740)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000700)={&(0x7f00000005c0)={0x20, 0x0, 0x4, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x80c0) openat$cgroup_procs(r3, &(0x7f0000000200)='cgroup.threads\x00', 0x2, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="28f6ffff2c0001"], 0x28}}, 0x0) 08:11:35 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000080)=0x4, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:11:35 executing program 4: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) 08:11:35 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x0, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) 08:11:35 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1613bf23, 0x0, @perf_bp={&(0x7f0000000340)}, 0x0, 0x0, 0x0, 0x0, 0x4000004, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f0000000300)=0x5, 0x4) setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000000)={0x2, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x5}}}, {{0xa, 0x0, 0x8, @private1={0xfc, 0x1, '\x00', 0x1}, 0x2000004}}}, 0x108) pselect6(0x40, &(0x7f00000013c0)={0x0, 0xfffffffffffffeff, 0x0, 0x9d, 0x5, 0x0, 0x8}, 0x0, &(0x7f0000001440)={0xe5, 0x80000000a, 0x0, 0x2000000000000005, 0x7ff, 0x401, 0x81, 0x104c0cd1}, 0x0, &(0x7f0000001500)={&(0x7f00000014c0)={[0x7]}, 0x8}) fspick(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1) quotactl(0x0, &(0x7f0000001340)='./file0\x00', 0x0, &(0x7f0000000180)) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b00), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_REG(r2, &(0x7f0000000cc0)={&(0x7f00000002c0), 0xc, &(0x7f0000000c80)={&(0x7f0000000b80)=ANY=[@ANYBLOB="01000000", @ANYRES16=r3, @ANYBLOB="0100d7fdb2e1d36df2926d2ae95719dd22800400008004000080070021006161000005009200000000000400cc00"], 0x34}}, 0x4040000) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000500)=ANY=[@ANYBLOB="010000000100000018000000e5ac6fe4f84c6317fb5f7f535dcc4cb275719ff8f2f0dc765765f4637187e3a7f2f7841167d7f039a13f22b727cb920789a24789e76aef4c5b3cec51bfdfd90a20dad9c1a9832bc7a6fb7ff5b685754d83c2633bb8d2cf07da43805dd7a9eef8345e180d824bc71ee4ff522c3f829e796eed2e72d90215a261ce8bdc25069011ff942f94949d33d26fc15d50163a373a05d5562a91b988fca17eec16c1669dce8d6818749a975b", @ANYRES32=r2, @ANYBLOB="0000000000000000000000fc765d1a130f45850f72abe317308811476ac40ec59ad8a6595ddd1d6377de47ba23ca13393000000000a060352868743d6cb9a072d24d00e0bdd6a49514ba0114e17ffa423b68e0678896f41895f3b5e05e95cf6958bcfd1a23f2465e0000000000000000000000002000000000"]) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f00000001c0)=0x2) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='net/ip_vs_stats_percpu\x00') setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000008c0), 0xc) ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r0, 0x8983, &(0x7f0000000280)) dup2(r1, r4) connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @local}, 0x800000}, 0x1c) ioctl$BTRFS_IOC_START_SYNC(r2, 0x80089418, &(0x7f0000000380)) ioctl$sock_SIOCSPGRP(0xffffffffffffffff, 0x8902, &(0x7f0000000240)=0xffffffffffffffff) unshare(0x48020200) 08:11:35 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x2dffffffffffe}, {&(0x7f0000010400)="030000000400000005", 0x9, 0x800}, {&(0x7f0000010e00)="ed41000000040000d7f4b05edf00db8c567b7b9dad6dafe78d485fd8f4", 0x1d, 0x100000000}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:11:35 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote={0xac, 0xf}, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 568.286173] loop0: detected capacity change from 0 to 135266304 [ 568.303595] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 08:11:35 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote={0xac, 0x12}, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:11:35 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x2dffffffffffe}, {&(0x7f0000010400)="030000000400000005", 0x9, 0x800}, {&(0x7f0000010e00)="ed41000000040000d7f4b05edf00db8c567b7b9dad6dafe78d485fd8f4", 0x1d, 0x100000000}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:11:35 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x0, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) [ 568.388513] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 568.390229] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 568.392136] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 08:11:35 executing program 4: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0, &(0x7f0000000600)) [ 568.422794] loop0: detected capacity change from 0 to 135266304 08:11:35 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote={0xac, 0x16}, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:11:35 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x0, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) [ 568.485202] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 08:11:35 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x2dffffffffffe}, {&(0x7f0000010400)="030000000400000005", 0x9, 0x800}, {&(0x7f0000010e00)="ed41000000040000d7f4b05edf00db8c567b7b9dad6dafe78d485fd8f4", 0x1d, 0x100000000}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) [ 568.569460] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 568.571299] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 568.573367] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 568.606886] loop0: detected capacity change from 0 to 135266304 08:11:35 executing program 4: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0, &(0x7f0000000600)) [ 568.653095] syz-executor.5 (6345) used greatest stack depth: 23480 bytes left 08:11:51 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f0000000080)=0x4, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:11:51 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote={0xac, 0x14, 0x3}, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:11:51 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000080)=0x4, 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000240)={0x9, 0x1, 0x2, 0x4}) r1 = open$dir(&(0x7f0000000200)='./file0\x00', 0x280, 0x48) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:11:51 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, 0x0, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) 08:11:51 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x0, 0x4, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x2dffffffffffe}, {&(0x7f0000010400)="030000000400000005", 0x9, 0x800}, {&(0x7f0000010e00)="ed41000000040000d7f4b05edf00db8c567b7b9dad6dafe78d485fd8f4", 0x1d, 0x100000000}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:11:51 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0) mount$bind(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f00000008c0)='./file0/file0/../file0\x00', 0x0, 0x17810, 0x0) lsetxattr$security_selinux(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000040), &(0x7f0000000080)='system_u:object_r:cpu_device_t:s0\x00', 0x22, 0x0) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) 08:11:51 executing program 4: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0, &(0x7f0000000600)) 08:11:51 executing program 3: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000003c0), &(0x7f0000ff4000/0x1000)=nil, &(0x7f0000fef000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000700)=""/222, 0xde}], 0x1}, 0x0) r3 = syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0) pipe2(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) r5 = getpgrp(0x0) pidfd_open(r5, 0x0) syz_io_uring_setup(0x2ac8, &(0x7f0000000280)={0x0, 0x75c9, 0x8, 0x3, 0x33c, 0x0, r3}, &(0x7f0000fec000/0x4000)=nil, &(0x7f0000ff2000/0x1000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000300)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, r2, &(0x7f0000000340)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ff9000/0x3000)=nil, 0x3000, 0x4, 0x1, {0x0, r7}}, 0x7) ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f00000004c0)={r0, 0x3, 0x9, 0xffffffffffffffb2}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000380)) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) io_uring_enter(r4, 0x2f9b, 0x3793, 0x2, &(0x7f0000000040)={[0x1f]}, 0x8) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_SET_PATH(r4, 0x3, &(0x7f0000000440)='\x00', &(0x7f0000000480)='./file0\x00', r4) [ 584.490660] loop0: detected capacity change from 0 to 135266304 [ 584.493611] audit: type=1400 audit(1764922311.857:101): avc: denied { relabelto } for pid=6391 comm="syz-executor.5" name="file0" dev="sda" ino=16023 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:cpu_device_t:s0 tclass=dir permissive=1 [ 584.504164] audit: type=1400 audit(1764922311.867:102): avc: denied { search } for pid=6391 comm="syz-executor.5" name="file0" dev="sda" ino=16023 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:cpu_device_t:s0 tclass=dir permissive=1 08:11:51 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote={0xac, 0x14, 0xf}, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 584.539781] audit: type=1400 audit(1764922311.868:103): avc: denied { mounton } for pid=6391 comm="syz-executor.5" path="/syzkaller-testdir365927932/syzkaller.Ou8fWk/32/file0/file0" dev="sda" ino=16023 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:cpu_device_t:s0 tclass=dir permissive=1 [ 584.570792] audit: type=1400 audit(1764922311.873:104): avc: denied { relabelfrom } for pid=6391 comm="syz-executor.5" name="file0" dev="sda" ino=16023 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:cpu_device_t:s0 tclass=dir permissive=1 08:11:51 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, 0x0, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) 08:11:51 executing program 5: keyctl$update(0x2, 0x0, &(0x7f0000000000)="a7", 0x1) keyctl$read(0xb, 0x0, &(0x7f00000000c0)=""/43, 0x2b) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000440), &(0x7f0000000580)=0xc) syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0) timer_create(0x3, 0x0, &(0x7f0000000040)=0x0) getsockopt$IP6T_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x29, 0x44, &(0x7f0000000280)={'icmp6\x00'}, &(0x7f0000000380)=0x1e) timer_settime(r0, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) timer_gettime(r0, &(0x7f00000002c0)) timer_delete(r0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x405d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0), 0xe}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x4, 0x1) timer_delete(r0) timer_delete(0x0) capset(&(0x7f0000000240)={0x20080522}, &(0x7f0000000300)={0x800, 0x3, 0x7, 0x8, 0x8000, 0x6}) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_gettime(r0, &(0x7f0000000100)) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r1}, &(0x7f0000000340)) fcntl$getown(0xffffffffffffffff, 0x9) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 584.593934] audit: type=1400 audit(1764922311.956:105): avc: denied { getattr } for pid=4803 comm="syz-executor.5" path="/syzkaller-testdir365927932/syzkaller.Ou8fWk/32/file0/file0" dev="sda" ino=16023 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:cpu_device_t:s0 tclass=dir permissive=1 08:11:51 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x0, 0x4, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x2dffffffffffe}, {&(0x7f0000010400)="030000000400000005", 0x9, 0x800}, {&(0x7f0000010e00)="ed41000000040000d7f4b05edf00db8c567b7b9dad6dafe78d485fd8f4", 0x1d, 0x100000000}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) [ 584.608681] audit: type=1400 audit(1764922311.956:106): avc: denied { read } for pid=4803 comm="syz-executor.5" name="file0" dev="sda" ino=16023 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:cpu_device_t:s0 tclass=dir permissive=1 08:11:51 executing program 4: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), 0x0) [ 584.615410] audit: type=1400 audit(1764922311.959:107): avc: denied { open } for pid=4803 comm="syz-executor.5" path="/syzkaller-testdir365927932/syzkaller.Ou8fWk/32/file0/file0" dev="sda" ino=16023 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:cpu_device_t:s0 tclass=dir permissive=1 [ 584.638068] audit: type=1400 audit(1764922311.960:108): avc: denied { rmdir } for pid=4803 comm="syz-executor.5" name="file0" dev="sda" ino=16023 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:cpu_device_t:s0 tclass=dir permissive=1 08:11:52 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote={0xac, 0x14, 0x12}, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 584.668555] loop0: detected capacity change from 0 to 135266304 08:11:52 executing program 3: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f00000000c0)='hugetlbfs\x00', 0x0, 0x0) mkdir(&(0x7f0000000040)='./file0/file0\x00', 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000140)={{{@in=@broadcast, @in6}}, {{@in=@remote}, 0x0, @in=@private}}, &(0x7f0000000000)=0xe8) 08:11:52 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x0, 0x4, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x2dffffffffffe}, {&(0x7f0000010400)="030000000400000005", 0x9, 0x800}, {&(0x7f0000010e00)="ed41000000040000d7f4b05edf00db8c567b7b9dad6dafe78d485fd8f4", 0x1d, 0x100000000}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:12:06 executing program 4: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), 0x0) 08:12:06 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f0000000080)=0x4, 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000240)={0x9, 0x1, 0x2, 0x4}) r1 = open$dir(&(0x7f0000000200)='./file0\x00', 0x280, 0x48) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:12:06 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f0000000080)=0x4, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:12:06 executing program 3: creat(&(0x7f0000000040)='./file0\x00', 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000440)=ANY=[]) creat(0x0, 0x0) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) splice(r0, &(0x7f0000000000)=0x7, r3, &(0x7f0000000100)=0x5, 0xffffffff, 0x0) 08:12:06 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, 0x0, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) 08:12:06 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote={0xac, 0x14, 0x16}, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:12:06 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:12:06 executing program 5: syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x8, 0x4, &(0x7f00000003c0)=[{&(0x7f0000000180)="169e19f10922263357ffcbd71a0f2b5960fb62f36945d14f8c57bc9ace46ae13df24038161e213b4366d0f2ea55a8a1a543d1bf3827e1a5535382f00d33ac1f3a8658dbbce22f23427eb297e904d77b71318d85cfe8ad2e9c70ee6c93da3108b09ab134bc64798854617b7e57771843cac41c14a8a4483951e2287a1f1ca086ea397e06c74", 0x85, 0x3}, {&(0x7f0000000240)="d837612129a4236f70a53bcb1879cf520e4aeab5cdeed849543732cdf6c6235401ba3c1cfe5b7fe1615a3f47980a2e315af241d96ff06e279bd7e6235e129d3fc95f92e498eaba606c76da5e85e9dc3d7248863df588f9e93e4bc148225910f4cadcc513b4c8f6ee51a43f4df12dfff593efc5dc7674cdb496d7042df5b7cfc87900ebdb26ff27ff229f9a5dab4c46defac5ee4991b24343c9e139ec14658c77d25584a1b87bb1cd071eb05f7daf37dfd1848e89d263e0e03b04b88bca16193071e9e76eca494b5aa20e88c46ae3623e328749354fa0b2dfc64a0a", 0xdb, 0x98}, {&(0x7f00000004c0)="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", 0x1000, 0x3}, {&(0x7f00000014c0)="9753ca42f26cb24f40815a0ee341de2f4f5f90d2b127fdd0c0a9b72c9447fbfb9a55728e26a7ebfe2b4f405b3064f406b51236e40c7e4d752a5beeb6e0de32c800e25134b8eecf8dab096fe192b52e6a4ebb04e6b694ee9902331bd25f8e3ca2001beb9df4a55120dcc2037c844d7e7c8879b18e6038232bd708f6f75bf3f5a8ea9f32161d0c60f4e16fc0906fa15c5fd2fdb337f0df589e44", 0x99, 0xfffffffffffffff8}], 0x1080000, &(0x7f0000001580)={[{@mode={'mode', 0x3d, 0xffffffffffffffff}}, {@sbsector={'sbsector', 0x3d, 0x100}}, {@uid={'uid', 0x3d, 0xee01}}, {@uid={'uid', 0x3d, 0xffffffffffffffff}}, {@mode={'mode', 0x3d, 0x10000}}], [{@uid_lt={'uid<', 0xffffffffffffffff}}]}) [ 599.438976] loop3: detected capacity change from 0 to 41948160 [ 599.459896] loop5: detected capacity change from 0 to 8388096 [ 599.475674] loop3: detected capacity change from 0 to 41948160 08:12:06 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) [ 599.498435] loop5: detected capacity change from 0 to 8388096 08:12:06 executing program 4: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), 0x0) 08:12:06 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:12:06 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:12:06 executing program 5: syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, &(0x7f0000000300)='./file1\x00', 0x80, 0xa4) openat(0xffffffffffffffff, &(0x7f0000000340)='./file1\x00', 0x210200, 0x24) chdir(0x0) r1 = signalfd4(r0, &(0x7f0000000000)={[0x1]}, 0x8, 0x80000) ioctl$BTRFS_IOC_LOGICAL_INO(r1, 0xc0389424, &(0x7f0000000080)={0x3, 0x18, '\x00', 0x0, &(0x7f0000000040)=[0x0, 0x0, 0x0]}) openat(0xffffffffffffff9c, 0x0, 0x101142, 0x20) ioctl$FIOCLEX(0xffffffffffffffff, 0x5451) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000180)='numa_maps\x00') syz_io_uring_setup(0x1770, &(0x7f0000000100)={0x0, 0xfa24, 0x10, 0x2, 0x280, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000200)) r4 