] CPU: 0 PID: 17167 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1392.132385] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1392.134175] Call Trace: [ 1392.134750] dump_stack+0x107/0x167 [ 1392.135531] should_fail.cold+0x5/0xa [ 1392.136345] ? xas_alloc+0x336/0x440 [ 1392.137154] should_failslab+0x5/0x20 [ 1392.137979] kmem_cache_alloc+0x5b/0x310 [ 1392.138863] xas_alloc+0x336/0x440 [ 1392.139634] xas_create+0x34a/0x10d0 [ 1392.140456] ? kernel_text_address+0xf2/0x120 [ 1392.141432] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1392.142565] xas_store+0x8c/0x1c40 [ 1392.143346] __xa_store+0x164/0x2d0 [ 1392.144145] ? xa_delete_node+0x280/0x280 [ 1392.145047] ? trace_hardirqs_on+0x5b/0x180 [ 1392.145984] xa_store+0x31/0x50 [ 1392.146701] __io_uring_add_tctx_node+0x1cf/0x520 [ 1392.147742] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1392.148895] ? alloc_fd+0x2e7/0x670 [ 1392.149693] io_uring_setup+0x1fbb/0x2980 [ 1392.150598] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1392.151689] ? wait_for_completion_io+0x270/0x270 [ 1392.152760] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1392.153892] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1392.155011] do_syscall_64+0x33/0x40 [ 1392.155816] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1392.156990] RIP: 0033:0x7f707acaeb19 [ 1392.157794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1392.161781] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1392.163435] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1392.164998] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1392.166550] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1392.168115] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1392.169668] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:03:53 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xfffff000, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1392.184226] loop6: detected capacity change from 0 to 65024 [ 1392.209088] loop6: detected capacity change from 0 to 65024 01:03:54 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000080080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:03:54 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0xa, 0x300) sync_file_range(0xffffffffffffffff, 0x82, 0x5, 0x0) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000002ec0), 0x2001, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, &(0x7f0000000580)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r3 = dup2(r2, 0xffffffffffffffff) ioctl$FIBMAP(0xffffffffffffffff, 0x1, &(0x7f0000000000)) r4 = socket$inet(0x2, 0x3, 0x6) mmap$IORING_OFF_CQ_RING(&(0x7f0000fef000/0x11000)=nil, 0x11000, 0x0, 0x30, 0xffffffffffffffff, 0x8000000) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r6 = accept(r0, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f0000000080)=0x80) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_CONNECT={0x10, 0x4, 0x0, r3, 0x80, &(0x7f0000000200)=@pppol2tp={0x18, 0x1, {0x0, r6, {0x2, 0x4e24, @broadcast}, 0x3, 0x0, 0x4, 0x2}}, 0x0, 0x0, 0x1, {0x0, r7}}, 0x3ef) connect$inet(r4, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10) sendmmsg$inet(r4, &(0x7f0000000000), 0x400000d, 0x0) accept(0xffffffffffffffff, 0x0, &(0x7f0000000040)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x4) 01:03:54 executing program 7: r0 = fork() ptrace$poke(0x5, r0, &(0x7f0000000080), 0x4) waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) 01:03:54 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xffffff7f, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:03:54 executing program 5: fsetxattr$security_selinux(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x3) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='oom_adj\x00') write$cgroup_int(r0, &(0x7f0000000040), 0x12) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) dup(r1) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, 0x0) 01:03:54 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000180080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:03:54 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 71) [ 1392.535569] FAULT_INJECTION: forcing a failure. [ 1392.535569] name failslab, interval 1, probability 0, space 0, times 0 [ 1392.538057] CPU: 1 PID: 17406 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1392.539549] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1392.541346] Call Trace: [ 1392.541920] dump_stack+0x107/0x167 [ 1392.542709] should_fail.cold+0x5/0xa [ 1392.543536] ? create_object.isra.0+0x3a/0xa30 [ 1392.544530] should_failslab+0x5/0x20 [ 1392.545354] kmem_cache_alloc+0x5b/0x310 [ 1392.546229] ? mark_held_locks+0x9e/0xe0 [ 1392.547112] create_object.isra.0+0x3a/0xa30 [ 1392.548069] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1392.549171] kmem_cache_alloc+0x159/0x310 [ 1392.550070] xas_alloc+0x336/0x440 [ 1392.550841] xas_create+0x34a/0x10d0 [ 1392.551656] ? kernel_text_address+0xf2/0x120 [ 1392.552645] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1392.553781] xas_store+0x8c/0x1c40 [ 1392.554565] __xa_store+0x164/0x2d0 [ 1392.555357] ? xa_delete_node+0x280/0x280 [ 1392.556281] ? trace_hardirqs_on+0x5b/0x180 [ 1392.557224] xa_store+0x31/0x50 [ 1392.557946] __io_uring_add_tctx_node+0x1cf/0x520 [ 1392.558988] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1392.560131] ? alloc_fd+0x2e7/0x670 [ 1392.560934] io_uring_setup+0x1fbb/0x2980 [ 1392.561838] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1392.562928] ? wait_for_completion_io+0x270/0x270 [ 1392.564005] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1392.565139] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1392.566252] do_syscall_64+0x33/0x40 [ 1392.567053] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1392.568171] RIP: 0033:0x7f707acaeb19 [ 1392.568975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1392.569220] syz-executor.5 (17410): /proc/17410/oom_adj is deprecated, please use /proc/17410/oom_score_adj instead. [ 1392.572964] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1392.572985] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1392.572996] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1392.573007] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1392.573020] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1392.573032] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:04:11 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:04:11 executing program 7: r0 = fork() ptrace(0x4208, r0) waitid(0x3, 0x0, &(0x7f0000000080), 0x1c0000005, 0x0) 01:04:11 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 72) 01:04:11 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000002) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:04:11 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="20001c0080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:04:11 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xffffff80, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:04:11 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) io_setup(0x5, &(0x7f0000000080)=0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r2, {r0}}, './file1\x00'}) r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r4, 0x3, 0x0, 0x8000) ioctl$AUTOFS_DEV_IOCTL_FAIL(r3, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r4, {0xf9, 0xffffff7c}}, './file1\x00'}) io_submit(r1, 0x2, &(0x7f00000001c0)=[&(0x7f0000000040)={0x0, 0x0, 0x5, 0x0, 0x0, r2, 0x0}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x2, 0x0, r0, 0x0, 0x0, 0x733}]) 01:04:11 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) r2 = syz_io_uring_setup(0x9, &(0x7f0000000180)={0x0, 0x0, 0x0, 0xfffffffd, 0x3af, 0x0, r1}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) r5 = socket$inet(0x2, 0xa, 0x1) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r5, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e22, @loopback}}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)="a63a85f508c53b74be1cc06a8682449c18237d779b4f25", 0x17}, {0x0}, {0x0}], 0x3}, 0x0, 0x4000000, 0x1}, 0x0) open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x80101) openat(r1, &(0x7f0000000240)='./file0\x00', 0x40282, 0x80) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) syz_open_dev$rtc(&(0x7f0000000380), 0x12e, 0x1) dup2(0xffffffffffffffff, 0xffffffffffffffff) ftruncate(r6, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r6, 0x40086602, &(0x7f0000000000)={0x0, 0xffffffff}) read(0xffffffffffffffff, &(0x7f0000000000), 0x1b4000) syz_emit_ethernet(0x3e, &(0x7f00000003c0)={@link_local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "96153f", 0x8, 0x6, 0x0, @rand_addr=' \x01\x00', @mcast2, {[], @mlv2_report}}}}}, 0x0) write$binfmt_elf64(r6, &(0x7f00000001c0)=ANY=[], 0xfdef) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000100)='./file0\x00', 0x80) write$binfmt_elf64(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="7f454c460205028101000000000000000200030005000000b2030000000000004000000000000000430200000000050002000000090038000200ff000100feff02000000000400002c000000000000000104000000000000315f0000000000007f000000000000000100000000000000660e000000000000e5eee62a9e4f89e6cf2a7f750cb79f7d182bc3ad101351cfeb902f61bc4bfca8febdfb983b000b9289be8c2eecda0c81ac8faab0bf5a6c39b6f270af7910fa6ccfccdedd40b0341efb1a"], 0xc2) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) [ 1409.320627] FAULT_INJECTION: forcing a failure. [ 1409.320627] name failslab, interval 1, probability 0, space 0, times 0 [ 1409.323324] CPU: 1 PID: 17435 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1409.324881] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1409.326733] Call Trace: [ 1409.327325] dump_stack+0x107/0x167 [ 1409.328145] should_fail.cold+0x5/0xa [ 