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r4, 0x1, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f0000001780)=@IORING_OP_RECVMSG={0xa, 0x4, 0x0, r4, 0x0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000240)=""/33, 0x21}, {&(0x7f0000000280)=""/44, 0x2c}, {&(0x7f0000000380)=""/244, 0xf4}, {&(0x7f00000014c0)=""/139, 0x8b}, {&(0x7f0000001580)=""/71, 0x47}], 0x5, &(0x7f0000001680)=""/222, 0xde}, 0x0, 0x0, 0x0, {0x3}}, 0x10000) readv(r2, &(0x7f00000002c0)=[{&(0x7f00000004c0)=""/4089, 0xff9}], 0x1) 08:12:06 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) 08:12:06 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = open(&(0x7f0000000040)='./file0\x00', 0x1831c1, 0x0) r1 = ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r4, 0x0, 0x0}, 0x0) openat(r4, &(0x7f0000000200)='./file0\x00', 0x42, 0x8) vmsplice(r1, &(0x7f0000000380)=[{&(0x7f0000000280)="f04d615f4e5790667913f6abe9dbb74deb4f3e9c520894f792a039dfceea7ec03f2672fc3579f4cfb8ac57ebec9b8177c2616b98907a3fe68a9b02d55a278f6a5e5ac3aea0d4dd0d748f3a40a2ba3b102a3188a63e529e846b9c288af20ed8e50990411788b3dbb8b42508fd5b62dad9bdfd734c78b95f657610a122dbd5f238bad8df3f47402de7a599dae36753bd82643dbe6ac6388a1e4ef2d0ef2ca058a76000ff6b7d31441853fa2565f6a64b0c3027fbf3637e326d1872626693c1053565c7bb810c9a206f98a0075820dd88dab87d0956e87f370197e56b4890f60336cda0", 0xe2}, {&(0x7f0000000440)="eb8ce2422102544465e9ade4fef50331608db7258f8036d1ca7e6eb5dee984f308437b9a4459668bf0c162d13b7abf14c550c09e07b71822a5617d80179e90b06a46290ac42fbabba7ffc38d38c91a8d28bfbcb553d6cd386d40f96e74269280be6949fe6d89461758f2d4ccf1a56accd7da08fb4755ad5e5ad9e88a66e39874e5bbbba85be8cf0aab650cdc97f86641dd0fe0cc1d5072b1e1481c396aeefe66fe9f1d397523fd729956ac1e137564d53a3c72e837918b8f4c430e7f9c6b945563a7b10a9847fbc97ec7a6cb0d50bd2f5ce1e13de8cb40c369570fdbf2", 0xdd}, {&(0x7f00000000c0)="86c740491bf0785d2310267c236199906f71c9818cb26a5d16409dbc03698274c3233332c4d5e5f327b72eef302ecb04829ba1d13ef77259", 0x38}, {&(0x7f0000000100)="f032ea4699cc0c28a1bc8b8ef366329ecb3953c45294acdeed3db1d50123a852997d845837577a0efce7951e5497aca027e07f4544366d3c79884758", 0x3c}, {&(0x7f0000000180)="3724e2d792b0309b2dddaa8d6276b428cdfe56dd6f995d8734ed9dafe767663be2212e51f4c25d3d531bf2f23e8915a7c538c90335a108dc4d5ce13bb6ba886ca4334f932ddf35adc78d23083d0d32580b7ea4037f78a5e429b93c4a7d", 0x5d}], 0x5, 0x2) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000540)={0x0, r7, 0x1000010000, 0x80, 0x892a, 0x7}) openat(r0, &(0x7f0000000000)='./file0\x00', 0x71d3d595a5f8bb73, 0x10) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000000140)='*', 0x1}, {&(0x7f0000000240)='k', 0x1}, {&(0x7f0000000400)="15", 0x1}], 0x3, 0x0, 0x0) r8 = syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r11 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r11, 0x0, 0x0}, 0x0) r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0) syz_io_uring_submit(r12, r10, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r2, r10, &(0x7f0000000900)=@IORING_OP_SENDMSG={0x9, 0x3, 0x0, r4, 0x0, &(0x7f00000008c0)={&(0x7f0000000580)=@pptp={0x18, 0x2, {0x0, @local}}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000600)="ae1dff8d", 0x4}, {&(0x7f0000000640)="d70c46b89d633312a464a9b93efb47e01b6395e010b9d76f2c3d83824e123e570b95e7a400bfb33f17c6bf3639168021aede6b2198bfd4d750218a44595207ec85865771642011affbd4b3e8b88c316dd02488e415c4e5980559a0b01d929603b873eb5d237895c66e38e2ddbc5be098ea4b737f6e5312c9562dbb8ec8bb38d85e5ec919fc909affba76a14f314d2a1d871f9cd7b2416cfd5f3c273db0a46c7701e091d6f78b0436a1ec4ea2d42327da79ecf913d21a05f49774824756bb6411e4e9162e12379ef20f4edda827f2249cb998abf865d7a617db983ff07ab904116eb0075b7fa800c24003", 0xea}, {&(0x7f0000000740)="3f8745cb02d3861e44d5ea5fdd7c738203103107be5a37266b79eb0fb5a024fe7e70ce7f1d4c146199cc9a8e492d45b7cf4ed8e7754715d9ea88ede8e10393efb51652b1b0ed88eb5e46e292aeff9284e35e0edf25e6aa5233a8c74cfda8aff00e9ddfba68d6d85509a28b349f166c5fff8c9e67ced02c9ee9db666eabe4871de20a9c518fa44297f7d47ca10620d3e1611a89f3bc45e9312066b36d270f19b8d6a8eed6ecafc758a21ea52dd9d66fb2e7e155a70a5cd96e6668d0590d9d5b4828697a26dfa10b132de0d2f4ec2fb783a7a33eb08d4ad211b147b8357550349c12e60334", 0xe4}], 0x3, &(0x7f0000000880)=[{0x28, 0xb, 0xaa2, "673ff994332e47ed546ec8dfb8b4305dd4"}], 0x28}, 0x0, 0x4008060, 0x1}, 0x0) 08:12:07 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) 08:12:07 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x3, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 613.971353] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 08:12:21 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:12:21 executing program 5: syz_io_uring_setup(0x10000, 0x0, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0xc2, 0x40, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r0, 0x5451) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0xfe, 0x0, 0x3, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0xfffffffffffffffc}, 0x80, 0x0, 0x0, 0x8, 0x6, 0xfffffffd, 0x87, 0x0, 0x7}, 0x0, 0x5, 0xffffffffffffffff, 0x3) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index=0x2, 0x7, 0x0, 0xfffffffe, 0x0, 0x1, {0x0, r3}}, 0x5) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000740)=@IORING_OP_FSYNC={0x3, 0x3, 0x0, @fd=r1, 0x0, 0x0, 0x0, 0x1, 0x0, {0x0, r3}}, 0x2) ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000340)={0x1, &(0x7f0000000300)=[{0x9, 0x81, 0x0, 0x1ff}]}) ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r2) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x81080}, 0xc, &(0x7f0000000380)={&(0x7f00000008c0)=ANY=[@ANYRES64=r0, @ANYBLOB="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", @ANYRESOCT], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00'}) socket$packet(0x11, 0x3, 0x300) sendmsg$NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000040), 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0xc054}, 0x4405c) r4 = openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x40, 0x100) dup(r4) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) 08:12:21 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0, &(0x7f0000000600)) 08:12:21 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f0000000080)=0x4, 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000240)={0x9, 0x1, 0x2, 0x4}) r1 = open$dir(&(0x7f0000000200)='./file0\x00', 0x280, 0x48) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:12:21 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f0000000080)=0x4, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:12:21 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0xf, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:12:21 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:12:21 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 1) 08:12:21 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x2dffffffffffe}, {&(0x7f0000010400)="030000000400000005", 0x9, 0x800}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:12:21 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 613.999580] FAULT_INJECTION: forcing a failure. [ 613.999580] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 614.001286] CPU: 0 PID: 6496 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 614.002226] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 614.003390] Call Trace: [ 614.003764] dump_stack+0x107/0x167 [ 614.004276] should_fail.cold+0x5/0xa [ 614.004809] _copy_from_user+0x2e/0x1b0 [ 614.005365] io_uring_setup+0x9b/0x2980 [ 614.005921] ? __mutex_unlock_slowpath+0xe1/0x600 [ 614.006600] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 614.007302] ? wait_for_completion_io+0x270/0x270 [ 614.007972] ? rcu_read_lock_any_held+0x75/0xa0 [ 614.008615] ? vfs_write+0x354/0xb10 [ 614.009132] ? fput_many+0x2f/0x1a0 [ 614.009636] ? ksys_write+0x1a9/0x260 [ 614.010172] ? __ia32_sys_read+0xb0/0xb0 [ 614.010744] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 614.011469] ? syscall_enter_from_user_mode+0x1d/0x50 [ 614.012180] do_syscall_64+0x33/0x40 [ 614.012693] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 614.013398] RIP: 0033:0x7f466af67b19 [ 614.013916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 614.016492] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 614.017547] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 614.018539] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 614.019534] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 614.020531] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 614.021535] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:12:21 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x12, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:12:21 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0, &(0x7f0000000600)) [ 614.095637] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 614.097482] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 614.099332] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 08:12:21 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x16, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 614.134162] loop0: detected capacity change from 0 to 39845376 [ 614.136830] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 614.140155] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5 [ 614.140155] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 614.140155] [ 614.142337] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 614.142337] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 614.142337] [ 614.152757] EXT4-fs error (device loop0): ext4_fill_super:4965: inode #2: comm syz-executor.0: iget: special inode unallocated [ 614.155702] EXT4-fs (loop0): get root inode failed [ 614.156433] EXT4-fs (loop0): mount failed 08:12:36 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0, &(0x7f0000000600)) 08:12:36 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x2dffffffffffe}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:12:36 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:12:36 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x0, &(0x7f0000000080)=0x4, 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000240)={0x9, 0x1, 0x2, 0x4}) r1 = open$dir(&(0x7f0000000200)='./file0\x00', 0x280, 0x48) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:12:36 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 629.570317] loop0: detected capacity change from 0 to 39845376 [ 629.586086] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5 [ 629.586086] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 629.586086] [ 629.589996] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 629.589996] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 629.589996] [ 629.594627] FAULT_INJECTION: forcing a failure. [ 629.594627] name failslab, interval 1, probability 0, space 0, times 0 [ 629.597432] CPU: 1 PID: 6534 Comm: syz-executor.3 Not tainted 5.10.246 #1 08:12:36 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0x4, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:12:36 executing program 5: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x12, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:12:36 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 2) [ 629.599041] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 629.601199] Call Trace: [ 629.601816] dump_stack+0x107/0x167 [ 629.602666] should_fail.cold+0x5/0xa [ 629.603565] ? io_uring_setup+0x258/0x2980 [ 629.604547] should_failslab+0x5/0x20 [ 629.605434] kmem_cache_alloc_trace+0x55/0x320 [ 629.606504] io_uring_setup+0x258/0x2980 [ 629.607456] ? __mutex_unlock_slowpath+0xe1/0x600 [ 629.608576] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 629.609743] ? wait_for_completion_io+0x270/0x270 [ 629.610889] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 629.612101] ? syscall_enter_from_user_mode+0x1d/0x50 [ 629.613296] do_syscall_64+0x33/0x40 [ 629.614156] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 629.615340] RIP: 0033:0x7f466af67b19 [ 629.616192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 629.620369] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 629.622099] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 629.623727] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 629.625372] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 629.626999] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 629.628631] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 629.669037] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 629.671288] EXT4-fs (loop0): group descriptors corrupted! 08:12:37 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), 0x0) 08:12:37 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 3) 08:12:37 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0x14, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:12:37 executing program 5: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14) connect$802154_dgram(r0, &(0x7f0000000080)={0x24, @long}, 0x14) r1 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r1, 0x1, 0x0) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r4, 0x0, 0x0}, 0x0) setsockopt$WPAN_WANTLQI(r4, 0x0, 0x3, &(0x7f00000000c0)=0x1, 0x4) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0) sendfile(r0, r7, &(0x7f0000000100)=0x3fc00000, 0x101) r8 = openat$sr(0xffffffffffffff9c, &(0x7f0000000180), 0x400, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x8, 0x4010, r8, 0x8000000) bind$802154_dgram(r1, &(0x7f0000000040)={0x24, @none={0x0, 0xffff}}, 0x14) 08:12:37 executing program 4: syz_emit_ethernet(0x0, 0x0, 0x0) 08:12:37 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) [ 629.836130] FAULT_INJECTION: forcing a failure. [ 629.836130] name failslab, interval 1, probability 0, space 0, times 0 [ 629.838735] CPU: 0 PID: 6549 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 629.840291] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 629.842173] Call Trace: [ 629.842777] dump_stack+0x107/0x167 [ 629.843606] should_fail.cold+0x5/0xa [ 629.844502] ? create_object.isra.0+0x3a/0xa30 [ 629.845541] should_failslab+0x5/0x20 [ 629.846394] kmem_cache_alloc+0x5b/0x310 [ 629.847329] create_object.isra.0+0x3a/0xa30 [ 629.848309] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 629.849458] kmem_cache_alloc_trace+0x151/0x320 [ 629.850507] io_uring_setup+0x258/0x2980 [ 629.851435] ? __mutex_unlock_slowpath+0xe1/0x600 [ 629.852519] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 629.853657] ? wait_for_completion_io+0x270/0x270 [ 629.854768] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 629.855960] ? syscall_enter_from_user_mode+0x1d/0x50 [ 629.857119] do_syscall_64+0x33/0x40 [ 629.857961] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 629.859189] RIP: 0033:0x7f466af67b19 [ 629.860135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 629.864288] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 629.865998] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 629.867726] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 629.869328] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 629.870942] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 629.872540] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:12:37 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x2, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:12:37 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), 0x0) 08:12:37 executing program 4: syz_emit_ethernet(0x0, 0x0, 0x0) 08:12:50 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x3, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:12:50 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000240)={0x9, 0x1, 0x2, 0x4}) r1 = open$dir(&(0x7f0000000200)='./file0\x00', 0x280, 0x48) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:12:50 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:12:50 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 4) 08:12:50 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:12:50 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), 0x0) 08:12:50 executing program 4: syz_emit_ethernet(0x0, 0x0, 0x0) 08:12:50 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x2}, 0x0, 0x0, 0x0, 0x5, 0x1, 0x0, 0x4000}, 0x0, 0x2, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x80, 0x7, 0x7, 0x40, 0x0, 0x8, 0xa2000, 0x4, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0x100000000, 0x8}, 0x47c00, 0xfffffffffffffff9, 0x20, 0x2, 0x8, 0x80000001, 0x4c, 0x0, 0x1, 0x0, 0x4}, 0xffffffffffffffff, 0xb, r0, 0x9) syz_read_part_table(0x4, 0x3, &(0x7f00000003c0)=[{0x0, 0x0, 0x3ff}, {0x0}, {&(0x7f0000000300)}]) [ 643.476066] loop0: detected capacity change from 0 to 2048 [ 643.482048] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5 [ 643.482048] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 643.482048] [ 643.485458] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 643.485458] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 643.485458] [ 643.489218] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) [ 643.497866] FAULT_INJECTION: forcing a failure. [ 643.497866] name failslab, interval 1, probability 0, space 0, times 0 [ 643.500286] CPU: 1 PID: 6581 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 643.501730] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 643.503490] Call Trace: [ 643.504051] dump_stack+0x107/0x167 [ 643.504819] should_fail.cold+0x5/0xa [ 643.505634] ? io_uring_setup+0x33c/0x2980 [ 643.506532] should_failslab+0x5/0x20 [ 643.507354] __kmalloc+0x72/0x390 [ 643.508090] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 643.509172] io_uring_setup+0x33c/0x2980 [ 643.510037] ? __mutex_unlock_slowpath+0xe1/0x600 [ 643.511104] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 643.512184] ? wait_for_completion_io+0x270/0x270 [ 643.513236] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 643.514355] ? syscall_enter_from_user_mode+0x1d/0x50 [ 643.515467] do_syscall_64+0x33/0x40 [ 643.516265] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 643.517357] RIP: 0033:0x7f466af67b19 [ 643.518151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 643.522083] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 643.523724] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 643.525245] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 643.526766] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 643.528299] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 643.529823] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:12:50 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x5, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 643.552588] loop5: detected capacity change from 0 to 1536 08:12:50 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 5) 08:12:50 executing program 4: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 643.586416] loop5: detected capacity change from 0 to 1536 [ 643.622730] FAULT_INJECTION: forcing a failure. [ 643.622730] name failslab, interval 1, probability 0, space 0, times 0 [ 643.625393] CPU: 1 PID: 6591 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 643.626976] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 643.628888] Call Trace: [ 643.629497] dump_stack+0x107/0x167 [ 643.630332] should_fail.cold+0x5/0xa [ 643.631435] ? create_object.isra.0+0x3a/0xa30 [ 643.632483] should_failslab+0x5/0x20 [ 643.633356] kmem_cache_alloc+0x5b/0x310 [ 643.634288] create_object.isra.0+0x3a/0xa30 [ 643.635304] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 643.636461] __kmalloc+0x16e/0x390 [ 643.637280] io_uring_setup+0x33c/0x2980 [ 643.638205] ? __mutex_unlock_slowpath+0xe1/0x600 [ 643.639319] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 643.640465] ? wait_for_completion_io+0x270/0x270 [ 643.641580] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 643.642773] ? syscall_enter_from_user_mode+0x1d/0x50 [ 643.643960] do_syscall_64+0x33/0x40 [ 643.644804] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 643.645971] RIP: 0033:0x7f466af67b19 [ 643.646821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 643.651034] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 643.652782] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 643.654416] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 643.656259] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 643.657909] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 643.659558] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:12:51 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:12:51 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:12:51 executing program 5: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x2, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 643.731094] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:12:51 executing program 4: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:12:51 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 6) [ 643.819522] FAULT_INJECTION: forcing a failure. [ 643.819522] name failslab, interval 1, probability 0, space 0, times 0 [ 643.822087] CPU: 0 PID: 6609 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 643.822384] FAULT_INJECTION: forcing a failure. [ 643.822384] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 643.823529] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 643.823536] Call Trace: [ 643.823566] dump_stack+0x107/0x167 [ 643.823593] should_fail.cold+0x5/0xa [ 643.829986] ? io_uring_setup+0x40b/0x2980 [ 643.830872] should_failslab+0x5/0x20 [ 643.831683] kmem_cache_alloc_trace+0x55/0x320 [ 643.832643] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 643.833699] io_uring_setup+0x40b/0x2980 [ 643.834554] ? __mutex_unlock_slowpath+0xe1/0x600 [ 643.835583] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 643.836652] ? wait_for_completion_io+0x270/0x270 [ 643.837676] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 643.838789] ? syscall_enter_from_user_mode+0x1d/0x50 [ 643.839880] do_syscall_64+0x33/0x40 [ 643.840657] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 643.841721] RIP: 0033:0x7f466af67b19 [ 643.842495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 643.846329] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 643.847921] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 643.849402] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 643.850885] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 643.852374] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 643.853843] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 643.855374] CPU: 1 PID: 6610 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 643.856951] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 643.858826] Call Trace: [ 643.859445] dump_stack+0x107/0x167 [ 643.860303] should_fail.cold+0x5/0xa [ 643.861192] _copy_from_user+0x2e/0x1b0 [ 643.862110] io_uring_setup+0x9b/0x2980 [ 643.863036] ? __mutex_unlock_slowpath+0xe1/0x600 [ 643.864165] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 643.865334] ? wait_for_completion_io+0x270/0x270 [ 643.866446] ? rcu_read_lock_any_held+0x75/0xa0 [ 643.867540] ? vfs_write+0x354/0xb10 [ 643.868400] ? fput_many+0x2f/0x1a0 [ 643.869233] ? ksys_write+0x1a9/0x260 [ 643.870113] ? __ia32_sys_read+0xb0/0xb0 [ 643.871048] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 643.872263] ? syscall_enter_from_user_mode+0x1d/0x50 [ 643.873453] do_syscall_64+0x33/0x40 [ 643.874314] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 643.875510] RIP: 0033:0x7ffa83495b19 [ 643.876364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 643.880591] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 643.882340] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 643.883984] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 643.885625] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 643.887275] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 643.888921] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:12:51 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 1) 08:13:06 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:13:06 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x13, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet(0xffffffffffffffff, &(0x7f00000035c0)=[{{&(0x7f0000000000)={0x2, 0x4e20, @loopback}, 0x10, 0x0}}, {{&(0x7f00000000c0)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000015c0)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x2}}], 0x18}}], 0x2, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x8) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x1}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB="6c00000087bae9e21157ec915797e8a87048a96800010104000000000000000002000800240001801400018008000100ffffffff08000200ac1e00010c00026dec00010000000000240002800c0002800500011a000000001400018008000100ac14140208000200e000000108000740000000000800084000000001"], 0x6c}}, 0x0) signalfd4(r2, &(0x7f0000000140)={[0x7fff]}, 0x8, 0x800) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r3, 0xc0c0583b, &(0x7f0000000880)=ANY=[@ANYBLOB="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"]) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_OPENAT={0x12, 0x5, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000180)='./file0\x00', 0x2, 0x140, 0x31713}, 0x1f7) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') readv(r1, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r4, 0xc0189377, &(0x7f0000000200)=ANY=[@ANYBLOB="210000000100000018000000", @ANYRES32=r4, @ANYBLOB="e5d7f63528e62066ecef4f91f6df3b42feea95c5a505152fa5ebf7762e33f82b1f0a5e7973c0bb34c607a3c428da09000000000000003db3ed02991603f692d5a47790f7e23689533e40a1390a9a56317dde9ba4d15112385629c6cc35c8c9d8fe4f0a"]) ioctl$EXT4_IOC_GROUP_ADD(r4, 0x40086607, &(0x7f0000000080)={0x5}) pivot_root(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)='./file0\x00') 08:13:06 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000240)={0x9, 0x1, 0x2, 0x4}) r1 = open$dir(&(0x7f0000000200)='./file0\x00', 0x280, 0x48) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:13:06 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:13:06 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x3, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:06 executing program 4: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 658.932083] FAULT_INJECTION: forcing a failure. [ 658.932083] name failslab, interval 1, probability 0, space 0, times 0 [ 658.935019] CPU: 1 PID: 6623 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 658.936849] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 658.938972] Call Trace: [ 658.939660] dump_stack+0x107/0x167 [ 658.940591] should_fail.cold+0x5/0xa [ 658.941565] ? create_object.isra.0+0x3a/0xa30 [ 658.942725] should_failslab+0x5/0x20 [ 658.943706] kmem_cache_alloc+0x5b/0x310 [ 658.944745] create_object.isra.0+0x3a/0xa30 [ 658.945862] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 658.947188] kmem_cache_alloc_trace+0x151/0x320 [ 658.948395] io_uring_setup+0x40b/0x2980 [ 658.949433] ? __mutex_unlock_slowpath+0xe1/0x600 [ 658.950665] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 658.951962] ? wait_for_completion_io+0x270/0x270 [ 658.953212] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 658.954546] ? syscall_enter_from_user_mode+0x1d/0x50 [ 658.955866] do_syscall_64+0x33/0x40 [ 658.956814] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 658.958116] RIP: 0033:0x7f466af67b19 [ 658.959065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 658.963762] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 658.965401] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 08:13:06 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 7) 08:13:06 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 2) [ 658.966934] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 658.968625] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 658.970152] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 658.971695] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 658.981593] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 658.983834] FAULT_INJECTION: forcing a failure. [ 658.983834] name failslab, interval 1, probability 0, space 0, times 0 [ 658.986224] CPU: 1 PID: 6631 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 658.987673] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 658.989429] Call Trace: [ 658.989989] dump_stack+0x107/0x167 [ 658.990763] should_fail.cold+0x5/0xa 08:13:06 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0x0, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:06 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x8, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 658.991592] ? io_uring_setup+0x258/0x2980 [ 658.992636] should_failslab+0x5/0x20 [ 658.993447] kmem_cache_alloc_trace+0x55/0x320 [ 658.994424] io_uring_setup+0x258/0x2980 [ 658.995286] ? __mutex_unlock_slowpath+0xe1/0x600 [ 658.996320] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 658.997382] ? wait_for_completion_io+0x270/0x270 [ 658.998426] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 658.999541] ? syscall_enter_from_user_mode+0x1d/0x50 [ 659.000629] do_syscall_64+0x33/0x40 [ 659.001416] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 659.002497] RIP: 0033:0x7ffa83495b19 08:13:06 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 8) [ 659.003283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 659.007398] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 659.009010] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 659.010513] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 659.012036] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 659.013536] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 659.015039] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 659.038922] EXT4-fs warning (device sda): ext4_group_extend:1805: can't shrink FS - resize aborted [ 659.077694] EXT4-fs warning (device sda): ext4_group_extend:1805: can't shrink FS - resize aborted 08:13:06 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0xf, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:06 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0x0, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:06 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) [ 659.140651] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 659.195354] FAULT_INJECTION: forcing a failure. [ 659.195354] name failslab, interval 1, probability 0, space 0, times 0 [ 659.197894] CPU: 1 PID: 6652 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 659.199350] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 659.201101] Call Trace: [ 659.201663] dump_stack+0x107/0x167 [ 659.202435] should_fail.cold+0x5/0xa [ 659.203240] ? create_object.isra.0+0x3a/0xa30 [ 659.204229] should_failslab+0x5/0x20 [ 659.205036] kmem_cache_alloc+0x5b/0x310 [ 659.205896] create_object.isra.0+0x3a/0xa30 [ 659.206836] kmemleak_alloc_percpu+0xa0/0x100 [ 659.207795] pcpu_alloc+0x4e2/0x1240 [ 659.208596] ? io_tctx_exit_cb+0xf0/0xf0 [ 659.209457] percpu_ref_init+0x31/0x3d0 [ 659.210306] io_uring_setup+0x47a/0x2980 [ 659.211165] ? __mutex_unlock_slowpath+0xe1/0x600 [ 659.212197] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 659.213261] ? wait_for_completion_io+0x270/0x270 [ 659.214300] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 659.215419] ? syscall_enter_from_user_mode+0x1d/0x50 [ 659.216513] do_syscall_64+0x33/0x40 [ 659.217295] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 659.218389] RIP: 0033:0x7f466af67b19 [ 659.219177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 659.223087] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 659.224704] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 659.226212] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 659.227723] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 659.229225] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 659.230733] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:13:19 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:19 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0x0, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:19 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:13:19 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000240)={0x9, 0x1, 0x2, 0x4}) r1 = open$dir(&(0x7f0000000200)='./file0\x00', 0x280, 0x48) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) [ 672.317603] FAULT_INJECTION: forcing a failure. [ 672.317603] name failslab, interval 1, probability 0, space 0, times 0 [ 672.319287] CPU: 0 PID: 6672 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 672.320246] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 672.321403] Call Trace: [ 672.321788] dump_stack+0x107/0x167 [ 672.322311] should_fail.cold+0x5/0xa [ 672.322844] ? create_object.isra.0+0x3a/0xa30 [ 672.323480] should_failslab+0x5/0x20 [ 672.324024] kmem_cache_alloc+0x5b/0x310 [ 672.324594] create_object.isra.0+0x3a/0xa30 [ 672.325215] kmemleak_alloc_percpu+0xa0/0x100 [ 672.325251] loop0: detected capacity change from 0 to 2048 [ 672.325842] pcpu_alloc+0x4e2/0x1240 [ 672.325874] ? io_tctx_exit_cb+0xf0/0xf0 [ 672.327973] percpu_ref_init+0x31/0x3d0 [ 672.328426] io_uring_setup+0x47a/0x2980 [ 672.328886] ? __mutex_unlock_slowpath+0xe1/0x600 [ 672.329436] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 672.330012] ? wait_for_completion_io+0x270/0x270 [ 672.330575] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 672.331180] ? syscall_enter_from_user_mode+0x1d/0x50 [ 672.331784] do_syscall_64+0x33/0x40 [ 672.332210] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 672.332791] RIP: 0033:0x7f466af67b19 [ 672.333218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 672.335315] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 672.336190] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 672.337005] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 672.337815] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 672.338628] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 672.339442] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 672.341320] FAULT_INJECTION: forcing a failure. [ 672.341320] name failslab, interval 1, probability 0, space 0, times 0 [ 672.343779] CPU: 1 PID: 6666 