1409.329025] ? xas_alloc+0x336/0x440 [ 1409.329878] should_failslab+0x5/0x20 [ 1409.330771] kmem_cache_alloc+0x5b/0x310 [ 1409.331690] xas_alloc+0x336/0x440 [ 1409.332522] xas_create+0x34a/0x10d0 [ 1409.333387] ? kernel_text_address+0xf2/0x120 [ 1409.334429] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1409.335639] xas_store+0x8c/0x1c40 [ 1409.336587] __xa_store+0x164/0x2d0 [ 1409.337405] ? xa_delete_node+0x280/0x280 [ 1409.338344] ? trace_hardirqs_on+0x5b/0x180 [ 1409.339320] xa_store+0x31/0x50 [ 1409.340266] __io_uring_add_tctx_node+0x1cf/0x520 [ 1409.341660] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1409.343152] ? alloc_fd+0x2e7/0x670 [ 1409.344053] io_uring_setup+0x1fbb/0x2980 01:04:11 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xffffff9e, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1409.345025] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1409.346322] ? wait_for_completion_io+0x270/0x270 [ 1409.347479] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1409.348718] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1409.349897] do_syscall_64+0x33/0x40 [ 1409.350950] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1409.352115] RIP: 0033:0x7f707acaeb19 [ 1409.352977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1409.357148] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1409.358870] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1409.360487] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1409.362100] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1409.363707] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1409.365332] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:04:11 executing program 6: r0 = socket$packet(0x11, 0x0, 0x300) tee(0xffffffffffffffff, r0, 0x1, 0x0) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x40000) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) socket$inet_udp(0x2, 0x2, 0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) mmap(&(0x7f00006f5000/0x4000)=nil, 0x4000, 0x4, 0x13, r2, 0xa205e000) ioctl$SNDRV_TIMER_IOCTL_STATUS64(0xffffffffffffffff, 0x541b, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x400000, 0x90) r3 = syz_io_uring_setup(0x13ec, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000080)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) fallocate(r1, 0x0, 0x0, 0x1000001) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="3800000002030104000000000000200005000001080004400000002d08003cfd235162c10440000000210800054000000020090002008000"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x801) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) 01:04:11 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000630080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:04:11 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 73) [ 1409.552059] FAULT_INJECTION: forcing a failure. [ 1409.552059] name failslab, interval 1, probability 0, space 0, times 0 [ 1409.554849] CPU: 0 PID: 17471 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1409.556440] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1409.558220] Call Trace: [ 1409.558789] dump_stack+0x107/0x167 [ 1409.559568] should_fail.cold+0x5/0xa [ 1409.560380] ? create_object.isra.0+0x3a/0xa30 [ 1409.561372] should_failslab+0x5/0x20 [ 1409.562211] kmem_cache_alloc+0x5b/0x310 [ 1409.563119] ? mark_held_locks+0x9e/0xe0 [ 1409.564037] create_object.isra.0+0x3a/0xa30 [ 1409.564991] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1409.566102] kmem_cache_alloc+0x159/0x310 [ 1409.567005] xas_alloc+0x336/0x440 [ 1409.567772] xas_create+0x34a/0x10d0 [ 1409.568605] ? kernel_text_address+0xf2/0x120 [ 1409.569571] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1409.570689] xas_store+0x8c/0x1c40 [ 1409.571456] __xa_store+0x164/0x2d0 [ 1409.572256] ? xa_delete_node+0x280/0x280 [ 1409.573140] ? trace_hardirqs_on+0x5b/0x180 [ 1409.574077] xa_store+0x31/0x50 [ 1409.574794] __io_uring_add_tctx_node+0x1cf/0x520 [ 1409.575832] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1409.576967] ? alloc_fd+0x2e7/0x670 [ 1409.577777] io_uring_setup+0x1fbb/0x2980 [ 1409.578666] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1409.579755] ? wait_for_completion_io+0x270/0x270 [ 1409.580821] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1409.581949] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1409.583062] do_syscall_64+0x33/0x40 [ 1409.583864] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1409.584966] RIP: 0033:0x7f707acaeb19 [ 1409.585754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1409.589713] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1409.591318] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1409.592838] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1409.594347] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1409.595852] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1409.597416] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:04:11 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xfffffff0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:04:11 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000f00080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:04:11 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0xffffffff, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:04:11 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000008) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:04:27 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 74) 01:04:27 executing program 7: fork() waitid(0x0, 0x0, &(0x7f0000000080), 0x1c0000005, 0x0) 01:04:27 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000380000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:04:27 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r1) sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000180)={0x0, 0xfffffffffffffe9a, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000002100800009001f00706879310000000005002000000000000c000500000000000000000010da09a33237beec793eede95d78f206fc7994f1ceab5ce2141b1900cf4b8e86a5f53ecdc2806e900b6e9fced9"], 0x34}}, 0x0) sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="a14c25df", @ANYRES16=r2, @ANYBLOB="20002bbd7000ffdbdf252e00000006000600ffff0000"], 0x1c}}, 0x2004041) r3 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r3, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r4 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x4}, 0x4) sendmmsg$inet6(r3, &(0x7f0000004d00), 0x2f, 0x0) [ 1426.043624] FAULT_INJECTION: forcing a failure. [ 1426.043624] name failslab, interval 1, probability 0, space 0, times 0 [ 1426.046579] CPU: 0 PID: 17568 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1426.048309] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1426.050403] Call Trace: [ 1426.051076] dump_stack+0x107/0x167 [ 1426.052001] should_fail.cold+0x5/0xa [ 1426.052975] ? xas_alloc+0x336/0x440 [ 1426.053918] should_failslab+0x5/0x20 [ 1426.054876] kmem_cache_alloc+0x5b/0x310 [ 1426.055951] xas_alloc+0x336/0x440 [ 1426.056852] xas_create+0x34a/0x10d0 [ 1426.057797] ? kernel_text_address+0xf2/0x120 [ 1426.058933] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1426.060252] xas_store+0x8c/0x1c40 [ 1426.061171] __xa_store+0x164/0x2d0 [ 1426.062087] ? xa_delete_node+0x280/0x280 [ 1426.063122] ? trace_hardirqs_on+0x5b/0x180 [ 1426.064204] xa_store+0x31/0x50 [ 1426.065032] __io_uring_add_tctx_node+0x1cf/0x520 [ 1426.066239] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1426.067514] ? alloc_fd+0x2e7/0x670 [ 1426.068435] io_uring_setup+0x1fbb/0x2980 [ 1426.069482] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1426.070759] ? wait_for_completion_io+0x270/0x270 [ 1426.072002] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1426.073327] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1426.074619] do_syscall_64+0x33/0x40 [ 1426.075556] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1426.076838] RIP: 0033:0x7f707acaeb19 [ 1426.077779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1426.082384] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1426.084294] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1426.086088] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1426.087879] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1426.089487] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1426.090934] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:04:27 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:04:27 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe76f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = syz_io_uring_setup(0x22200, &(0x7f0000000240)={0x0, 0xe23f, 0x0, 0x0, 0x3}, &(0x7f0000683000/0x4000)=nil, &(0x7f0000203000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) fstat(r0, &(0x7f00000002c0)) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/ipv6', 0x4000, 0x111) setsockopt$inet6_buf(r3, 0x29, 0xcd, &(0x7f0000000340)="537e1de79e65373c0e628594bbac79a5138e1b950e988e5d8a6866cd7d6e3f56a02fac1b3264ec4c503b154e5091555e5d76bbd562a8270b5c75732ae2547e1e339d24559bd51beabacf219793f5f94acc01f1a3de3fc95973118a4343f61697a91b4e5b0ec3d7a9f3d62336f64cc59143fb8e845b98a87c0a0155fcdf5dd6101c908ffda24f7ab3b813fe6c35fb4c37cf453254935b", 0x96) syz_io_uring_setup(0x21, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) fallocate(0xffffffffffffffff, 0x3, 0x0, 0x8000) perf_event_open(&(0x7f0000000580)={0x2, 0x80, 0x0, 0x40, 0x2, 0x3c, 0x0, 0xffffffffffff0001, 0xa040, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_bp={&(0x7f0000000400), 0x2}, 0x5000, 0xffffffffffffff95, 0x2e, 0x5, 0x1, 0x44, 0x7f, 0x0, 0xae99, 0x0, 0xb3}, 0x0, 0xe, 0xffffffffffffffff, 