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 672.344492] devpts: called with bogus options 08:13:19 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000140)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000100)='./mnt\x00', &(0x7f0000000180)='devpts\x00', 0x0, &(0x7f0000000200)='system.posix_acl_access\x00') r0 = getuid() stat(&(0x7f0000000440)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x200000c, 0x1010, 0xffffffffffffffff, 0x8000000) r3 = syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r6, 0x0, 0x0}, 0x0) r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) syz_io_uring_submit(r7, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r9 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r9, 0x1, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x3000008, 0x11, r9, 0x0) syz_io_uring_submit(r2, r5, &(0x7f0000000340)=@IORING_OP_POLL_REMOVE={0x7, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r8}}, 0x0) setresuid(0xffffffffffffffff, r1, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./mnt\x00', 0x8, 0x2, &(0x7f00000001c0)=[{&(0x7f0000000080)="e254180f1975662dee", 0x9, 0x1}, {&(0x7f00000000c0)="d49a73fe751930d0ba2e60af3b7cbb58240cfe26a8c934cc5b72c9b2bc6129f9dd98ed14af7c63ea21e99ca9c73e44ee6b4530198a53", 0x36, 0x100000000}], 0x3828080, &(0x7f0000000240)={[{@huge_advise}, {@nr_inodes={'nr_inodes', 0x3d, [0x2a6e1defca38325e, 0x39, 0x30, 0x31]}}, {@huge_always}, {}], [{@dont_measure}, {@smackfsfloor={'smackfsfloor', 0x3d, 'system.posix_acl_access\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, 'system.posix_acl_access\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0x100000001}}, {@uid_gt={'uid>', r0}}, {@uid_gt={'uid>', r1}}]}) 08:13:19 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 3) 08:13:19 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 9) 08:13:19 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) [ 672.345239] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 672.345249] Call Trace: [ 672.345278] dump_stack+0x107/0x167 [ 672.345301] should_fail.cold+0x5/0xa [ 672.350145] ? create_object.isra.0+0x3a/0xa30 [ 672.351114] should_failslab+0x5/0x20 [ 672.351936] kmem_cache_alloc+0x5b/0x310 [ 672.352816] create_object.isra.0+0x3a/0xa30 [ 672.353758] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 672.354839] kmem_cache_alloc_trace+0x151/0x320 [ 672.355833] io_uring_setup+0x258/0x2980 [ 672.356713] ? __mutex_unlock_slowpath+0xe1/0x600 [ 672.357309] devpts: called with bogus options [ 672.357736] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 672.359341] ? wait_for_completion_io+0x270/0x270 [ 672.360408] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 672.361514] ? syscall_enter_from_user_mode+0x1d/0x50 [ 672.362608] do_syscall_64+0x33/0x40 [ 672.363401] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 672.364491] RIP: 0033:0x7ffa83495b19 [ 672.365286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 672.369181] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 672.370789] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 672.372304] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 672.373811] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 672.375319] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 672.376831] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 672.388716] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:13:19 executing program 4: syz_emit_ethernet(0x42, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x8, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0xc, 0xf, 0x1, 0x0, [{@empty}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:19 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty=0x3}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:19 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:13:19 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 4) 08:13:19 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$SNAPSHOT_PREF_IMAGE_SIZE(0xffffffffffffffff, 0x3312, 0x8) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x81403, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000100), 0x8}, 0x4, 0x3, 0xfffffffc, 0x2, 0x3, 0x861, 0xfffe, 0x0, 0xfffffffc, 0x0, 0x8008}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) write$binfmt_elf64(r1, &(0x7f00000008c0)=ANY=[], 0x629) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r3 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r3, 0x1, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x20, 0x21, 0x200, 0x70bd28, 0x25dfdbfb, {0x1e}, [@generic='\"', @typed={0x8, 0x2, 0x0, 0x0, @uid}]}, 0x6}, 0x1, 0x0, 0x0, 0x91}, 0x40000) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000000)={0x390, 0x9, 0xaa9, 0x1, 0x6}) pwrite64(r2, &(0x7f00000000c0)="04", 0x1, 0x3ff03) r4 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r4, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000140)={'wlan1\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xffffffffffffffff}, 0x1000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r1, r0, 0x0, 0xffffffff000) [ 672.464675] loop0: detected capacity change from 0 to 2048 08:13:19 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 10) [ 672.475483] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:13:19 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty=0x8}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:19 executing program 4: syz_emit_ethernet(0x42, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x8, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0xc, 0xf, 0x1, 0x0, [{@empty}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 672.489181] FAULT_INJECTION: forcing a failure. [ 672.489181] name failslab, interval 1, probability 0, space 0, times 0 [ 672.490569] CPU: 0 PID: 6690 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 672.491350] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 672.492315] Call Trace: [ 672.492624] dump_stack+0x107/0x167 [ 672.493048] should_fail.cold+0x5/0xa [ 672.493489] ? io_uring_setup+0x33c/0x2980 [ 672.493979] should_failslab+0x5/0x20 [ 672.494425] __kmalloc+0x72/0x390 [ 672.494822] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 672.495411] io_uring_setup+0x33c/0x2980 [ 672.495883] ? __mutex_unlock_slowpath+0xe1/0x600 [ 672.496450] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 672.497024] ? wait_for_completion_io+0x270/0x270 [ 672.497598] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 672.498202] ? syscall_enter_from_user_mode+0x1d/0x50 [ 672.498789] do_syscall_64+0x33/0x40 [ 672.499217] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 672.499817] RIP: 0033:0x7ffa83495b19 [ 672.500244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 672.502355] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 672.503231] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 672.504058] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 672.504896] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 672.505709] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 672.506540] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 672.509718] FAULT_INJECTION: forcing a failure. [ 672.509718] name failslab, interval 1, probability 0, space 0, times 0 [ 672.511099] CPU: 0 PID: 6692 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 672.511898] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 672.512870] Call Trace: [ 672.513190] dump_stack+0x107/0x167 [ 672.513609] should_fail.cold+0x5/0xa [ 672.514049] ? percpu_ref_init+0xd8/0x3d0 [ 672.514532] should_failslab+0x5/0x20 [ 672.514973] kmem_cache_alloc_trace+0x55/0x320 [ 672.515498] ? io_tctx_exit_cb+0xf0/0xf0 [ 672.515971] percpu_ref_init+0xd8/0x3d0 [ 672.516425] io_uring_setup+0x47a/0x2980 [ 672.516897] ? __mutex_unlock_slowpath+0xe1/0x600 [ 672.517450] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 672.518030] ? wait_for_completion_io+0x270/0x270 [ 672.518619] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 672.519220] ? syscall_enter_from_user_mode+0x1d/0x50 [ 672.519828] do_syscall_64+0x33/0x40 [ 672.520262] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 672.520854] RIP: 0033:0x7f466af67b19 [ 672.521286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 672.523405] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 672.524291] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 672.525107] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 672.525919] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 672.526745] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 672.527580] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:13:34 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:13:34 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty=0x3c}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:34 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000240)={0x9, 0x1, 0x2, 0x4}) r1 = open$dir(&(0x7f0000000200)='./file0\x00', 0x280, 0x48) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:13:34 executing program 4: syz_emit_ethernet(0x42, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x8, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0xc, 0xf, 0x1, 0x0, [{@empty}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:34 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:13:34 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 5) 08:13:34 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 11) 08:13:34 executing program 5: syz_emit_ethernet(0x42, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x8, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0xc, 0xf, 0x1, 0x0, [{@empty}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 687.515588] loop0: detected capacity change from 0 to 2048 [ 687.524413] FAULT_INJECTION: forcing a failure. [ 687.524413] name failslab, interval 1, probability 0, space 0, times 0 [ 687.527175] CPU: 0 PID: 6721 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 687.528757] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 687.530639] Call Trace: [ 687.531238] dump_stack+0x107/0x167 [ 687.532086] should_fail.cold+0x5/0xa [ 687.532966] ? create_object.isra.0+0x3a/0xa30 [ 687.534017] should_failslab+0x5/0x20 [ 687.534892] kmem_cache_alloc+0x5b/0x310 [ 687.535826] create_object.isra.0+0x3a/0xa30 [ 687.536835] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 687.538003] kmem_cache_alloc_trace+0x151/0x320 [ 687.539076] ? io_tctx_exit_cb+0xf0/0xf0 [ 687.540006] percpu_ref_init+0xd8/0x3d0 [ 687.540911] io_uring_setup+0x47a/0x2980 [ 687.541829] ? __mutex_unlock_slowpath+0xe1/0x600 [ 687.542915] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 687.544068] ? wait_for_completion_io+0x270/0x270 [ 687.545179] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 687.546366] ? syscall_enter_from_user_mode+0x1d/0x50 [ 687.547548] do_syscall_64+0x33/0x40 [ 687.548398] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 687.549578] RIP: 0033:0x7f466af67b19 [ 687.550451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 687.554648] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 687.556369] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 687.557957] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 687.559573] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 687.561203] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 687.562827] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 687.575018] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 687.577391] FAULT_INJECTION: forcing a failure. [ 687.577391] name failslab, interval 1, probability 0, space 0, times 0 [ 687.580047] CPU: 0 PID: 6720 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 687.581606] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 687.583489] Call Trace: [ 687.584101] dump_stack+0x107/0x167 [ 687.584934] should_fail.cold+0x5/0xa [ 687.585805] ? create_object.isra.0+0x3a/0xa30 [ 687.586835] should_failslab+0x5/0x20 [ 687.587697] kmem_cache_alloc+0x5b/0x310 [ 687.588639] create_object.isra.0+0x3a/0xa30 [ 687.589629] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 687.590776] __kmalloc+0x16e/0x390 [ 687.591592] io_uring_setup+0x33c/0x2980 [ 687.592526] ? __mutex_unlock_slowpath+0xe1/0x600 [ 687.593623] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 687.594766] ? wait_for_completion_io+0x270/0x270 [ 687.595887] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 687.597068] ? syscall_enter_from_user_mode+0x1d/0x50 [ 687.598235] do_syscall_64+0x33/0x40 [ 687.599076] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 687.600249] RIP: 0033:0x7ffa83495b19 [ 687.601084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 687.605280] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 687.607034] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 687.608667] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 687.610302] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 687.611934] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 687.613571] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:13:34 executing program 4: syz_emit_ethernet(0x42, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x8, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0xc, 0xf, 0x1, 0x0, [{@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:34 executing program 5: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x2800018, &(0x7f0000000440)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') faccessat2(r0, &(0x7f00000003c0)='./file0\x00', 0x48, 0x2200) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) setxattr$trusted_overlay_upper(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200)=ANY=[@ANYBLOB="00fb4e1d055a03c2f9970853b20b9898ae29c5a1c8ddc1fe0306f28f4ac145dc4278504a4f7dc8a25797553ef2577892c33711deed38e2c585c054861d96a274355a328435a6cf6d4cff854be70c"], 0x4e, 0x1) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xd21, 0x4}, 0x50310, 0x5, 0x0, 0x5, 0x0, 0x800}, 0x0, 0xd, 0xffffffffffffffff, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000180)='numa_maps\x00') readv(r3, &(0x7f0000000280)=[{&(0x7f00000004c0)=""/4089, 0xff9}], 0x1) r4 = pidfd_getfd(r3, r2, 0x0) r5 = openat(r3, &(0x7f0000000000)='/proc/self/exe\x00', 0x80000, 0x0) r6 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r6, 0x1, 0x0) ftruncate(r6, 0x6be) sendfile(r1, r5, 0x0, 0x100000001) recvfrom$unix(r4, &(0x7f0000000300)=""/34, 0x22, 0x3, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e21}, 0x6e) 08:13:34 executing program 4: syz_emit_ethernet(0x42, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x8, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0xc, 0xf, 0x1, 0x0, [{@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:35 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty=0x300}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:35 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000), 0x0, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:13:35 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 12) 08:13:35 executing program 4: syz_emit_ethernet(0x42, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x8, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0xc, 0xf, 0x1, 0x0, [{@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:35 executing program 5: keyctl$read(0xb, 0x0, &(0x7f00000000c0)=""/43, 0x2b) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0) timer_gettime(0x0, &(0x7f00000002c0)) r0 = add_key(&(0x7f0000000000)='asymmetric\x00', 0x0, &(0x7f0000000300)="d1344c34940e688890c62be9b941f3d2a88a6911bca3c76aa2fee4cb77b53c70025fcf91588d5944a564b7b21f3f75b0731dc54a46ede4f3d16c04631e9f510a4736ec8c00e00ac377f8ca5fef3436ace48680182336065c14570c531fcab11db0dd1f87fc182787d26c49a81576585d2d3b1f6fcc6b41cce23fb976ae5d616dea97d3e12922718a3b2a2512eced01423b071c0b640c9620da2b26dcd0c63fe1311790b01ba0850ea7ee033f6b9fd2c6c3e08d565cd09602f5e8b53db9e05379008a77b157e0427e8cf02bd0d0b627cec837081c09f5a2062f7ec3", 0xdb, 0xfffffffffffffff9) syz_usb_connect$hid(0x6, 0x3f, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0xff, 0xeef, 0x72a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x5, 0x180, 0x40, [{{0x9, 0x4, 0x0, 0x7, 0x1, 0x3, 0x1, 0x0, 0x9, {0x9, 0x21, 0xfffd, 0xfc, 0x1, {0x22, 0x8dd}}, {{{0x9, 0x5, 0x81, 0x3, 0x10, 0x4, 0xda, 0x3}}, [{{0x9, 0x5, 0x2, 0x3, 0x200, 0x4, 0x6, 0x5}}]}}}]}}]}}, &(0x7f00000006c0)={0xa, &(0x7f0000000440)={0xa, 0x6, 0x301, 0x4, 0xb2, 0xad, 0xff, 0x3}, 0x69, &(0x7f0000000480)={0x5, 0xf, 0x69, 0x2, [@ptm_cap={0x3}, @generic={0x61, 0x10, 0xa, "b5e8b22faa5c48eb931476094e3657953513f5607da75b43f80ae39af9c15f52c25d3b9db4976ca972132250b80b8741bee5919bc69fd6321ec8a37af0787e17c0323fb92b41410bb899975517416831b3cdb544ac1e1e49797fa951c364"}]}, 0x5, [{0xad, &(0x7f0000000500)=@string={0xad, 0x3, "a3df079bfdd6554180e8a0a7c391097eb39e38d40dcb6a9a6ca86307ac46ba41914a664f392c5ccc66addf271971c71af54a938376e5aeff159247e221358ec05f53f5e8507e145d20c0f3d2842e458bdd812964240f06780eb7c51b00683ee898ef028c52db5d6bfc6518db3c8e18b6f3a2661c133ee6e80d6aa3a305cd0c2daf8f4d9b44d278c01f39f5b0dac273bdf06b7297a1848f5176a84d730684c392d23573523ad529493e4373"}}, {0x4, &(0x7f00000005c0)=@lang_id={0x4, 0x3, 0x42d}}, {0x4, &(0x7f0000000600)=@lang_id={0x4, 0x3, 0x80a}}, {0x4, &(0x7f0000000640)=@lang_id={0x4, 0x3, 0x458}}, {0x4, &(0x7f0000000680)=@lang_id={0x4, 0x3, 0x2401}}]}) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000100)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000280)={0xffffffffffffffff, 0x2, 0x8, 0x1}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x405d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x1a}, 0xa40, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x7}, 0x0, 0xffffffffffffffff, r1, 0x0) capset(&(0x7f0000000240)={0x20080522}, 0x0) add_key$keyring(&(0x7f0000000040), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, r0) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 687.787528] loop0: detected capacity change from 0 to 2048 [ 687.798859] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 687.806836] FAULT_INJECTION: forcing a failure. [ 687.806836] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 687.809397] CPU: 1 PID: 6744 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 687.810753] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 687.812407] Call Trace: [ 687.812945] dump_stack+0x107/0x167 [ 687.813688] should_fail.cold+0x5/0xa [ 687.814469] __alloc_pages_nodemask+0x182/0x600 [ 687.815419] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 687.816649] ? cap_capable+0x1cd/0x230 [ 687.817448] alloc_pages_current+0x187/0x280 [ 687.818330] __get_free_pages+0xc/0xa0 [ 687.819109] io_uring_setup+0xe27/0x2980 [ 687.819962] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 687.820975] ? wait_for_completion_io+0x270/0x270 [ 687.821950] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 687.822981] ? syscall_enter_from_user_mode+0x1d/0x50 [ 687.824048] do_syscall_64+0x33/0x40 [ 687.824802] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 687.825817] RIP: 0033:0x7f466af67b19 [ 687.826552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 687.830213] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 687.831722] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 687.833128] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 687.834532] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 687.835948] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 687.837372] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 702.422867] FAULT_INJECTION: forcing a failure. [ 702.422867] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 702.425550] CPU: 1 PID: 6753 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 702.427060] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 702.428907] Call Trace: [ 702.429487] dump_stack+0x107/0x167 [ 702.430295] should_fail.cold+0x5/0xa [ 702.431140] __alloc_pages_nodemask+0x182/0x600 [ 702.432221] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 702.433546] ? cap_capable+0x1cd/0x230 [ 702.434296] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 702.434415] alloc_pages_current+0x187/0x280 [ 702.437492] __get_free_pages+0xc/0xa0 [ 702.438354] io_uring_setup+0xf9a/0x2980 [ 702.439293] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 702.440426] ? wait_for_completion_io+0x270/0x270 [ 702.441506] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 702.442665] ? syscall_enter_from_user_mode+0x1d/0x50 [ 702.443813] do_syscall_64+0x33/0x40 [ 702.444634] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 702.445773] RIP: 0033:0x7f466af67b19 [ 702.446586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 702.447542] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 702.451529] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 702.451552] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 702.451574] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 702.458460] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 08:13:49 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) r1 = open$dir(&(0x7f0000000200)='./file0\x00', 0x280, 0x48) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:13:49 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:13:49 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000), 0x0, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:13:49 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 13) 08:13:49 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r6, 0x0, 0x0}, 0x0) getsockopt$bt_BT_RCVMTU(r6, 0x112, 0xd, &(0x7f0000000380)=0xfff, &(0x7f00000003c0)=0x2) sendmsg$ETHTOOL_MSG_RINGS_SET(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)={0x90, r3, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@ETHTOOL_A_RINGS_TX={0x8, 0x9, 0x6}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0x1}, @ETHTOOL_A_RINGS_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x8041}, 0x85) syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36) nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0)) syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36) 08:13:49 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 6) 08:13:49 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty=0x3c00}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 702.460325] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 702.462517] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 702.465448] FAULT_INJECTION: forcing a failure. [ 702.465448] name failslab, interval 1, probability 0, space 0, times 0 [ 702.468098] CPU: 0 PID: 6763 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 702.469693] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 702.471632] Call Trace: [ 702.472267] dump_stack+0x107/0x167 [ 702.473115] should_fail.cold+0x5/0xa [ 702.474006] ? io_uring_setup+0x40b/0x2980 [ 702.474999] should_failslab+0x5/0x20 [ 702.475894] kmem_cache_alloc_trace+0x55/0x320 [ 702.476967] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 702.478155] io_uring_setup+0x40b/0x2980 [ 702.479108] ? __mutex_unlock_slowpath+0xe1/0x600 [ 702.480247] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 702.481418] ? wait_for_completion_io+0x270/0x270 [ 702.482559] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 702.483771] ? syscall_enter_from_user_mode+0x1d/0x50 [ 702.484976] do_syscall_64+0x33/0x40 [ 702.485834] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 702.487019] RIP: 0033:0x7ffa83495b19 [ 702.487873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 702.492153] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 702.494071] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 702.495729] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 702.497346] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 702.498956] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 702.500622] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 702.505327] loop0: detected capacity change from 0 to 2048 [ 702.520237] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:13:49 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) (fail_nth: 1) 08:13:49 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) [ 702.542317] FAULT_INJECTION: forcing a failure. [ 702.542317] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 702.545089] CPU: 0 PID: 6768 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 702.546674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 702.548603] Call Trace: [ 702.549218] dump_stack+0x107/0x167 [ 702.550060] should_fail.cold+0x5/0xa [ 702.550942] __alloc_pages_nodemask+0x182/0x600 [ 702.552018] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 702.553422] ? tun_build_skb+0x186/0xfc0 [ 702.554364] alloc_pages_current+0x187/0x280 [ 702.555381] skb_page_frag_refill+0x27c/0x490 [ 702.556426] tun_build_skb+0x206/0xfc0 [ 702.557336] ? tun_xdp_act+0x6f0/0x6f0 [ 702.558235] ? __lock_acquire+0xbb1/0x5b00 [ 702.559221] tun_get_user+0x6c1/0x3310 [ 702.560151] ? tun_build_skb+0xfc0/0xfc0 [ 702.561095] ? virtio_net_hdr_to_skb.constprop.0+0xc30/0x1150 [ 702.562439] ? lock_downgrade+0x6d0/0x6d0 [ 702.563402] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 702.564637] tun_chr_write_iter+0xe1/0x1e0 [ 702.565615] new_sync_write+0x42c/0x660 [ 702.566532] ? new_sync_read+0x6f0/0x6f0 [ 702.567479] ? avc_policy_seqno+0x9/0x70 [ 702.568438] ? selinux_file_permission+0x92/0x520 [ 702.569554] ? security_file_permission+0xb1/0xe0 [ 702.570673] vfs_write+0x7c0/0xb10 [ 702.571495] ksys_write+0x12d/0x260 [ 702.572343] ? __ia32_sys_read+0xb0/0xb0 [ 702.573289] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 702.574502] ? syscall_enter_from_user_mode+0x1d/0x50 [ 702.575694] do_syscall_64+0x33/0x40 [ 702.576543] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 702.577691] RIP: 0033:0x7f166329f5ff [ 702.578526] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 702.582670] RSP: 002b:00007f1660862150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 702.584390] RAX: ffffffffffffffda RBX: 00007f16633fff60 RCX: 00007f166329f5ff [ 702.586003] RDX: 000000000000004a RSI: 0000000020000080 RDI: 00000000000000f0 [ 702.587612] RBP: 00007f16608621d0 R08: 0000000000000000 R09: 0000000000000000 [ 702.589224] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 702.590822] R13: 00007ffe6de1daef R14: 00007f1660862300 R15: 0000000000022000 08:13:49 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 14) [ 702.612427] FAULT_INJECTION: forcing a failure. [ 702.612427] name failslab, interval 1, probability 0, space 0, times 0 [ 702.614863] CPU: 1 PID: 6773 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 702.616329] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 702.618078] Call Trace: [ 702.618641] dump_stack+0x107/0x167 [ 702.619413] should_fail.cold+0x5/0xa [ 702.620233] ? io_uring_setup+0x17ed/0x2980 [ 702.621152] should_failslab+0x5/0x20 [ 702.621952] kmem_cache_alloc_trace+0x55/0x320 [ 702.622914] ? alloc_pages_current+0x18f/0x280 [ 702.623881] io_uring_setup+0x17ed/0x2980 [ 702.624773] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 702.625843] ? wait_for_completion_io+0x270/0x270 [ 702.626882] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 702.627990] ? syscall_enter_from_user_mode+0x1d/0x50 [ 702.629099] do_syscall_64+0x33/0x40 [ 702.629887] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 702.630971] RIP: 0033:0x7f466af67b19 [ 702.631767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 702.635677] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 702.637292] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 702.638796] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 702.640321] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 702.641822] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 702.643326] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:13:49 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty=0x1000000}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:49 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000), 0x0, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:13:50 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:13:50 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 15) [ 702.689637] loop0: detected capacity change from 0 to 2048 [ 702.704473] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:13:50 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty=0x3000000}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:13:50 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 7) [ 702.769513] FAULT_INJECTION: forcing a failure. [ 702.769513] name failslab, interval 1, probability 0, space 0, times 0 [ 702.772081] CPU: 1 PID: 6783 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 702.773531] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 702.775285] Call Trace: [ 702.775842] dump_stack+0x107/0x167 [ 702.776622] should_fail.cold+0x5/0xa [ 702.777429] ? create_object.isra.0+0x3a/0xa30 [ 702.778392] should_failslab+0x5/0x20 [ 702.779200] kmem_cache_alloc+0x5b/0x310 [ 702.780075] create_object.isra.0+0x3a/0xa30 [ 702.781000] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 702.782079] kmem_cache_alloc_trace+0x151/0x320 [ 702.783063] ? alloc_pages_current+0x18f/0x280 [ 702.784024] io_uring_setup+0x17ed/0x2980 [ 702.784914] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 702.785986] ? wait_for_completion_io+0x270/0x270 [ 702.787023] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 702.788137] ? syscall_enter_from_user_mode+0x1d/0x50 [ 702.789225] do_syscall_64+0x33/0x40 [ 702.790011] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 702.791087] RIP: 0033:0x7f466af67b19 [ 702.791874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 702.795769] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 702.797387] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 702.798890] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 702.800400] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 702.801912] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 702.803424] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 702.814477] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 702.834906] FAULT_INJECTION: forcing a failure. [ 702.834906] name failslab, interval 1, probability 0, space 0, times 0 [ 702.837440] CPU: 1 PID: 6787 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 702.838903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 702.840666] Call Trace: [ 702.841224] dump_stack+0x107/0x167 [ 702.841993] should_fail.cold+0x5/0xa [ 702.842796] ? create_object.isra.0+0x3a/0xa30 [ 702.843755] should_failslab+0x5/0x20 [ 702.844568] kmem_cache_alloc+0x5b/0x310 [ 702.845428] create_object.isra.0+0x3a/0xa30 [ 702.846348] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 702.847428] kmem_cache_alloc_trace+0x151/0x320 [ 702.848427] io_uring_setup+0x40b/0x2980 [ 702.849277] ? __mutex_unlock_slowpath+0xe1/0x600 [ 702.850290] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 702.851346] ? wait_for_completion_io+0x270/0x270 [ 702.852389] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 702.853489] ? syscall_enter_from_user_mode+0x1d/0x50 [ 702.854582] do_syscall_64+0x33/0x40 [ 702.855369] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 702.856471] RIP: 0033:0x7ffa83495b19 [ 702.857254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 702.861139] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 702.862741] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 702.864253] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 702.865745] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 702.867252] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 702.868775] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:14:03 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty=0x8000000}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 716.090338] FAULT_INJECTION: forcing a failure. [ 716.090338] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 716.091735] CPU: 0 PID: 6805 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 716.092527] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 716.093486] Call Trace: [ 716.093797] dump_stack+0x107/0x167 [ 716.094216] should_fail.cold+0x5/0xa [ 716.094652] copy_page_from_iter+0x40a/0x900 [ 716.095162] tun_build_skb+0x2d9/0xfc0 [ 716.095609] ? tun_xdp_act+0x6f0/0x6f0 [ 716.096062] ? __lock_acquire+0xbb1/0x5b00 [ 716.096563] tun_get_user+0x6c1/0x3310 [ 716.097018] ? tun_build_skb+0xfc0/0xfc0 [ 716.097483] ? virtio_net_hdr_to_skb.constprop.0+0xc30/0x1150 [ 716.098152] ? lock_downgrade+0x6d0/0x6d0 [ 716.098625] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 716.099233] tun_chr_write_iter+0xe1/0x1e0 [ 716.099717] new_sync_write+0x42c/0x660 [ 716.100177] ? new_sync_read+0x6f0/0x6f0 [ 716.100654] ? avc_policy_seqno+0x9/0x70 [ 716.101117] ? selinux_file_permission+0x92/0x520 [ 716.101670] ? security_file_permission+0xb1/0xe0 [ 716.102225] vfs_write+0x7c0/0xb10 [ 716.102630] ksys_write+0x12d/0x260 [ 716.103052] ? __ia32_sys_read+0xb0/0xb0 [ 716.103518] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 716.104131] ? syscall_enter_from_user_mode+0x1d/0x50 [ 716.104732] do_syscall_64+0x33/0x40 [ 716.105162] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 716.105750] RIP: 0033:0x7f166329f5ff [ 716.106174] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 716.108257] RSP: 002b:00007f1660862150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 716.109133] RAX: ffffffffffffffda RBX: 00007f16633fff60 RCX: 00007f166329f5ff [ 716.109939] RDX: 000000000000004a RSI: 0000000020000080 RDI: 00000000000000f0 [ 716.110744] RBP: 00007f16608621d0 R08: 0000000000000000 R09: 0000000000000000 [ 716.111550] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 716.112372] R13: 00007ffe6de1daef R14: 00007f1660862300 R15: 0000000000022000 08:14:03 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) r1 = open$dir(0x0, 0x280, 0x48) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:14:03 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 8) 08:14:03 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8", 0x2d, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:14:03 executing program 