0x2) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000780)=ANY=[@ANYBLOB="000000000000000006000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000700000001000000fdffffffffffffff04000000000000000500000000000000020000000000000000000000000000000000000000000000000000000000000006000000090000000500000000000000ff01000000000000010000000000000042080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000052472dbd00"/576]) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x8}}, './file1\x00'}) io_uring_enter(r4, 0x575, 0x8ff4, 0x0, &(0x7f0000000080)={[0x9]}, 0x8) 01:04:27 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:04:27 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000010) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:04:27 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000800480000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:04:28 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x2, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:04:28 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000580000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:04:28 executing program 5: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000001700000200000002000000008000000080000020000000e1f4655fe1f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000080)={[{@usrjquota}, {@min_batch_time}]}) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000000c0)={r0, 0x5, 0xffffffffffff0bfc, 0x101}) mkdirat(r1, &(0x7f0000000100)='./file0/file0\x00', 0x80) 01:04:28 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 75) [ 1426.431451] loop5: detected capacity change from 0 to 2048 01:04:28 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x3, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1426.448491] EXT4-fs (loop5): couldn't mount as ext3 due to feature incompatibilities [ 1426.456460] FAULT_INJECTION: forcing a failure. [ 1426.456460] name failslab, interval 1, probability 0, space 0, times 0 [ 1426.459033] CPU: 0 PID: 17701 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1426.460569] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1426.462696] Call Trace: [ 1426.463426] dump_stack+0x107/0x167 [ 1426.464437] should_fail.cold+0x5/0xa [ 1426.465378] ? create_object.isra.0+0x3a/0xa30 [ 1426.466376] should_failslab+0x5/0x20 [ 1426.467229] kmem_cache_alloc+0x5b/0x310 [ 1426.468121] ? mark_held_locks+0x9e/0xe0 [ 1426.469062] create_object.isra.0+0x3a/0xa30 [ 1426.470021] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1426.471126] kmem_cache_alloc+0x159/0x310 [ 1426.472038] xas_alloc+0x336/0x440 [ 1426.472809] xas_create+0x34a/0x10d0 [ 1426.473602] ? kernel_text_address+0xf2/0x120 [ 1426.474559] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1426.475715] xas_store+0x8c/0x1c40 [ 1426.476504] __xa_store+0x164/0x2d0 [ 1426.477293] ? xa_delete_node+0x280/0x280 [ 1426.478203] ? trace_hardirqs_on+0x5b/0x180 [ 1426.479256] xa_store+0x31/0x50 [ 1426.479989] __io_uring_add_tctx_node+0x1cf/0x520 [ 1426.481066] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1426.482212] ? alloc_fd+0x2e7/0x670 [ 1426.483025] io_uring_setup+0x1fbb/0x2980 [ 1426.483980] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1426.485068] ? wait_for_completion_io+0x270/0x270 [ 1426.486135] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1426.487271] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1426.488388] do_syscall_64+0x33/0x40 [ 1426.489184] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1426.490257] RIP: 0033:0x7f707acaeb19 [ 1426.491068] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1426.494966] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1426.496582] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1426.498083] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1426.499647] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1426.501185] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1426.502696] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:04:28 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000680000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:04:28 executing program 7: r0 = fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) ptrace$peek(0x2, r0, &(0x7f0000000080)) 01:04:28 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000018) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) [ 1426.555861] loop5: detected capacity change from 0 to 2048 01:04:28 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x4, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1426.610050] EXT4-fs (loop5): couldn't mount as ext3 due to feature incompatibilities 01:04:28 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 76) 01:04:28 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000780000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1426.775404] FAULT_INJECTION: forcing a failure. [ 1426.775404] name failslab, interval 1, probability 0, space 0, times 0 [ 1426.778160] CPU: 0 PID: 17754 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1426.779731] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1426.781539] Call Trace: [ 1426.782123] dump_stack+0x107/0x167 [ 1426.782906] should_fail.cold+0x5/0xa [ 1426.783716] ? xas_alloc+0x336/0x440 [ 1426.784526] should_failslab+0x5/0x20 [ 1426.785385] kmem_cache_alloc+0x5b/0x310 [ 1426.786255] xas_alloc+0x336/0x440 [ 1426.787054] xas_create+0x34a/0x10d0 [ 1426.787872] ? kernel_text_address+0xf2/0x120 [ 1426.788905] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1426.790074] xas_store+0x8c/0x1c40 [ 1426.790876] __xa_store+0x164/0x2d0 [ 1426.791677] ? xa_delete_node+0x280/0x280 [ 1426.792626] ? trace_hardirqs_on+0x5b/0x180 [ 1426.793598] xa_store+0x31/0x50 [ 1426.794333] __io_uring_add_tctx_node+0x1cf/0x520 [ 1426.795395] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1426.796580] ? alloc_fd+0x2e7/0x670 [ 1426.797412] io_uring_setup+0x1fbb/0x2980 [ 1426.798343] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1426.799467] ? wait_for_completion_io+0x270/0x270 [ 1426.800593] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1426.801858] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1426.803001] do_syscall_64+0x33/0x40 [ 1426.803842] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1426.805006] RIP: 0033:0x7f707acaeb19 [ 1426.805833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1426.809930] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1426.811602] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1426.813205] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1426.814777] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1426.816359] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1426.818233] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:04:43 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 77) 01:04:43 executing program 5: ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000500)={0x0, 0x8001, 0x5, 0x1}) r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xfffffffffffffffb, 0xffffffffffffffff, 0xa) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) r3 = getpgid(0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000340)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'}) perf_event_open(&(0x7f00000002c0)={0xd, 0x80, 0x6, 0x7, 0x20, 0xff, 0x0, 0xf42, 0x60080, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x7fffffff, 0x2, @perf_bp={&(0x7f0000000040), 0x9}, 0x40080, 0x80000000, 0x80, 0x0, 0x9, 0x9, 0x8, 0x0, 0x7ff, 0x0, 0xe1c}, r3, 0x9, r4, 0x8) ioctl$EXT4_IOC_MIGRATE(0xffffffffffffffff, 0x6609) write$bt_hci(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="b9b9745a1f0000000000000077b31f7eb300"], 0x6) fallocate(r2, 0x1, 0x5, 0x4) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000003080)={0x0, "1aaaa8aae701d5ca00"}) r5 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f00000051c0)={@in, 0x0, 0x0, 0x0, 0x0, "0251f7c0b5745a843e33f9671616246b571db84658220dde12dca995eae804e6d173c1236d6dc27245d6cd4e7055478a9a772b501e4c1d116a5743271835608e12391c2bad9669a57267068800c5d50b"}, 0xd8) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) 01:04:43 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:04:43 executing program 7: r0 = inotify_init() fallocate(r0, 0x20, 0x3, 0x10001) ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r0, 0x8040942d, &(0x7f0000000080)) fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) 01:04:43 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x5, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:04:43 executing program 6: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f00000001c0)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}, {&(0x7f0000000500)="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", 0x3ca, 0x7da}], 0x0, &(0x7f0000000240)=ANY=[]) openat(0xffffffffffffffff, &(0x7f0000000d00)='./file0\x00', 0x0, 0x106) chdir(&(0x7f0000000000)='./file1\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, 0x0, @perf_bp={&(0x7f0000000280), 0x2}, 0xc00}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdirat(r0, &(0x7f0000000180)='./file0\x00', 0xc1) getpgrp(0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_RX_RING(0xffffffffffffffff, 0x10e, 0x6, &(0x7f0000000100)={0x0, 0x20, 0x9, 0x77e}, 0x10) ioprio_get$pid(0x2, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000040)) 01:04:43 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000001880000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:04:43 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000028) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) [ 1442.206256] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17847 comm=syz-executor.0 [ 1442.213225] FAULT_INJECTION: forcing a failure. [ 1442.213225] name failslab, interval 1, probability 0, space 0, times 0 [ 1442.216656] CPU: 1 PID: 17845 