5: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x10000000) syz_io_uring_submit(0x0, r1, &(0x7f0000000240)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x80000) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000280), 0x1}, 0x0, 0x0, 0x0, 0x9, 0x0, 0xfffffffd}, 0x0, 0xe, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=ANY=[@ANYBLOB="2400000010000100000000000000009600000900050000000000004af94a1130b1088744a5f03f289f6d50000500008048000000bd81b87afc1f961b0415911126f6a3d1aab19c6a9e208d1c28da156afb4ddd1c034b19e9834dac56f129ae740f48534d34c69c7c8f7a384336ebb2944c29225ff12f8b046906f15c85d62e0a33ee4ab5fa8cdafd5b4230f8a3080ce94c020921c94d3d80cf8e3b0005243578f5cb037d73d389cfca1f80e0d2f968feac4f065ffe3cb0ac3a25ca5c1ff5a7d310a614982b1fd43abc07e6b5975ba7d712426b37c55d1e490df0153a78786913ed7637b1d840bfde0eb48cf32317ed280b1ddb49ee61eafedbaaa0a8d2cbc5bdccb0afa62f64ea4ff187fa6628397f9895a1f34aa8dd36d70ce1b5f09bc0043a0bd1f8bdfb33e073ebbcea086bc8e8da27d76939786776a523785c8d9f855bdebf1edf10e03337ab01cd5cf01d1029cd73f7ed80e25303ae4adcc92c321404362f09f0ddfd8ac96f4ac935755951deec47901c6b80f5bab557ac39685591b30c5b10"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0xa000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x9, 0x0, 0x7, 0x7, 0x0, 0x7, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000340)={0x1, &(0x7f0000000300)=[{0x9, 0x81, 0x0, 0x1ff}]}) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_WRITE={0x17, 0x0, 0x2004, @fd, 0x9, &(0x7f0000000600)="7f8400a812aee90cf50c8c277812881d651e587209ae1fee19a9976463a9e995606a98b4357b6c3ca20e16b28de78ed1adb388d55a295b47a8362f027d40176422995a5497334c5f03b59dc0f51a71bc910fd29e50ef0494981f6caa3647705be57f5701f273a13cfda05dc0de77a69c9b5d7a36487ccfcd4397560856e522d3ee6564fb16dde186638385d1da71d554534c8a1f25e8899add320c940b5941938ede80", 0xa3, 0x15}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r4 = creat(&(0x7f0000000040)='./file1\x00', 0x0) fallocate(r4, 0x0, 0x0, 0x8800000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20010, r4, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r3) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000000880)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00'}) openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) 08:14:03 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) (fail_nth: 2) [ 716.119135] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 08:14:03 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, 0x0, 0x10044001) 08:14:03 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 16) [ 716.131276] FAULT_INJECTION: forcing a failure. [ 716.131276] name failslab, interval 1, probability 0, space 0, times 0 [ 716.132569] CPU: 0 PID: 6806 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 716.133352] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 716.134296] Call Trace: [ 716.134602] dump_stack+0x107/0x167 [ 716.135016] should_fail.cold+0x5/0xa [ 716.135104] FAULT_INJECTION: forcing a failure. [ 716.135104] name failslab, interval 1, probability 0, space 0, times 0 [ 716.135445] ? create_object.isra.0+0x3a/0xa30 [ 716.135465] should_failslab+0x5/0x20 [ 716.138902] kmem_cache_alloc+0x5b/0x310 [ 716.139365] create_object.isra.0+0x3a/0xa30 [ 716.139868] kmemleak_alloc_percpu+0xa0/0x100 [ 716.140398] pcpu_alloc+0x4e2/0x1240 [ 716.140824] ? io_tctx_exit_cb+0xf0/0xf0 [ 716.141282] percpu_ref_init+0x31/0x3d0 [ 716.141740] io_uring_setup+0x47a/0x2980 [ 716.142199] ? __mutex_unlock_slowpath+0xe1/0x600 [ 716.142748] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 716.143320] ? wait_for_completion_io+0x270/0x270 [ 716.143877] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 716.144476] ? syscall_enter_from_user_mode+0x1d/0x50 [ 716.145062] do_syscall_64+0x33/0x40 [ 716.145481] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 716.146062] RIP: 0033:0x7ffa83495b19 [ 716.146479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 716.148576] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 716.149432] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 716.150240] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 716.151041] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 716.151850] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 716.152658] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 716.153489] CPU: 1 PID: 6811 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 716.155089] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 716.156972] Call Trace: [ 716.157578] dump_stack+0x107/0x167 [ 716.158399] should_fail.cold+0x5/0xa [ 716.159262] ? copy_process+0x3305/0x78b0 [ 716.160199] should_failslab+0x5/0x20 [ 716.161083] kmem_cache_alloc_node+0x55/0x330 [ 716.162098] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 716.163278] copy_process+0x3305/0x78b0 [ 716.164178] ? stack_trace_save+0x8c/0xc0 [ 716.165131] ? lock_acquire+0x197/0x470 [ 716.166032] ? io_sq_thread_park+0x79/0xd0 [ 716.166987] ? lock_release+0x680/0x680 [ 716.167892] ? __cleanup_sighand+0xb0/0xb0 [ 716.168857] ? kernel_text_address+0xf2/0x120 [ 716.169871] ? find_held_lock+0x2c/0x110 08:14:03 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty=0x3c000000}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:14:03 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) (fail_nth: 3) [ 716.170793] ? io_uring_setup+0x1c23/0x2980 [ 716.171908] ? lock_downgrade+0x6d0/0x6d0 [ 716.172857] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 716.173971] create_io_thread+0xb6/0xf0 [ 716.174869] ? pidfd_prepare+0x80/0x80 [ 716.175754] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 716.176887] io_uring_setup+0x1d79/0x2980 [ 716.177838] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 716.179006] ? wait_for_completion_io+0x270/0x270 [ 716.179025] FAULT_INJECTION: forcing a failure. [ 716.179025] name failslab, interval 1, probability 0, space 0, times 0 [ 716.180112] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 716.180137] ? syscall_enter_from_user_mode+0x1d/0x50 [ 716.183702] do_syscall_64+0x33/0x40 [ 716.184571] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 716.185721] RIP: 0033:0x7f466af67b19 [ 716.186562] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 716.190700] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 716.192421] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 716.194034] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 716.195633] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 716.197245] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 716.198852] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 716.200488] CPU: 0 PID: 6815 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 716.201267] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 716.202197] Call Trace: [ 716.202494] dump_stack+0x107/0x167 [ 716.202913] should_fail.cold+0x5/0xa [ 716.203344] ? __build_skb+0x21/0x60 [ 716.203760] should_failslab+0x5/0x20 [ 716.204200] kmem_cache_alloc+0x5b/0x310 [ 716.204375] loop0: detected capacity change from 0 to 2048 [ 716.204670] __build_skb+0x21/0x60 [ 716.206334] build_skb+0x1a/0x220 [ 716.206725] __tun_build_skb+0x2c/0x260 [ 716.207175] tun_build_skb+0x67a/0xfc0 [ 716.207615] ? tun_xdp_act+0x6f0/0x6f0 [ 716.208053] ? __lock_acquire+0xbb1/0x5b00 [ 716.208546] tun_get_user+0x6c1/0x3310 [ 716.208991] ? tun_build_skb+0xfc0/0xfc0 [ 716.209459] ? virtio_net_hdr_to_skb.constprop.0+0xc30/0x1150 [ 716.210114] ? lock_downgrade+0x6d0/0x6d0 [ 716.210580] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 716.211172] tun_chr_write_iter+0xe1/0x1e0 [ 716.211644] new_sync_write+0x42c/0x660 [ 716.212096] ? new_sync_read+0x6f0/0x6f0 [ 716.212564] ? avc_policy_seqno+0x9/0x70 [ 716.213020] ? selinux_file_permission+0x92/0x520 [ 716.213557] ? security_file_permission+0xb1/0xe0 [ 716.214098] vfs_write+0x7c0/0xb10 [ 716.214502] ksys_write+0x12d/0x260 [ 716.214908] ? __ia32_sys_read+0xb0/0xb0 [ 716.215369] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 716.215955] ? syscall_enter_from_user_mode+0x1d/0x50 [ 716.216565] do_syscall_64+0x33/0x40 [ 716.216982] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 716.217627] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 716.218203] RIP: 0033:0x7f166329f5ff [ 716.218621] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 716.220693] RSP: 002b:00007f1660862150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 716.221552] RAX: ffffffffffffffda RBX: 00007f16633fff60 RCX: 00007f166329f5ff [ 716.222354] RDX: 000000000000004a RSI: 0000000020000080 RDI: 00000000000000f0 [ 716.223157] RBP: 00007f16608621d0 R08: 0000000000000000 R09: 0000000000000000 [ 716.223958] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 716.224769] R13: 00007ffe6de1daef R14: 00007f1660862300 R15: 0000000000022000 08:14:03 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 17) [ 716.252630] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 716.254417] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 716.256202] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 08:14:03 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty=0xfeffffff}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:14:03 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, 0x0, 0x10044001) [ 716.280104] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 08:14:03 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty=0xfffffffe}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 716.320872] FAULT_INJECTION: forcing a failure. [ 716.320872] name failslab, interval 1, probability 0, space 0, times 0 [ 716.322163] CPU: 0 PID: 6820 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 716.322935] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 716.323867] Call Trace: [ 716.324177] dump_stack+0x107/0x167 [ 716.324594] should_fail.cold+0x5/0xa [ 716.325034] ? create_object.isra.0+0x3a/0xa30 [ 716.325546] should_failslab+0x5/0x20 [ 716.325977] kmem_cache_alloc+0x5b/0x310 [ 716.326433] create_object.isra.0+0x3a/0xa30 [ 716.326926] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 716.327508] kmem_cache_alloc_node+0x169/0x330 [ 716.328025] copy_process+0x3305/0x78b0 [ 716.328489] ? stack_trace_save+0x8c/0xc0 [ 716.328963] ? lock_acquire+0x197/0x470 [ 716.329409] ? io_sq_thread_park+0x79/0xd0 [ 716.329884] ? lock_release+0x680/0x680 [ 716.330343] ? __cleanup_sighand+0xb0/0xb0 [ 716.330816] ? kernel_text_address+0xf2/0x120 [ 716.331323] ? find_held_lock+0x2c/0x110 [ 716.331779] ? io_uring_setup+0x1c23/0x2980 [ 716.332266] ? lock_downgrade+0x6d0/0x6d0 [ 716.332738] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 716.333291] create_io_thread+0xb6/0xf0 [ 716.333736] ? pidfd_prepare+0x80/0x80 [ 716.334178] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 716.334741] io_uring_setup+0x1d79/0x2980 [ 716.335211] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 716.335787] ? wait_for_completion_io+0x270/0x270 [ 716.336349] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 716.336936] ? syscall_enter_from_user_mode+0x1d/0x50 [ 716.337518] do_syscall_64+0x33/0x40 [ 716.337935] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 716.338514] RIP: 0033:0x7f466af67b19 [ 716.338937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 716.341021] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 716.341888] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 716.342702] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 716.343510] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 716.344320] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 716.345123] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:14:03 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8", 0x2d, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:14:03 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 9) [ 716.377076] FAULT_INJECTION: forcing a failure. [ 716.377076] name failslab, interval 1, probability 0, space 0, times 0 [ 716.379701] CPU: 1 PID: 6835 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 716.381289] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 716.383201] Call Trace: [ 716.383814] dump_stack+0x107/0x167 [ 716.384665] should_fail.cold+0x5/0xa [ 716.385548] ? create_object.isra.0+0x3a/0xa30 [ 716.386599] should_failslab+0x5/0x20 [ 716.387478] kmem_cache_alloc+0x5b/0x310 [ 716.388424] create_object.isra.0+0x3a/0xa30 [ 716.389443] kmemleak_alloc_percpu+0xa0/0x100 [ 716.390455] pcpu_alloc+0x4e2/0x1240 [ 716.391312] ? io_tctx_exit_cb+0xf0/0xf0 [ 716.392236] percpu_ref_init+0x31/0x3d0 [ 716.393145] io_uring_setup+0x47a/0x2980 [ 716.394081] ? __mutex_unlock_slowpath+0xe1/0x600 [ 716.395194] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 716.396372] ? wait_for_completion_io+0x270/0x270 [ 716.397491] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 716.398694] ? syscall_enter_from_user_mode+0x1d/0x50 [ 716.399861] do_syscall_64+0x33/0x40 [ 716.400710] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 716.401893] RIP: 0033:0x7ffa83495b19 [ 716.402734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 716.406904] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 716.408667] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 716.410315] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 716.411961] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 716.413685] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 716.415348] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 716.426135] loop0: detected capacity change from 0 to 2048 [ 716.442998] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:14:20 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8", 0x2d, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:14:20 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty=0xffffffff}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:14:20 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) r1 = open$dir(0x0, 0x0, 0x48) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:14:20 executing program 5: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a04}], 0x0, &(0x7f0000000240)=ANY=[]) openat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x0, 0x20) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_mtu(r2, 0x0, 0xa, 0x0, &(0x7f0000000040)) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r1, &(0x7f0000000480)=ANY=[@ANYRES64, @ANYRESOCT, @ANYRESDEC, @ANYBLOB="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", @ANYRESOCT, @ANYRESDEC=0x0, @ANYRESOCT, @ANYRES16, @ANYRES16, @ANYRES16], 0x10) r4 = creat(&(0x7f00000001c0)='./file1\x00', 0x62) pipe2(&(0x7f0000000240), 0x4000) openat$vcs(0xffffffffffffff9c, &(0x7f0000000300), 0x501440, 0x0) renameat2(r0, &(0x7f00000003c0)='./file1\x00', 0xffffffffffffffff, &(0x7f0000000440)='./file0\x00', 0x9) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) fsmount(r3, 0x1, 0x1) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000280)={0x101, 0x5}) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) write$binfmt_elf64(r4, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef) ioctl$sock_inet_SIOCGARP(0xffffffffffffffff, 0x8954, &(0x7f0000000340)={{0x2, 0x4e21, @local}, {0x0, @random="9c51672d3186"}, 0x30, {0x2, 0x4e23, @remote}, 'veth0_macvtap\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r1, r3, 0x0, 0x100000001) 08:14:20 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) (fail_nth: 4) 08:14:20 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 10) 08:14:20 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, 0x0, 0x10044001) 08:14:20 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 18) [ 733.574443] FAULT_INJECTION: forcing a failure. [ 733.574443] name failslab, interval 1, probability 0, space 0, times 0 [ 733.577409] CPU: 1 PID: 6844 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 733.579161] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 733.581291] Call Trace: [ 733.581971] dump_stack+0x107/0x167 [ 733.582906] should_fail.cold+0x5/0xa [ 733.583880] ? percpu_ref_init+0xd8/0x3d0 [ 733.584970] should_failslab+0x5/0x20 [ 733.585946] kmem_cache_alloc_trace+0x55/0x320 [ 733.587115] ? io_tctx_exit_cb+0xf0/0xf0 [ 733.588153] percpu_ref_init+0xd8/0x3d0 [ 733.589212] io_uring_setup+0x47a/0x2980 [ 733.590248] ? __mutex_unlock_slowpath+0xe1/0x600 [ 733.591508] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 733.592814] ? wait_for_completion_io+0x270/0x270 [ 733.594074] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 733.595415] ? syscall_enter_from_user_mode+0x1d/0x50 [ 733.596734] do_syscall_64+0x33/0x40 [ 733.597688] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 733.598986] RIP: 0033:0x7ffa83495b19 [ 733.599926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 733.604607] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 733.606542] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 733.608349] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 733.610160] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 733.610689] FAULT_INJECTION: forcing a failure. [ 733.610689] name failslab, interval 1, probability 0, space 0, times 0 [ 733.611958] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 733.611972] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 733.618232] CPU: 0 PID: 6852 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 733.619667] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 733.621416] Call Trace: [ 733.621981] dump_stack+0x107/0x167 [ 733.622747] should_fail.cold+0x5/0xa [ 733.623557] ? create_object.isra.0+0x3a/0xa30 [ 733.624516] should_failslab+0x5/0x20 [ 733.625324] kmem_cache_alloc+0x5b/0x310 [ 733.626179] create_object.isra.0+0x3a/0xa30 [ 733.627098] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 733.628181] kmem_cache_alloc+0x159/0x310 [ 733.629067] __build_skb+0x21/0x60 [ 733.629815] build_skb+0x1a/0x220 [ 733.630530] __tun_build_skb+0x2c/0x260 [ 733.631365] tun_build_skb+0x67a/0xfc0 [ 733.632186] ? tun_xdp_act+0x6f0/0x6f0 [ 733.633016] ? __lock_acquire+0xbb1/0x5b00 [ 733.633920] tun_get_user+0x6c1/0x3310 [ 733.634753] ? tun_build_skb+0xfc0/0xfc0 [ 733.635617] ? virtio_net_hdr_to_skb.constprop.0+0xc30/0x1150 [ 733.636851] ? lock_downgrade+0x6d0/0x6d0 [ 733.637747] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 733.638861] tun_chr_write_iter+0xe1/0x1e0 [ 733.639757] new_sync_write+0x42c/0x660 [ 733.640593] ? new_sync_read+0x6f0/0x6f0 [ 733.641485] ? avc_policy_seqno+0x9/0x70 [ 733.642333] ? selinux_file_permission+0x92/0x520 [ 733.643345] ? security_file_permission+0xb1/0xe0 [ 733.644275] loop0: detected capacity change from 0 to 2048 [ 733.644370] vfs_write+0x7c0/0xb10 [ 733.646427] ksys_write+0x12d/0x260 [ 733.647198] ? __ia32_sys_read+0xb0/0xb0 [ 733.648057] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 733.649168] ? syscall_enter_from_user_mode+0x1d/0x50 [ 733.650265] do_syscall_64+0x33/0x40 [ 733.651050] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 733.652137] RIP: 0033:0x7f166329f5ff [ 733.652944] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48 [ 733.656781] RSP: 002b:00007f1660862150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 733.658387] RAX: ffffffffffffffda RBX: 00007f16633fff60 RCX: 00007f166329f5ff [ 733.659888] RDX: 000000000000004a RSI: 0000000020000080 RDI: 00000000000000f0 [ 733.661394] RBP: 00007f16608621d0 R08: 0000000000000000 R09: 0000000000000000 [ 733.662190] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 733.662898] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 733.662920] R13: 00007ffe6de1daef R14: 00007f1660862300 R15: 0000000000022000 [ 733.679429] FAULT_INJECTION: forcing a failure. [ 733.679429] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 733.681955] CPU: 0 PID: 6859 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 733.683416] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 733.685180] Call Trace: [ 733.685729] dump_stack+0x107/0x167 [ 733.686496] should_fail.cold+0x5/0xa [ 733.687296] __alloc_pages_nodemask+0x182/0x600 [ 733.688274] ? lock_downgrade+0x6d0/0x6d0 [ 733.689161] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 733.690436] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 733.691533] ? kmem_cache_alloc_node+0x2bc/0x330 [ 733.692535] copy_process+0x62b/0x78b0 [ 733.693357] ? stack_trace_save+0x8c/0xc0 [ 733.694229] ? lock_acquire+0x197/0x470 [ 733.695045] ? io_sq_thread_park+0x79/0xd0 [ 733.695919] ? lock_release+0x680/0x680 [ 733.696766] ? __cleanup_sighand+0xb0/0xb0 [ 733.697661] ? kernel_text_address+0xf2/0x120 [ 733.698599] ? find_held_lock+0x2c/0x110 [ 733.699460] ? io_uring_setup+0x1c23/0x2980 [ 733.700366] ? lock_downgrade+0x6d0/0x6d0 [ 733.701247] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 733.702258] create_io_thread+0xb6/0xf0 [ 733.703096] ? pidfd_prepare+0x80/0x80 [ 733.703914] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 733.704943] io_uring_setup+0x1d79/0x2980 [ 733.705825] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 733.706896] ? wait_for_completion_io+0x270/0x270 [ 733.707922] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 733.709022] ? syscall_enter_from_user_mode+0x1d/0x50 [ 733.710098] do_syscall_64+0x33/0x40 [ 733.710871] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 733.711933] RIP: 0033:0x7f466af67b19 [ 733.712714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 733.716564] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 733.718163] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 733.719646] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb 08:14:21 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x10044001) [ 733.721166] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 733.722820] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 733.724313] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:14:21 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 11) 08:14:21 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f", 0x44, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:14:21 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:14:21 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) (fail_nth: 5) [ 733.859711] FAULT_INJECTION: forcing a failure. [ 733.859711] name failslab, interval 1, probability 0, space 0, times 0 [ 733.862663] CPU: 1 PID: 6865 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 733.864513] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 733.866413] Call Trace: [ 733.867019] dump_stack+0x107/0x167 [ 733.868013] should_fail.cold+0x5/0xa [ 733.868899] ? create_object.isra.0+0x3a/0xa30 [ 733.869942] should_failslab+0x5/0x20 [ 733.870842] kmem_cache_alloc+0x5b/0x310 [ 733.871992] create_object.isra.0+0x3a/0xa30 [ 733.873193] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 733.874455] kmem_cache_alloc_trace+0x151/0x320 [ 733.875690] ? io_tctx_exit_cb+0xf0/0xf0 [ 733.876859] percpu_ref_init+0xd8/0x3d0 [ 733.877953] io_uring_setup+0x47a/0x2980 [ 733.878874] ? __mutex_unlock_slowpath+0xe1/0x600 [ 733.879973] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 733.881289] ? wait_for_completion_io+0x270/0x270 [ 733.882549] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 733.884038] ? syscall_enter_from_user_mode+0x1d/0x50 [ 733.885233] do_syscall_64+0x33/0x40 [ 733.886093] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 733.887465] RIP: 0033:0x7ffa83495b19 [ 733.888421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 733.893063] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 733.895143] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 733.897085] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 733.898808] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 733.900681] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 733.902474] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:14:21 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x10044001) 08:14:21 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 19) [ 733.954716] loop0: detected capacity change from 0 to 2048 [ 733.959069] FAULT_INJECTION: forcing a failure. [ 733.959069] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 733.961822] CPU: 1 PID: 6872 Comm: syz-executor.4 Not tainted 5.10.246 #1 [ 733.963400] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 733.965318] Call Trace: [ 733.965938] dump_stack+0x107/0x167 [ 733.966796] should_fail.cold+0x5/0xa [ 733.967689] _copy_to_user+0x2e/0x180 [ 733.968566] simple_read_from_buffer+0xcc/0x160 [ 733.969672] proc_fail_nth_read+0x198/0x230 [ 733.970672] ? proc_sessionid_read+0x230/0x230 [ 733.971720] ? security_file_permission+0xb1/0xe0 [ 733.972839] ? proc_sessionid_read+0x230/0x230 [ 733.973893] vfs_read+0x228/0x620 [ 733.974721] ksys_read+0x12d/0x260 [ 733.975532] ? vfs_write+0xb10/0xb10 [ 733.976390] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 733.977624] ? syscall_enter_from_user_mode+0x1d/0x50 [ 733.978833] do_syscall_64+0x33/0x40 [ 733.979895] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 733.981084] RIP: 0033:0x7f166329f69c [ 733.981940] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 733.986345] RSP: 002b:00007f1660862170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 733.988436] RAX: ffffffffffffffda RBX: 000000000000004a RCX: 00007f166329f69c [ 733.990224] RDX: 000000000000000f RSI: 00007f16608621e0 RDI: 0000000000000003 [ 733.991871] RBP: 00007f16608621d0 R08: 0000000000000000 R09: 0000000000000000 [ 733.993507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 733.995151] R13: 00007ffe6de1daef R14: 00007f1660862300 R15: 0000000000022000 08:14:21 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 12) 08:14:21 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 734.021238] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5 [ 734.021238] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 734.021238] [ 734.025444] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 734.025444] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 734.025444] 08:14:21 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty, 0x3}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 734.089441] FAULT_INJECTION: forcing a failure. [ 734.089441] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 734.092563] CPU: 1 PID: 6877 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 734.094190] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 734.096151] Call Trace: [ 734.096798] dump_stack+0x107/0x167 [ 734.097656] should_fail.cold+0x5/0xa [ 734.098742] __alloc_pages_nodemask+0x182/0x600 [ 734.100162] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 734.101602] ? cap_capable+0x1cd/0x230 [ 734.102514] alloc_pages_current+0x187/0x280 [ 734.103719] __get_free_pages+0xc/0xa0 [ 734.104651] io_uring_setup+0xe27/0x2980 [ 734.105603] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 734.106790] ? wait_for_completion_io+0x270/0x270 [ 734.107940] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 734.109185] ? syscall_enter_from_user_mode+0x1d/0x50 [ 734.110478] do_syscall_64+0x33/0x40 [ 734.111509] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 734.112992] RIP: 0033:0x7ffa83495b19 [ 734.113950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 734.118238] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 734.120032] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 734.121852] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 734.123629] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 734.125592] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 734.127427] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 734.130859] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) [ 734.137452] FAULT_INJECTION: forcing a failure. [ 734.137452] name failslab, interval 1, probability 0, space 0, times 0 [ 734.140075] CPU: 1 PID: 6880 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 734.141683] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 734.143624] Call Trace: [ 734.144242] dump_stack+0x107/0x167 [ 734.145116] should_fail.cold+0x5/0xa [ 734.146017] ? __delayacct_tsk_init+0x1b/0x80 [ 734.147077] should_failslab+0x5/0x20 [ 734.147967] kmem_cache_alloc+0x5b/0x310 [ 734.148966] __delayacct_tsk_init+0x1b/0x80 [ 734.149968] copy_process+0x3399/0x78b0 [ 734.150924] ? stack_trace_save+0x8c/0xc0 [ 734.151899] ? lock_acquire+0x197/0x470 [ 734.152864] ? io_sq_thread_park+0x79/0xd0 [ 734.153868] ? __cleanup_sighand+0xb0/0xb0 [ 734.154871] ? kernel_text_address+0xf2/0x120 [ 734.155916] ? find_held_lock+0x2c/0x110 [ 734.156910] ? io_uring_setup+0x1c23/0x2980 [ 734.157913] ? lock_downgrade+0x6d0/0x6d0 [ 734.158888] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 734.160024] create_io_thread+0xb6/0xf0 [ 734.161046] ? pidfd_prepare+0x80/0x80 [ 734.162178] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 734.163615] io_uring_setup+0x1d79/0x2980 [ 734.164625] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 734.165829] ? wait_for_completion_io+0x270/0x270 [ 734.166984] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 734.168210] ? syscall_enter_from_user_mode+0x1d/0x50 [ 734.169455] do_syscall_64+0x33/0x40 [ 734.170319] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 734.171511] RIP: 0033:0x7f466af67b19 [ 734.172385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 734.176683] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 734.178435] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 734.180110] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 734.181790] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 734.183450] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 734.185118] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:14:36 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 20) 08:14:36 executing program 4: syz_emit_ethernet(0xd, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:14:36 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x10044001) 08:14:36 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty, 0x8}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:14:36 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 13) 08:14:36 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4", 0x2e, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:14:36 executing program 5: syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0) syz_80211_inject_frame(&(0x7f00000000c0), &(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x2de) 08:14:36 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) r1 = open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) [ 748.792142] loop0: detected capacity change from 0 to 2048 [ 748.804872] FAULT_INJECTION: forcing a failure. [ 748.804872] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 748.807492] CPU: 0 PID: 6908 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 748.808995] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 748.810804] Call Trace: [ 748.811382] dump_stack+0x107/0x167 [ 748.812181] should_fail.cold+0x5/0xa [ 748.813023] __alloc_pages_nodemask+0x182/0x600 [ 748.814042] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 748.815348] ? cap_capable+0x1cd/0x230 [ 748.816197] alloc_pages_current+0x187/0x280 [ 748.817160] __get_free_pages+0xc/0xa0 [ 748.818010] io_uring_setup+0xf9a/0x2980 [ 748.818607] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 748.818895] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 748.821264] ? wait_for_completion_io+0x270/0x270 [ 748.822325] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 748.823454] ? syscall_enter_from_user_mode+0x1d/0x50 [ 748.824570] do_syscall_64+0x33/0x40 [ 748.825384] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 748.826490] RIP: 0033:0x7ffa83495b19 [ 748.827289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 748.831273] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 748.832923] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 748.834464] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 748.836007] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 748.837548] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 748.839082] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:14:36 executing program 4: syz_emit_ethernet(0x8a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 748.867871] FAULT_INJECTION: forcing a failure. [ 748.867871] name failslab, interval 1, probability 0, space 0, times 0 [ 748.870384] CPU: 0 PID: 6911 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 748.871868] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 748.873662] Call Trace: [ 748.874236] dump_stack+0x107/0x167 [ 748.875022] should_fail.cold+0x5/0xa [ 748.875843] ? create_object.isra.0+0x3a/0xa30 [ 748.876828] should_failslab+0x5/0x20 [ 748.877651] kmem_cache_alloc+0x5b/0x310 [ 748.878536] create_object.isra.0+0x3a/0xa30 [ 748.879479] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 748.880576] kmem_cache_alloc+0x159/0x310 [ 748.881484] __delayacct_tsk_init+0x1b/0x80 [ 748.882413] copy_process+0x3399/0x78b0 [ 748.883281] ? stack_trace_save+0x8c/0xc0 [ 748.884180] ? lock_acquire+0x197/0x470 [ 748.885045] ? io_sq_thread_park+0x79/0xd0 [ 748.885964] ? __cleanup_sighand+0xb0/0xb0 [ 748.886877] ? kernel_text_address+0xf2/0x120 [ 748.886906] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 748.887845] ? find_held_lock+0x2c/0x110 [ 748.887870] ? io_uring_setup+0x1c23/0x2980 [ 748.887898] ? lock_downgrade+0x6d0/0x6d0 [ 748.892489] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 748.893556] create_io_thread+0xb6/0xf0 [ 748.894411] ? pidfd_prepare+0x80/0x80 [ 748.895261] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 748.896330] io_uring_setup+0x1d79/0x2980 [ 748.897240] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 748.898330] ? wait_for_completion_io+0x270/0x270 [ 748.899390] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 748.900527] ? syscall_enter_from_user_mode+0x1d/0x50 [ 748.901664] do_syscall_64+0x33/0x40 [ 748.902466] entry_SYSCALL_64_after_hwframe+0x67/0xd1 08:14:36 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)}, 0x10044001) [ 748.903568] RIP: 0033:0x7f466af67b19 [ 748.904505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 748.908499] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 748.910145] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 