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1442.218112] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1442.219850] Call Trace: [ 1442.220410] dump_stack+0x107/0x167 [ 1442.221187] should_fail.cold+0x5/0xa [ 1442.221261] loop6: detected capacity change from 0 to 41948160 [ 1442.221990] ? create_object.isra.0+0x3a/0xa30 [ 1442.222009] should_failslab+0x5/0x20 [ 1442.222037] kmem_cache_alloc+0x5b/0x310 [ 1442.225862] ? mark_held_locks+0x9e/0xe0 [ 1442.226720] create_object.isra.0+0x3a/0xa30 [ 1442.227651] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1442.228733] kmem_cache_alloc+0x159/0x310 [ 1442.229616] xas_alloc+0x336/0x440 [ 1442.230367] xas_create+0x34a/0x10d0 [ 1442.231160] ? kernel_text_address+0xf2/0x120 [ 1442.232107] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1442.233228] xas_store+0x8c/0x1c40 [ 1442.233990] __xa_store+0x164/0x2d0 [ 1442.234762] ? xa_delete_node+0x280/0x280 [ 1442.235644] ? trace_hardirqs_on+0x5b/0x180 [ 1442.236575] xa_store+0x31/0x50 [ 1442.237278] __io_uring_add_tctx_node+0x1cf/0x520 [ 1442.238297] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1442.239408] ? alloc_fd+0x2e7/0x670 [ 1442.240192] io_uring_setup+0x1fbb/0x2980 [ 1442.241085] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1442.242156] ? wait_for_completion_io+0x270/0x270 [ 1442.243201] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1442.244307] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1442.245413] do_syscall_64+0x33/0x40 [ 1442.246205] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1442.247286] RIP: 0033:0x7f707acaeb19 [ 1442.248075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1442.251924] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1442.253553] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1442.255075] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1442.256600] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1442.258126] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1442.259643] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1442.275033] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 01:04:44 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x6, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:04:44 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000000500)="000000000000000000000000000000000000000000000000000000002000200001000000000000000000000000000000000000000000000035000000000009005e29b3daad82e9b9ab491338058802bf87d726d07b", 0x55, 0x540}, {&(0x7f0000010300)="02000000030000000400000032000f000300040000000000000000000f002f7c", 0x20, 0x1000}, {&(0x7f0000012500)="ed41000000100000e0f4655fe1f4655fe1f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="a816000b843bb86a66a2ef"]) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0xfffffffffffffff8, 0x3, &(0x7f0000000440)=[{&(0x7f00000001c0)="d30cc945cb02fda723baa8c91fc66ef85fe0bef8788c5dfd93eefe3d2097687cd4c7eedf78bb81cc5500f3be439ff16b2a190b", 0x33, 0x9}, {&(0x7f0000000280)="6316f98d8e98038e0c83f715d7018ecf8be84bc389fda92bcd25f002b57544f2743d44ab3ee9c8298d6f901aa53f904814ea70c1e62e5c7697d095c28f8e08632fbd4ba6dc1d48c3b8346429f3505e7ee81595876e0e90595687354160a7dad4fac04ab59ba3b8fe3e6dab3fd31a0cefb52455e1c62815cf7d3a098388ce99d95209b179dde7480f9cdfdb714126", 0x8e, 0xfffffffffffffff9}, {&(0x7f0000000340)="a9ff6f496b86a53314e6d0942fb9b28176dc025e4a531100031fb34fb7db9b9482b7ba6889e3b2dbac0ee4e81d4cb137402711ef580f2b1af42e69df592ec72dcd07d8ed65237aa922be3b82899399ee697a5e219c75fbf27c7bc4508a0d811a8760854c559f079cd5a696d992f61cd1d3d79296ec3225717bb3ba120a765ba0fb3f2d81b00e0a7bc2505c37e3d0d84fd3b3669780d42e36894c97726dd40728db4531550e38fba79a181cb6d2c07599b3be27174014516c813a8b4d9cd48ca746372913a3db0b995a9904", 0xcb, 0x3}], 0x80, &(0x7f0000000580)={[{@utf8}, {@uni_xlateno}, {@utf8no}, {@uni_xlate}, {@nonumtail}], [{@audit}, {@euid_gt}, {@fsuuid={'fsuuid', 0x3d, {[0x66, 0x35, 0x5b, 0x33, 0x63, 0x63, 0x33, 0x65], 0x2d, [0x62, 0x38, 0x51, 0x35], 0x2d, [0x35, 0xdd3741306ed8848, 0x34, 0x33], 0x2d, [0x61, 0x33, 0x65, 0x34], 0x2d, [0x38, 0x62, 0x30, 0x65, 0x38, 0x63, 0x0, 0x63]}}}, {@permit_directio}, {@obj_role={'obj_role', 0x3d, '{'}}]}) statx(r1, &(0x7f00000004c0)='./file0\x00', 0x4000, 0x3ff, &(0x7f0000000640)) fallocate(r0, 0x3, 0x0, 0x8000) mknodat$loop(r0, &(0x7f0000000080)='./file0\x00', 0xa84a, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x181000, 0x60) 01:04:44 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000001c80000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1442.388269] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1442.389879] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1442.391447] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1442.416274] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 01:04:44 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x3, 0x0, 0x8000) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB="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", @ANYRESDEC=r0, @ANYRES16=0x0, @ANYRES32=r0, @ANYBLOB='\b\x00!.*\x00\b\x00P\x00', @ANYRES32=0x0, @ANYRES64], 0x4a4}, 0x1, 0x0, 0x0, 0x24008410}, 0x4) fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) 01:04:44 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x7, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:04:44 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000002080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1442.488195] loop6: detected capacity change from 0 to 262144 [ 1442.496474] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1442.498244] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1442.499998] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1442.525470] EXT4-fs (loop6): Unrecognized mount option "¨" or missing value [ 1442.566232] loop6: detected capacity change from 0 to 135266304 [ 1442.580410] FAT-fs (loop6): Unrecognized mount option "nnonumtail=1" or missing value [ 1442.600850] loop6: detected capacity change from 0 to 262144 [ 1442.617506] EXT4-fs (loop6): Unrecognized mount option "¨" or missing value [ 1442.644100] loop6: detected capacity change from 0 to 135266304 [ 1442.657375] FAT-fs (loop6): Unrecognized mount option "nnonumtail=1" or missing value 01:05:01 executing program 5: fsync(0xffffffffffffffff) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x3, 0x0, 0x8000) r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000002c80)={0xffffffffffffffff}) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x3, 0x0, 0x8000) ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r3, 0x8983, &(0x7f0000000000)) setresuid(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f0000018800)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}], 0x20}}], 0x2, 0x0) stat(&(0x7f00000004c0)='./file0/file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r4, 0x0) syz_mount_image$nfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x400, 0x5, &(0x7f0000000400)=[{&(0x7f0000000180)="bab06bb900d7d27ee975b1fa5de6df53c0190ec42b66f0a72762e4e131e102252cd9e9e62e2c260ca31f5c9ef58aa17fb7b7ea59738897f8f7394e6b3a41a3d2bb6890fd85ab87fbd6240eb209d7d8a926e0de07e42884cae4f842569afac60f6b7a3f2e78deec333736f76a25bac84521d5b03771a85b3ede1a0c6871ccf1679a5d8f8d00b29f6e79f46f4bf5917245e21e2988ffde95d4466de3c6ea71bbe7b046862a3d4e19efa966de5a062f81a2", 0xb0, 0x6}, {&(0x7f0000000240)="82a4d835c16e4cdc03d01ebc6fd6b97a62082dcff55955502c70e66fd5fdc9b6fc9f9c2f9de8ff414367aa842fa3518ad20fae89f962b3d6f462f3e258364a630ab96793f2c9d11126ede434af2a8b59e559d789de47034c5829b29c6c698ca6af458dddd25f50a599d31720e9696c6189", 0x71, 0x7}, {&(0x7f00000002c0)="4f1239526912a22a54f73cc6a419c89c26eeaf3829a5d331b23696babc69a2464c5ccc8cb0f5cb71758c4f57e17968ca3e58a8bfe220981a3ae685c1148607bdd31eb3f991da43b302b49433e8fd400a6d4354d69c16aa71376e2ca145467f9d3f4d42751784bad06563715e06fe6a8c2efca83cc6fad460bd85ba090dd79e51ecf4dcef9ab8c56d0dd2c64b8cdae767d7c095303b62e1", 0x97, 0x10000}, {&(0x7f0000000100)="60669981826b00ab1983abcf13", 0xd}, {&(0x7f0000000380)="34895f0fc2edbc33627b7055ae821615067fed3aa2aba8695c5fe3e93e90d0736f5c83cbd138e98a6d16a08b9dfc2550fe6929ab10bdc64c646a48293c163a60390158e65401468e0e6eb8d741c1", 0x4e, 0xda4e}], 0x100000, &(0x7f0000000480)=ANY=[@ANYBLOB="61c5183e2b4dfb886d776b723e00", @ANYRESDEC=r4, @ANYBLOB=',fscontext=unconfined_u,\x00']) 01:05:01 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000030) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:05:01 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:05:01 executing program 7: fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x80000000, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000080)=0x0) migrate_pages(r0, 0x2, &(0x7f00000000c0)=0x5, &(0x7f0000000100)) wait4(r0, &(0x7f0000000140), 0x4, &(0x7f0000000180)) 01:05:01 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x8, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:05:01 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000003f80000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1459.340614] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18090 comm=syz-executor.0 [ 1459.365694] loop5: detected capacity change from 0 to 131072 01:05:01 executing program 6: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) fsmount(0xffffffffffffffff, 0x0, 0x1) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x7) r2 = syz_open_procfs(0x0, &(0x7f0000000100)='task\x00') syz_io_uring_setup(0x32d0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x3}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0, &(0x7f0000000480)) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r2, 0xf507, 0x0) mkdirat(0xffffffffffffffff, &(0x7f00000000c0)='./file1\x00', 0x126) socket$nl_route(0x10, 0x3, 0x0) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x202080, 0x0) write$binfmt_elf64(r3, &(0x7f00000004c0)={{0x7f, 0x45, 0x4c, 0x46, 0x9, 0x8, 0xa4, 0x3, 0x9, 0x3, 0x3e, 0x9, 0x32a, 0x40, 0x351, 0x3, 0x8, 0x38, 0x2, 0x3ff, 0x9, 0x3}, [{0x6, 0x1, 0x0, 0x0, 0x1ff, 0xfff, 0x7f, 0x10000}], "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", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x1778) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x5, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x80000, 0x0, 0x14}, 0x18) 01:05:01 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 78) [ 1459.373929] FAULT_INJECTION: forcing a failure. [ 1459.373929] name failslab, interval 1, probability 0, space 0, times 0 [ 1459.376744] CPU: 1 PID: 18099 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1459.378374] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1459.379561] Call Trace: [ 1459.379958] dump_stack+0x107/0x167 [ 1459.380479] should_fail.cold+0x5/0xa [ 1459.381158] ? vm_area_dup+0x78/0x290 [ 1459.381688] should_failslab+0x5/0x20 [ 1459.382233] kmem_cache_alloc+0x5b/0x310 [ 1459.382810] vm_area_dup+0x78/0x290 [ 1459.383299] ? lock_release+0x680/0x680 [ 1459.384259] ? mark_lock+0xf5/0x2df0 [ 1459.384870] ? lock_chain_count+0x20/0x20 [ 1459.386258] ? mark_lock+0xf5/0x2df0 [ 1459.387329] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1459.388919] ? lock_chain_count+0x20/0x20 [ 1459.390192] ? mark_lock+0xf5/0x2df0 [ 1459.391270] ? vm_area_alloc+0x110/0x110 [ 1459.392403] ? __lock_acquire+0x1657/0x5b00 [ 1459.393883] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1459.395326] ? vmacache_find+0x55/0x2a0 [ 1459.396668] __split_vma+0xa8/0x4e0 [ 1459.397741] __do_munmap+0x365/0x1260 [ 1459.398800] ? arch_get_unmapped_area+0x450/0x450 [ 1459.399524] ? lock_release+0x680/0x680 [ 1459.400108] mmap_region+0x7cc/0x1500 [ 1459.400703] do_mmap+0x868/0x1370 [ 1459.401709] vm_mmap_pgoff+0x198/0x1f0 [ 1459.402268] ? randomize_page+0xb0/0xb0 [ 1459.402849] ksys_mmap_pgoff+0x41c/0x560 01:05:01 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000006380000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1459.403423] ? find_mergeable_anon_vma+0x250/0x250 [ 1459.405076] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1459.405752] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1459.406404] do_syscall_64+0x33/0x40 [ 1459.406927] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1459.407623] RIP: 0033:0x7f707acaeb62 [ 1459.408056] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1459.410729] RSP: 002b:00007f70782240f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1459.411808] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f707acaeb62 [ 1459.412857] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffb000 [ 1459.413860] RBP: 0000000020ffb000 R08: 0000000000000004 R09: 0000000000000000 [ 1459.414887] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200002c0 [ 1459.416194] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:05:01 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x9, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:05:01 executing program 5: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, 0x0, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f0000000180), 0x4) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="160000001b0001e2ffff63525380d174a51d4914b2241fd517000000e21c155e7901179dc000b7306700400200"], 0x14}}, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) r2 = openat$vcsa(0xffffffffffffff9c, 0x0, 0x1a1001, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='oom_adj\x00') write$cgroup_int(r4, 0x0, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r2) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00'}) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xfffffffffffffffb, 0xfffffffffffffffc}, 0x4008, 0x0, 0x1004, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8914, &(0x7f0000000140)={'lo\x00'}) 01:05:01 executing program 6: r0 = perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f00000002c0), 0x7}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) timerfd_settime(0xffffffffffffffff, 0x0, &(0x7f0000000140)={{0x0, 0x989680}, {0x77359400}}, &(0x7f0000000080)) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000480)={{0x1, 0x1, 0x18, r0, {0x5}}, './file0\x00'}) getpgrp(0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000740)=ANY=[@ANYBLOB="00000000fffffdfd020100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d4571082000000000000000000000000000000000000000000824a700900"/260]) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000100)=0x0) ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, &(0x7f0000000980)={{r1}, r3, 0x18, @unused=[0xfff, 0x7f, 0x1ff, 0x1], @name="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"}) r4 = accept4$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000000c0)=0x14, 0x0) ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f00000001c0)={'gre0\x00', &(0x7f0000000200)=ANY=[@ANYBLOB="3c00000001000000030015c1e10000030000000220000001000000131fc92b57000000014d0ffee000008068fb93f20624d998bb2382fbef2e605d20efd13ad8020454fe726d5ec494d8000000000000b7382cb035aeee7e39e9efdefe07e871544dc3a67c98a4419509377049ac9bb948d0cf462b1196"]}) sendmsg$nl_generic(r1, &(0x7f0000000400)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000003c0)={&(0x7f0000001980)=ANY=[@ANYBLOB="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"], 0xd4}, 0x1, 0x0, 0x0, 0x8010}, 0x0) setsockopt$inet6_opts(r2, 0x29, 0x36, &(0x7f0000000640)=ANY=[@ANYBLOB="0106010600000000000000000000000090abf6ed00000001ff020000000000000000001831e2cc332f0000000001fc000000000000000000000000000000f88226a91f8b26296906a7c6112d7c23cc1890b9dac6ad76f124cc078544b156c06a4b5f643402a388b7b6ede5be94169040c873919189f0bb22567c3a24bc8125a2e76bd2b3104ebbdb6802785a82b050ac7fb3228ceb0b614ec31cae8c820bae862312b19eb847822245ff0be847d669f25a0ffc03bce9499a5dbcd92b9d93e2314ecfcf71562229babcb88fdce82b9783e2c30ebcbb0b8b28701efe37da5c"], 0x38) signalfd4(0xffffffffffffffff, &(0x7f0000000180)={[0x9]}, 0x8, 0x80000) ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000340)={0x1, &(0x7f0000000300)=[{0x5, 0x81, 0x0, 0x1ff}]}) prlimit64(0x0, 0x6, &(0x7f0000000440)={0x4, 0x16ba}, &(0x7f0000000600)) unshare(0x48020200) 01:05:17 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0xa, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:05:17 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:05:17 executing program 6: sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r0, 0x0, 0x0, 0x1000002) ftruncate(0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x0, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'team_slave_1\x00'}) statx(r1, &(0x7f0000000180)='./file1\x00', 0x0, 0x10, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={0x0}}, 0x40040) sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@newspdinfo={0x1c, 0x24, 0x1, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV6_HTHRESH={0x6}]}, 0x1c}}, 0x0) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r2, 0xf501, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) fstat(r1, 0x0) sendfile(r1, r3, 0x0, 0x100000001) fcntl$lock(r3, 0x5, &(0x7f0000000240)={0x2, 0x1, 0x0, 0x2}) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0) 01:05:17 executing program 7: r0 = fork() wait4(r0, 0x0, 0x8, &(0x7f0000000080)) r1 = fcntl$getown(0xffffffffffffffff, 0x9) fork() waitid(0x0, r1, &(0x7f0000000000), 0x1c0000005, 0x0) [ 1475.425287] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18225 comm=syz-executor.0 01:05:17 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 79) 01:05:17 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000048080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:05:17 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1, 0x0, &(0x7f0000000200), 0x0, &(0x7f00000000c0)=ANY=[@ANYRESOCT, @ANYRES32=r0]) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r1, &(0x7f0000000100)=ANY=[], 0x10) ftruncate(r1, 0x2) syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) sendfile(r1, r2, 0x0, 0x100000001) 01:05:17 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000038) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) [ 1475.456630] FAULT_INJECTION: forcing a failure. [ 1475.456630] name failslab, interval 1, probability 0, space 0, times 0 [ 1475.458423] CPU: 1 PID: 18236 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1475.459619] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1475.462879] Call Trace: [ 1475.463794] dump_stack+0x107/0x167 [ 1475.465227] should_fail.cold+0x5/0xa [ 1475.466657] ? create_object.isra.0+0x3a/0xa30 [ 1475.468451] should_failslab+0x5/0x20 [ 1475.470015] kmem_cache_alloc+0x5b/0x310 [ 1475.472788] ? mark_held_locks+0x9e/0xe0 [ 1475.477617] create_object.isra.0+0x3a/0xa30 [ 1475.478275] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1475.479019] kmem_cache_alloc+0x159/0x310 [ 1475.479611] xas_alloc+0x336/0x440 [ 1475.480132] xas_create+0x34a/0x10d0 [ 1475.480685] ? kernel_text_address+0xf2/0x120 [ 1475.481355] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1475.482118] xas_store+0x8c/0x1c40 [ 1475.482646] __xa_store+0x164/0x2d0 [ 1475.483179] ? xa_delete_node+0x280/0x280 [ 1475.483783] ? trace_hardirqs_on+0x5b/0x180 [ 1475.484468] xa_store+0x31/0x50 [ 1475.485621] __io_uring_add_tctx_node+0x1cf/0x520 [ 1475.486673] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1475.487543] ? alloc_fd+0x2e7/0x670 [ 1475.488106] io_uring_setup+0x1fbb/0x2980 [ 1475.488866] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1475.489646] ? wait_for_completion_io+0x270/0x270 [ 1475.490418] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1475.491195] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1475.491982] do_syscall_64+0x33/0x40 [ 1475.492542] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1475.493245] RIP: 0033:0x7f707acaeb19 [ 1475.493748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1475.496450] RSP: 002b:00007f7078224108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1475.497798] RAX: ffffffffffffffda RBX: 00007f707adc1f60 RCX: 00007f707acaeb19 [ 1475.498963] RDX: 0000000020ffb000 RSI: 00000000200001c0 RDI: 0000000000003560 [ 1475.499980] RBP: 00000000200001c0 R08: 00000000200002c0 R09: 00000000200002c0 [ 1475.501056] R10: 0000000020000080 R11: 0000000000000202 R12: 00000000200002c0 [ 1475.502052] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:05:17 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0xb, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1475.524012] FAT-fs (loop5): Unrecognized mount option "01777777777777777777777" or missing value 01:05:17 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="200000f080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:05:17 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0xf, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:05:17 executing program 7: fork() waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000080)=0x0) ptrace$getregset(0x4204, r0, 0x201, &(0x7f0000000180)={&(0x7f00000000c0)=""/186, 0xba}) 01:05:17 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="200000007f000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:05:17 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 80) 01:05:17 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x10, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:05:17 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000048) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) [ 1475.824862] FAULT_INJECTION: forcing a failure. [ 1475.824862] name failslab, interval 1, probability 0, space 0, times 0 [ 1475.828063] CPU: 0 PID: 18356 Comm: syz-executor.4 Not tainted 5.10.246 #1 01:05:17 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000280000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1475.829098] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1475.830945] Call Trace: [ 1475.831687] dump_stack+0x107/0x167 [ 1475.832731] should_fail.cold+0x5/0xa [ 1475.833375] ? anon_vma_clone+0xdc/0x590 [ 1475.833919] should_failslab+0x5/0x20 [ 1475.834432] kmem_cache_alloc+0x5b/0x310 [ 1475.834981] anon_vma_clone+0xdc/0x590 [ 1475.835519] __split_vma+0x17c/0x4e0 [ 1475.836007] __do_munmap+0x365/0x1260 [ 1475.836531] ? arch_get_unmapped_area+0x450/0x450 [ 1475.837199] ? lock_release+0x680/0x680 [ 1475.837725] mmap_region+0x7cc/0x1500 [ 1475.838317] do_mmap+0x868/0x1370 [ 1475.838873] vm_mmap_pgoff+0x198/0x1f0 [ 1475.839449] ? randomize_page+0xb0/0xb0 [ 1475.840057] ksys_mmap_pgoff+0x41c/0x560 [ 1475.840669] ? find_mergeable_anon_vma+0x250/0x250 [ 1475.841412] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1475.842182] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1475.843043] do_syscall_64+0x33/0x40 [ 1475.843596] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1475.844354] RIP: 0033:0x7f707acaeb62 [ 1475.844933] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1475.847397] RSP: 002b:00007f70782240f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1475.848520] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f707acaeb62 [ 1475.849489] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffb000 [ 1475.850442] RBP: 0000000020ffb000 R08: 0000000000000004 R09: 0000000000000000 [ 1475.851504] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200002c0 [ 1475.852470] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:05:32 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 81) [ 1490.945281] FAULT_INJECTION: forcing a failure. [ 1490.945281] name failslab, interval 1, probability 0, space 0, times 0 [ 1490.947556] CPU: 1 PID: 18476 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1490.948921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1490.950479] Call Trace: [ 1490.950950] dump_stack+0x107/0x167 [ 1490.951585] should_fail.cold+0x5/0xa [ 1490.952255] ? create_object.isra.0+0x3a/0xa30 [ 1490.953053] should_failslab+0x5/0x20 [ 1490.953732] kmem_cache_alloc+0x5b/0x310 [ 1490.954446] create_object.isra.0+0x3a/0xa30 01:05:32 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000380000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:05:32 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x11, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:05:32 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x3, 0x0, 0x8000) recvmsg(r1, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001e00)=""/4096, 0x1000}, {&(0x7f0000000180)=""/252, 0xfc}, {&(0x7f00000000c0)=""/18, 0x12}, {&(0x7f0000000100)=""/29, 0x1d}, {&(0x7f00000002c0)=""/62, 0x3e}, {&(0x7f0000000400)=""/135, 0x87}, {&(0x7f0000000300)=""/67, 0x43}, {&(0x7f0000001500)=""/47, 0x2f}], 0x9, &(0x7f0000001600)=""/165, 0xa5}, 0x2000) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0xffffffc0, @remote, 0x2}, 0x1c) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x4300, 0x4) connect$inet6(r0, &(0x7f0000000380)={0xa, 0x0, 0x0, @remote}, 0x1c) open_tree(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x0) socket$inet(0xa, 0x3, 0xff) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r3 = creat(&(0x7f0000000280)='./file0\x00', 0x0) write$binfmt_elf64(r3, &(0x7f00000008c0)=ANY=[], 0x629) sendfile(r3, r2, 0x0, 0xffffffff000) socket$nl_sock_diag(0x10, 0x3, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x11, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1, 0x0, 0x0, 0x3}, 0x200000}], 0x7ffff000, 0x0) 01:05:32 executing program 7: fork() r0 = getpgrp(0x0) pidfd_open(r0, 0x0) wait4(r0, &(0x7f0000000080), 0x20000000, &(0x7f00000000c0)) waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) 01:05:32 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000050) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) [ 1490.955212] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1490.956371] kmem_cache_alloc+0x159/0x310 [ 1490.957132] anon_vma_clone+0xdc/0x590 [ 1490.957836] __split_vma+0x17c/0x4e0 [ 1490.958499] __do_munmap+0x365/0x1260 [ 1490.959170] ? arch_get_unmapped_area+0x450/0x450 [ 1490.960016] ? lock_release+0x680/0x680 [ 1490.960713] mmap_region+0x7cc/0x1500 [ 1490.961407] do_mmap+0x868/0x1370 [ 1490.962032] vm_mmap_pgoff+0x198/0x1f0 [ 1490.962720] ? randomize_page+0xb0/0xb0 [ 1490.963490] ksys_mmap_pgoff+0x41c/0x560 [ 1490.964394] ? find_mergeable_anon_vma+0x250/0x250 01:05:32 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001200"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:05:32 executing program 5: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r0, 0x5451) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x24}}, 0x24000800) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r2, 0x3, 0x0, 0x8000) perf_event_open(&(0x7f0000000800)={0x1, 0x80, 0x0, 0x0, 0x40, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x3, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xa, 0xffffffffffffffff, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x6, &(0x7f0000000180), 0x3) setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x14) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x200f5ef, 0x0) r3 = syz_io_uring_setup(0x6df8, &(0x7f0000000480)={0x0, 0x34f2, 0x1, 0x3, 0x8000be}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ff2000/0x1000)=nil, &(0x7f0000000300), &(0x7f0000000380)=0x0) fallocate(0xffffffffffffffff, 0x3, 0x0, 0x8000) syz_io_uring_submit(0x0, r4, &(0x7f0000000880)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x5, 0x2}, 0x5) openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x381202, 0x100) sendmsg$NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000440)={&(0x7f00000008c0)=ANY=[@ANYBLOB="3a596700000073a53c0000000000f9bce940229895d103915444ddd1a809ddf4884e3fca44a308288023d1c56cc6b79b277ae17351db0fe644651f26b2be32c05c29ab4a4159e539329c17e8af5b635245cb1ed208a77cc473fe709b2861536895808d5687f4c0a9f820982cb6ef60f388a1a4b03bc11fec851c1fb311ed83a2e4d5be3ec16d7336a1b52e2392b3f4eb", @ANYRES16=0x0, @ANYRES64=r3], 0x34}}, 0x405c804) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x470240, 0x0) [ 1490.965387] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1490.966641] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1490.967678] do_syscall_64+0x33/0x40 [ 1490.968435] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1490.969470] RIP: 0033:0x7f707acaeb62 [ 1490.970228] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1490.973593] RSP: 002b:00007f70782240f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1490.974949] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f707acaeb62 [ 1490.976246] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffb000 01:05:32 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0xf0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1490.977664] RBP: 0000000020ffb000 R08: 0000000000000004 R09: 0000000000000000 [ 1490.979092] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200002c0 [ 1490.980504] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1491.011029] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 01:05:32 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 82) 01:05:32 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000480000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:05:32 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x112, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1491.106517] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1491.107525] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1491.108458] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1491.127239] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1491.149268] FAULT_INJECTION: forcing a failure. [ 1491.149268] name failslab, interval 1, probability 0, space 0, times 0 [ 1491.150611] CPU: 0 PID: 18587 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1491.151419] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1491.152390] Call Trace: [ 1491.152702] dump_stack+0x107/0x167 [ 1491.153146] should_fail.cold+0x5/0xa [ 1491.153597] ? vm_area_alloc+0x1c/0x110 [ 1491.154060] should_failslab+0x5/0x20 [ 1491.154506] kmem_cache_alloc+0x5b/0x310 [ 1491.154982] vm_area_alloc+0x1c/0x110 [ 1491.155419] mmap_region+0x982/0x1500 [ 1491.155871] do_mmap+0x868/0x1370 [ 1491.156274] vm_mmap_pgoff+0x198/0x1f0 [ 1491.156726] ? randomize_page+0xb0/0xb0 [ 1491.157214] ksys_mmap_pgoff+0x41c/0x560 [ 1491.157707] ? find_mergeable_anon_vma+0x250/0x250 [ 1491.158278] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1491.158887] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1491.159506] do_syscall_64+0x33/0x40 [ 1491.159937] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1491.160538] RIP: 0033:0x7f707acaeb62 [ 1491.160969] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1491.163144] RSP: 002b:00007f70782240f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1491.164021] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f707acaeb62 [ 1491.164867] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffb000 [ 1491.165722] RBP: 0000000020ffb000 R08: 0000000000000004 R09: 0000000000000000 [ 1491.166558] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200002c0 [ 1491.167386] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:05:33 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000580000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:05:33 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 83) 01:05:33 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x300, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) [ 1491.202969] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1491.203906] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1491.204856] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 01:05:33 executing program 7: r0 = fork() waitid(0x0, 0x0, &(0x7f0000001a80), 0x1c0000005, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000080)={0x0, 0x0}) wait4(0xffffffffffffffff, &(0x7f00000000c0), 0x1000000, &(0x7f0000000100)) wait4(0x0, &(0x7f00000001c0), 0x2, &(0x7f0000000200)) ptrace$cont(0x2e, r1, 0x6, 0x7f) recvmsg$unix(0xffffffffffffffff, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001680)=[{&(0x7f00000004c0)=""/222, 0xde}, {&(0x7f00000005c0)=""/140, 0x8c}, {&(0x7f0000000680)=""/4096, 0x1000}], 0x3, &(0x7f00000016c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000007bb3c828a6d999a9000001000000", @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYRES32], 0x60}, 0x40) clone3(&(0x7f0000001780)={0x100880, &(0x7f00000002c0), &(0x7f0000000300)=0x0, &(0x7f0000000340)=0x0, {0x2c}, &(0x7f0000000380)=""/77, 0x4d, &(0x7f0000000400)=""/11, &(0x7f0000000480)=[r1, 0x0, r0, r1, r1, r0, r1], 0x7, {r3}}, 0x58) clone3(&(0x7f0000001940)={0x80000000, &(0x7f0000000440), &(0x7f0000001800)=0x0, &(0x7f0000001840), {0x3a}, &(0x7f0000001880)=""/20, 0x14, &(0x7f00000018c0)=""/57, &(0x7f0000001900)=[r4, r0, r2, r0, r5], 0x5, {r3}}, 0x58) waitid(0x1, r6, 0x0, 0x8, &(0x7f00000019c0)) [ 1491.234172] FAULT_INJECTION: forcing a failure. [ 1491.234172] name failslab, interval 1, probability 0, space 0, times 0 [ 1491.235599] CPU: 0 PID: 18607 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1491.236392] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1491.237368] Call Trace: [ 1491.237698] dump_stack+0x107/0x167 [ 1491.238113] should_fail.cold+0x5/0xa [ 1491.238573] ? anon_vma_clone+0xdc/0x590 [ 1491.239047] should_failslab+0x5/0x20 [ 1491.239507] kmem_cache_alloc+0x5b/0x310 [ 1491.240010] anon_vma_clone+0xdc/0x590 [ 1491.240466] __split_vma+0x17c/0x4e0 [ 1491.240916] __do_munmap+0x365/0x1260 [ 1491.241378] ? arch_get_unmapped_area+0x450/0x450 [ 1491.241945] ? lock_release+0x680/0x680 [ 1491.242402] mmap_region+0x7cc/0x1500 [ 1491.242852] do_mmap+0x868/0x1370 [ 1491.243257] vm_mmap_pgoff+0x198/0x1f0 [ 1491.243716] ? randomize_page+0xb0/0xb0 [ 1491.244185] ksys_mmap_pgoff+0x41c/0x560 [ 1491.244676] ? find_mergeable_anon_vma+0x250/0x250 [ 1491.245252] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1491.245864] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1491.246468] do_syscall_64+0x33/0x40 [ 1491.246902] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1491.247497] RIP: 0033:0x7f707acaeb62 [ 1491.247933] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1491.250095] RSP: 002b:00007f70782240f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1491.250984] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f707acaeb62 [ 1491.251811] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffb000 [ 1491.252632] RBP: 0000000020ffb000 R08: 0000000000000004 R09: 0000000000000000 [ 1491.253481] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200002c0 [ 1491.254306] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 01:05:47 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001200"], 0x14}}, 0x0) readv(r0, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/181, 0xb5}, {&(0x7f0000001780)=""/111, 0x6f}], 0x3) 01:05:47 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000680000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:05:47 executing program 6: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000001000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_setup(0x3d37, &(0x7f0000000180)={0x0, 0xe4f0, 0x1, 0x0, 0x1e8, 0x0, r0}, &(0x7f0000001000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000280)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000700)=""/222, 0xde}], 0x1}, 0x0) syz_io_uring_setup(0x54e1, &(0x7f0000000680)={0x0, 0x0, 0x10}, &(0x7f0000fee000/0x1000)=nil, &(0x7f0000ff6000/0x2000)=nil, 0x0, 0x0) getsockopt$IP_VS_SO_GET_SERVICE(0xffffffffffffffff, 0x0, 0x483, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f0000000040), 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/cpuinfo\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffff7e9}, 0x0, 0x7681b961}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 01:05:47 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='devtmpfs\x00', 0x0, 0x0) pivot_root(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='./file0\x00') stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r2, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r3, 0x0) mkdirat(r0, &(0x7f0000000580)='./file0\x00', 0x100) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000380)={{{@in=@multicast2, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in=@dev}}, &(0x7f0000000480)=0xe8) syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x6, 0x1, &(0x7f0000000200)=[{&(0x7f0000000140)="e5555296e7846c248d6840e3cfeea291307a2169f64467e54d78f9841ec31d09f568260ba678e523c9bd1763b27b2c60d2e163b7a9235069ccceaa04e5972c3ff419533e9721fa177edaae1682bd8bb29f67cc5f881b10e9430e331bd22a83ec34a778bb22d0e816ea7dcde7c868358f03382be7c06e373116ea213e5f6000ec0b2c67098475afe2cb1697ea8b19cb5d63025155a0d18f0491c72333842e68d2f4bb2263404284a4c9040fa74a135f21a0f00e1ccc373d", 0xb7, 0x8}], 0x804, &(0x7f00000004c0)={[{@mode={'mode', 0x3d, 0x6}}, {@gid={'gid', 0x3d, r1}}, {@nr_inodes={'nr_inodes', 0x3d, [0x78, 0x34, 0x38, 0x65, 0x35, 0x31, 0x6d, 0x65]}}, {@gid={'gid', 0x3d, 0xee01}}], [{@euid_eq={'euid', 0x3d, r2}}, {@fowner_eq={'fowner', 0x3d, r3}}, {@fowner_lt={'fowner<', r4}}]}) 01:05:47 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000058) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:05:47 executing program 4: prlimit64(0x0, 0x6, &(0x7f0000000080), 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, 0x0) syz_io_uring_setup(0x3560, &(0x7f00000001c0)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) (fail_nth: 84) 01:05:47 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x500, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:05:47 executing program 7: fork() r0 = getpgrp(0x0) pidfd_open(r0, 0x0) ptrace$peeksig(0x4209, r0, &(0x7f0000000080)={0xffffffffffffc012, 0x0, 0x3}, &(0x7f00000000c0)=[{}, {}, {}]) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0xc) waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) [ 1506.039949] FAULT_INJECTION: forcing a failure. [ 1506.039949] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1506.042574] CPU: 0 PID: 18722 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1506.044022] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1506.045775] Call Trace: [ 1506.046337] dump_stack+0x107/0x167 [ 1506.047109] should_fail.cold+0x5/0xa [ 1506.047921] __alloc_pages_nodemask+0x182/0x600 [ 1506.048930] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1506.050245] ? walk_mem_res+0x170/0x170 [ 1506.051109] alloc_pages_current+0x187/0x280 [ 1506.052056] pte_alloc_one+0x16/0x1a0 [ 1506.052878] __pte_alloc+0x1d/0x330 [ 1506.053676] remap_pfn_range_internal+0x9a3/0xf60 [ 1506.054724] ? lookup_memtype+0x5b/0x200 [ 1506.055616] ? apply_to_existing_page_range+0x40/0x40 [ 1506.056741] remap_pfn_range+0xcd/0x160 [ 1506.057607] ? remap_pfn_range_notrack+0x70/0x70 [ 1506.058628] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1506.059741] io_uring_mmap+0x398/0x530 [ 1506.060581] mmap_file+0x5e/0xe0 [ 1506.061320] mmap_region+0xc4d/0x1500 [ 1506.062152] do_mmap+0x868/0x1370 [ 1506.062902] vm_mmap_pgoff+0x198/0x1f0 [ 1506.063739] ? randomize_page+0xb0/0xb0 [ 1506.064601] ksys_mmap_pgoff+0x41c/0x560 [ 1506.065483] ? find_mergeable_anon_vma+0x250/0x250 [ 1506.066538] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1506.067664] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1506.068777] do_syscall_64+0x33/0x40 [ 1506.069586] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1506.070693] RIP: 0033:0x7f707acaeb62 [ 1506.071491] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1506.075471] RSP: 002b:00007f70782240f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1506.077104] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f707acaeb62 [ 1506.078647] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffb000 [ 1506.080186] RBP: 0000000020ffb000 R08: 0000000000000004 R09: 0000000000000000 [ 1506.081736] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200002c0 [ 1506.083266] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1506.110592] ------------[ cut here ]------------ [ 1506.111948] WARNING: CPU: 1 PID: 18722 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270 [ 1506.115091] Modules linked in: [ 1506.116014] CPU: 1 PID: 18722 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 1506.117574] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1506.119591] RIP: 0010:get_pat_info+0x216/0x270 [ 1506.121018] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 31 89 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 1a 89 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 a5 a2 5a 00 e9 [ 1506.125352] RSP: 0018:ffff888009c7f890 EFLAGS: 00010216 [ 1506.126984] RAX: 0000000000013ecb RBX: ffff8880494c0a00 RCX: ffffc900007e3000 [ 1506.134420] RDX: 0000000000040000 RSI: ffffffff81124466 RDI: 0000000000000007 [ 1506.136046] RBP: ffff888009c7f948 R08: 0000000000000000 R09: ffff888009c7f818 [ 1506.137681] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028 [ 1506.139294] R13: 1ffff1100138ff12 R14: 0000000000000000 R15: ffff8880494c0a50 [ 1506.140960] FS: 00007f7078224700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 1506.142844] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1506.144608] CR2: 00007fee4ac80290 CR3: 0000000016e94000 CR4: 0000000000350ee0 [ 1506.146557] Call Trace: [ 1506.147318] ? pgprot_writethrough+0xc0/0xc0 [ 1506.148543] ? finish_task_switch+0x126/0x5d0 [ 1506.149784] ? finish_task_switch+0xef/0x5d0 [ 1506.151121] untrack_pfn+0xdc/0x240 [ 1506.152047] ? track_pfn_insert+0x150/0x150 [ 1506.153490] ? lock_downgrade+0x6d0/0x6d0 [ 1506.155046] ? uprobe_munmap+0x95/0x560 [ 1506.156302] unmap_single_vma+0x1bc/0x300 [ 1506.157431] zap_page_range_single+0x2ce/0x450 [ 1506.158707] ? unmap_single_vma+0x300/0x300 [ 1506.160083] ? remap_pfn_range_internal+0xc56/0xf60 [ 1506.161355] ? lookup_memtype+0x5b/0x200 [ 1506.162393] ? apply_to_existing_page_range+0x40/0x40 [ 1506.163961] remap_pfn_range+0x139/0x160 [ 1506.164931] ? remap_pfn_range_notrack+0x70/0x70 [ 1506.166213] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1506.167615] io_uring_mmap+0x398/0x530 [ 1506.168983] mmap_file+0x5e/0xe0 [ 1506.169815] mmap_region+0xc4d/0x1500 [ 1506.170906] do_mmap+0x868/0x1370 [ 1506.171951] vm_mmap_pgoff+0x198/0x1f0 [ 1506.173228] ? randomize_page+0xb0/0xb0 [ 1506.174256] ksys_mmap_pgoff+0x41c/0x560 [ 1506.175346] ? find_mergeable_anon_vma+0x250/0x250 [ 1506.176831] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1506.178157] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1506.179547] do_syscall_64+0x33/0x40 [ 1506.180631] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1506.182166] RIP: 0033:0x7f707acaeb62 [ 1506.183117] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1506.188292] RSP: 002b:00007f70782240f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1506.190355] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f707acaeb62 [ 1506.192293] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffb000 [ 1506.194323] RBP: 0000000020ffb000 R08: 0000000000000004 R09: 0000000000000000 [ 1506.196372] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200002c0 [ 1506.198436] R13: 0000000020ffb000 R14: 0000000020000080 R15: 0000000020ffb000 [ 1506.200500] irq event stamp: 1451 [ 1506.201449] hardirqs last enabled at (1461): [] console_unlock+0x92d/0xb40 [ 1506.203734] hardirqs last disabled at (1470): [] console_unlock+0x839/0xb40 [ 1506.206043] softirqs last enabled at (912): [] asm_call_irq_on_stack+0x12/0x20 [ 1506.208581] softirqs last disabled at (845): [] asm_call_irq_on_stack+0x12/0x20 [ 1506.210800] ---[ end trace a58e92a05e9fd098 ]--- 01:05:48 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x600, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:05:48 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x67}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe) connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe) r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000200)=0x33e0, 0x4) setsockopt$inet6_tcp_int(r3, 0x6, 0x22, 0x0, 0x0) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendfile(r3, r2, 0x0, 0x9bbb) socketpair(0x29, 0x2, 0x200, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) bind$inet6(r4, &(0x7f0000000100)={0xa, 0x4e23, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2}, 0x1c) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r2, 0xc0189373, &(0x7f0000000500)=ANY=[@ANYBLOB="0100000001000000180000007a20e71cac79a95ed66c250530ced63f5070281e46fa77035ac6a2268cf1c6fd0f57b4a015c153a36e0a0319cf150100c2de181cf29be369af778ee87ab7879380902a0bca359ec98d00f71244498a8d111680ce6426a500"/114, @ANYRES32=r0, @ANYBLOB="ff030d00000000002e0c271bba29ee44e756873f0b795595ff20243d1e64de43a52bedc3e3cab6b241771f00be8ef6939829bf16b27a682d7d984ace1596748642e7f1f4042477b961110a51f1f468de1653fe5d00c599bc2b9dc47e"]) setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f0000000240)={@in6={{0xa, 0x4e24, 0x1, @mcast1, 0x3}}, 0x0, 0x0, 0x36, 0x0, "479ade71ce211e72c985fb03079df3385a1999bee58fbd8877cdcc31955422d0e7ff2c8d3107f60effd70dab05e24ec3464afdb6657c6f2486ffad74e0190ae9bf9fc273b5a8465fbcc9cfcc7244cbd3"}, 0xd8) fcntl$dupfd(r3, 0x0, r0) sendmmsg(r1, &(0x7f0000001040), 0x3fffffffffffdca, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) dup3(r6, 0xffffffffffffffff, 0x0) connect$bt_l2cap(r6, &(0x7f0000000180)={0x1f, 0x3f, @none, 0x5, 0x2}, 0xe) 01:05:48 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000780000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) 01:05:48 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000780)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x700, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}, 0x0, 0x180}}]}, 0x13c}}, 0x0) 01:05:48 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000070) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x4) 01:05:48 executing program 6: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7fff, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0}], 0x2800018, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, 0x0) openat(0xffffffffffffffff, &(0x7f0000000440)='./file0\x00', 0x80000, 0x180) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$sock(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f0000000640)=@un=@file={0x0, './mnt\x00'}, 0x80, &(0x7f0000000a00), 0x0, &(0x7f0000000a40)=[@mark={{0x14, 0x1, 0x24, 0x8000}}], 0x18}, 0x4004045) r2 = syz_mount_image$nfs4(0x0, &(0x7f00000010c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x0) r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) setxattr$trusted_overlay_upper(&(0x7f00000002c0)='mnt/encrypted_dir\x00', &(0x7f0000000300), &(0x7f00000003c0)={0x0, 0xfb, 0x4f, 0x0, 0x7, "610ec00f2429a8e0a8137ca49a01b0de", "6a344ace86fc76be6df09cbe4f6f2b7c242216fbad0c2580af2e0d7d2b645d662416f95fd2dd3ae3be73b2bb923694f3abfc9934f348137cf378"}, 0x4f, 0x1) openat(r2, &(0x7f0000000480)='./file1\x00', 0x24000, 0x23) open_by_handle_at(r3, &(0x7f0000000000)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x0) openat(r3, &(0x7f0000000240)='./mnt\x00', 0x103641, 0x101) futimesat(0xffffffffffffffff, &(0x7f0000000000)='./mnt\x00', 0x0) openat$sr(0xffffffffffffff9c, &(0x7f0000000340), 0x400200, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000380)={{0x1, 0x1, 0x18, r1, {r0}}, './file1\x00'}) openat(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x1, 0x8) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) 01:05:48 executing program 7: r0 = fork() r1 = getpgrp(0x0) ptrace(0x4208, r1) r2 = getpgrp(r0) prlimit64(r2, 0x0, &(0x7f0000000080)={0xfffffffffffffff9, 0x1f}, &(0x7f00000000c0)) prlimit64(r0, 0xf, &(0x7f0000000100)={0x2, 0x4}, &(0x7f0000000140)) waitid(0x0, 0x0, &(0x7f0000000000), 0x1c0000005, 0x0) 01:05:48 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000880000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000001c0)={[{@usrjquota}, {@jqfmt_vfsold}]}) [ 1506.476544] loop6: detected capacity change from 0 to 32256 VM DIAGNOSIS: 01:05:48 Registers: info registers vcpu 0 RAX=0000000000000080 RBX=0000000000000080 RCX=ffffc90001fef000 RDX=00000000000001f2 RSI=ffffffff81f4e0c1 RDI=0000000000000007 RBP=00000000000101f2 RSP=ffff8880215e6c20 R8 =0000000000000000 R9 =0000000000006d2c R10=0000000000010000 R11=0000000000000001 R12=ffff88800f3c0058 R13=ffff88800f3c0050 R14=ffff88800f3c0048 R15=ffff88800f3c0060 RIP=ffffffff81f4e0c7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fe8565c3700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2ce25000 CR3=00000000183a4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff822e5bcc RDI=ffffffff879f8240 RBP=ffffffff879f8200 RSP=ffff888009c7f250 R8 =0000000000000001 R9 =0000000000000003 R10=000000000000000a R11=0000000000000001 R12=0000000000000020 R13=fffffbfff0f3f095 R14=fffffbfff0f3f04a R15=dffffc0000000000 RIP=ffffffff822e5c20 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f7078224700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fee4ac80290 CR3=0000000016e94000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000