748.911687] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 748.913228] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 748.914780] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 748.916317] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:14:36 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 14) 08:14:36 executing program 4: syz_emit_ethernet(0xfdef, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:14:36 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty, 0x3c}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:14:36 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4", 0x2e, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) [ 749.016752] FAULT_INJECTION: forcing a failure. [ 749.016752] name failslab, interval 1, probability 0, space 0, times 0 [ 749.019351] CPU: 0 PID: 6918 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 749.020842] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 749.022642] Call Trace: [ 749.023217] dump_stack+0x107/0x167 [ 749.024006] should_fail.cold+0x5/0xa [ 749.024846] ? io_uring_setup+0x17ed/0x2980 [ 749.025783] should_failslab+0x5/0x20 [ 749.026605] kmem_cache_alloc_trace+0x55/0x320 [ 749.027587] ? alloc_pages_current+0x18f/0x280 [ 749.028577] io_uring_setup+0x17ed/0x2980 [ 749.029484] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 749.030574] ? wait_for_completion_io+0x270/0x270 [ 749.031634] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 749.032762] ? syscall_enter_from_user_mode+0x1d/0x50 [ 749.033882] do_syscall_64+0x33/0x40 [ 749.034682] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 749.035783] RIP: 0033:0x7ffa83495b19 [ 749.036583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 749.038481] loop0: detected capacity change from 0 to 2048 [ 749.040552] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 749.040573] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 749.040585] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 749.040596] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 749.040617] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 749.049688] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:14:36 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)}, 0x10044001) [ 749.061023] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:14:50 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:14:50 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty, 0x300}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 762.823764] FAULT_INJECTION: forcing a failure. [ 762.823764] name failslab, interval 1, probability 0, space 0, times 0 [ 762.825150] CPU: 0 PID: 6939 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 762.825921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 762.826857] Call Trace: [ 762.827168] dump_stack+0x107/0x167 [ 762.827601] should_fail.cold+0x5/0xa [ 762.828035] ? alloc_pid+0xd7/0xd30 [ 762.828466] should_failslab+0x5/0x20 [ 762.828903] kmem_cache_alloc+0x5b/0x310 08:14:50 executing program 5: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000200)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r1 = dup(r0) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r4 = epoll_create(0x6) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_WRITEV={0x2, 0x2, 0x2000, @fd=r4, 0x3, &(0x7f0000000180)=[{&(0x7f0000000080)="6eb73e6a5fea08e8507cf02de537c1bf161ac3e41c0cdc68cd15a58b160f5b9691196fcdc35563c27e483c0df37eb120d4f49fbc6eb9895bad5f685c0bf507a62e28bec3a8d157e1590a6e6b92382bd2ee86d760a2f68f3d594977182caf8e11dac5fb9be2ddff08a966af493a", 0x6d}, {&(0x7f0000000280)="216e715ff86704dc528aac243aaf69099a2cdffa141e01325fefb6d9e70c5b614b96ffd7dea0b224c203935c293e4821c7abf5a25db5bc9a62cdeb96930b0075fdc91b04e73bcc84cc0b78cd0465ff901ba8e2740caf4c9046b59ed9c90c101fcd49a75140b74b11066fe8c6ec50c97a0963191d5aeb0febbb76fdaf569a86e98b36b98912ddb77f2a", 0x89}, {&(0x7f0000000100)="c5a1a0f46c9f6b43f412f84b6171c5bddc1c1a19873f73fa008dbaaac12b356460e5", 0x22}], 0x3, 0xd, 0x0, {0x2}}, 0x8000) r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r5, 0x0, 0x0}, 0x0) read(r5, &(0x7f0000000000)=""/23, 0x17) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, 0x0) 08:14:50 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 21) [ 762.829398] alloc_pid+0xd7/0xd30 [ 762.829904] ? copy_namespaces+0x1ca/0x4f0 [ 762.830400] copy_process+0x3b8b/0x78b0 [ 762.830872] ? stack_trace_save+0x8c/0xc0 [ 762.831363] ? __cleanup_sighand+0xb0/0xb0 [ 762.831857] ? kernel_text_address+0xf2/0x120 [ 762.832383] ? find_held_lock+0x2c/0x110 [ 762.832853] ? io_uring_setup+0x1c23/0x2980 [ 762.833361] ? lock_downgrade+0x6d0/0x6d0 [ 762.833843] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 762.834395] create_io_thread+0xb6/0xf0 [ 762.834844] ? pidfd_prepare+0x80/0x80 [ 762.835290] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 762.835861] io_uring_setup+0x1d79/0x2980 [ 762.836338] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 762.836938] ? wait_for_completion_io+0x270/0x270 [ 762.837514] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 762.838134] ? syscall_enter_from_user_mode+0x1d/0x50 [ 762.838734] do_syscall_64+0x33/0x40 [ 762.839156] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 762.839754] RIP: 0033:0x7f466af67b19 [ 762.840182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 762.842342] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 762.843245] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 762.844089] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 762.844933] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 762.845773] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 762.846617] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:14:50 executing program 4: syz_emit_ethernet(0x200000ca, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:14:50 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4", 0x2e, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:14:50 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 15) 08:14:50 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)}, 0x10044001) [ 762.856561] FAULT_INJECTION: forcing a failure. [ 762.856561] name failslab, interval 1, probability 0, space 0, times 0 [ 762.857898] CPU: 0 PID: 6943 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 762.858686] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 762.859619] Call Trace: [ 762.859931] dump_stack+0x107/0x167 [ 762.860347] should_fail.cold+0x5/0xa [ 762.860793] ? io_uring_setup+0x17ed/0x2980 [ 762.861311] should_failslab+0x5/0x20 [ 762.861766] kmem_cache_alloc_trace+0x55/0x320 [ 762.862306] ? alloc_pages_current+0x18f/0x280 [ 762.862847] io_uring_setup+0x17ed/0x2980 [ 762.863166] loop0: detected capacity change from 0 to 2048 [ 762.863338] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 762.864751] ? wait_for_completion_io+0x270/0x270 [ 762.865321] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 762.865925] ? syscall_enter_from_user_mode+0x1d/0x50 [ 762.866508] do_syscall_64+0x33/0x40 [ 762.866926] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 762.867032] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 762.867510] RIP: 0033:0x7ffa83495b19 [ 762.867526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 762.870880] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 762.871758] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 762.872570] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 762.873403] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 762.874226] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 762.875036] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:14:50 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty, 0x3c00}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:14:50 executing program 4: syz_emit_ethernet(0xfffffdef, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:14:50 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{0x0}], 0x1}, 0x10044001) 08:14:50 executing program 4: syz_emit_ethernet(0xfffffffffffffdef, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:14:50 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 22) 08:14:50 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53", 0x39, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:14:50 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty, 0x1000000}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 763.005182] FAULT_INJECTION: forcing a failure. [ 763.005182] name failslab, interval 1, probability 0, space 0, times 0 [ 763.006881] CPU: 1 PID: 6965 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 763.007874] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 763.009086] Call Trace: [ 763.009488] dump_stack+0x107/0x167 [ 763.010024] should_fail.cold+0x5/0xa [ 763.010579] ? create_object.isra.0+0x3a/0xa30 [ 763.011239] should_failslab+0x5/0x20 [ 763.011800] kmem_cache_alloc+0x5b/0x310 [ 763.012398] create_object.isra.0+0x3a/0xa30 [ 763.013042] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 763.013796] kmem_cache_alloc+0x159/0x310 [ 763.014409] alloc_pid+0xd7/0xd30 [ 763.014920] ? copy_namespaces+0x1ca/0x4f0 [ 763.015535] copy_process+0x3b8b/0x78b0 [ 763.016122] ? stack_trace_save+0x8c/0xc0 [ 763.016749] ? __cleanup_sighand+0xb0/0xb0 [ 763.017434] ? kernel_text_address+0xf2/0x120 [ 763.018087] ? find_held_lock+0x2c/0x110 [ 763.018683] ? io_uring_setup+0x1c23/0x2980 [ 763.019314] ? lock_downgrade+0x6d0/0x6d0 [ 763.019924] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 763.020647] create_io_thread+0xb6/0xf0 [ 763.021229] ? pidfd_prepare+0x80/0x80 [ 763.021799] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 763.022537] io_uring_setup+0x1d79/0x2980 [ 763.023144] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 763.023887] ? wait_for_completion_io+0x270/0x270 [ 763.024604] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 763.025374] ? syscall_enter_from_user_mode+0x1d/0x50 [ 763.026143] do_syscall_64+0x33/0x40 [ 763.026704] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 763.027446] RIP: 0033:0x7f466af67b19 [ 763.028001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 763.030664] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 763.031778] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 763.032821] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 763.033861] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 763.034904] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 763.035939] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:14:50 executing program 5: r0 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r0, 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r2, 0x1, 0x0) getsockopt$WPAN_WANTLQI(r2, 0x0, 0x3, &(0x7f0000000240), &(0x7f0000000280)=0x4) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="050000000000000000002e"], 0x28}}, 0x0) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="9c000000", @ANYRES16=r3, @ANYBLOB="16052bbd7000fedbdf252b0000000c0099000d0092492abbb790593c940000200ad90f0000000000003f0001000e00000000049112585f86000004004600040046000800a000000000003c00238008001c00ffffffff060004001a000000060016001400000000000000050013000000000006000400bb00000008001c000600000008000c000700000008006b000300000000000000"], 0x9c}}, 0x20040891) r4 = gettid() rt_sigqueueinfo(r4, 0x21, &(0x7f0000000400)={0x0, 0x0, 0x8}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, r4, 0xffffffbfffffffff, 0xffffffffffffffff, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x4) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r6, 0x0, r5, 0x0, 0x10001, 0x0) r7 = openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0) openat(r7, &(0x7f0000000300)='./file1\x00', 0x40200, 0xc4) r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) sendfile(r5, r8, 0x0, 0x20d315) [ 763.045203] loop0: detected capacity change from 0 to 2048 [ 763.047586] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.5'. [ 763.051045] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:15:05 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:05 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53", 0x39, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:15:05 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{0x0}], 0x1}, 0x10044001) 08:15:05 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 23) 08:15:05 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty, 0x3000000}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:05 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:15:05 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000140000000c00018008200000f19f529ff6fd6d909d92f200a250b99ae9226d26af78b81cd486fd16ead8fd20202f6e59cd92008dcab0cd8d61084b0e130587eeb2b371116920f0ed54a16bd4d2ef5059d5a84ad15d356dc74834e0491ed6732ce3854a32a0378a7a1ee462474f59092975461fc977e1ee76c0a7509bfd9236a55b045a032a91e64164bdfae7c6bf474b78148983427980f710390542124caf726bec1e1fb56cf93cb9b3dcb4fa78e165", @ANYRES32=0x0, @ANYBLOB="ed75a2294508d63b79db2471ca9aa65e2b356241bc2253e49d0276bf2bfa2a84f5a353bbbcf2e4f9"], 0x20}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x1010, r0, 0x208e2000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) accept(r2, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, &(0x7f00000000c0)=0x80) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0xffffffff}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000000), 0x0) sendfile(r2, r3, 0x0, 0x100000001) [ 777.786706] FAULT_INJECTION: forcing a failure. [ 777.786706] name failslab, interval 1, probability 0, space 0, times 0 [ 777.788075] CPU: 1 PID: 6984 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 777.788864] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 777.789816] Call Trace: [ 777.790120] dump_stack+0x107/0x167 [ 777.790535] should_fail.cold+0x5/0xa [ 777.790970] ? copy_process+0x3305/0x78b0 [ 777.791437] should_failslab+0x5/0x20 [ 777.791866] kmem_cache_alloc_node+0x55/0x330 [ 777.792386] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 777.792981] copy_process+0x3305/0x78b0 [ 777.793454] ? stack_trace_save+0x8c/0xc0 [ 777.793925] ? lock_acquire+0x197/0x470 [ 777.794383] ? io_sq_thread_park+0x79/0xd0 [ 777.794871] ? lock_release+0x680/0x680 [ 777.795330] ? __cleanup_sighand+0xb0/0xb0 [ 777.795813] ? kernel_text_address+0xf2/0x120 [ 777.796332] ? find_held_lock+0x2c/0x110 [ 777.796796] ? io_uring_setup+0x1c23/0x2980 [ 777.797282] ? lock_downgrade+0x6d0/0x6d0 [ 777.797759] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 777.798327] create_io_thread+0xb6/0xf0 [ 777.798774] ? pidfd_prepare+0x80/0x80 [ 777.799230] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 777.799795] io_uring_setup+0x1d79/0x2980 [ 777.800270] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 777.800854] ? wait_for_completion_io+0x270/0x270 [ 777.801419] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 777.802013] ? syscall_enter_from_user_mode+0x1d/0x50 [ 777.802595] do_syscall_64+0x33/0x40 [ 777.803018] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 777.803610] RIP: 0033:0x7ffa83495b19 [ 777.804033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 777.806121] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 777.807008] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 777.807426] FAULT_INJECTION: forcing a failure. [ 777.807426] name failslab, interval 1, probability 0, space 0, times 0 [ 777.807816] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 777.807829] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 777.810733] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 777.811558] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 777.812378] CPU: 0 PID: 6993 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 777.813157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 777.814151] Call Trace: [ 777.814458] dump_stack+0x107/0x167 [ 777.814878] should_fail.cold+0x5/0xa [ 777.815321] ? io_uring_alloc_task_context+0x99/0x6a0 [ 777.815948] should_failslab+0x5/0x20 08:15:05 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 16) [ 777.816391] kmem_cache_alloc_trace+0x55/0x320 [ 777.817052] io_uring_alloc_task_context+0x99/0x6a0 [ 777.817654] ? io_import_iovec+0x1120/0x1120 [ 777.818159] io_uring_setup+0x1dd1/0x2980 [ 777.818634] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 777.819233] ? wait_for_completion_io+0x270/0x270 [ 777.819789] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 777.820396] ? syscall_enter_from_user_mode+0x1d/0x50 [ 777.820983] do_syscall_64+0x33/0x40 [ 777.821423] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 777.822014] RIP: 0033:0x7f466af67b19 [ 777.822435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 777.824559] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 777.825431] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 777.826253] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 777.827061] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 777.827859] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 777.828669] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 777.830043] loop0: detected capacity change from 0 to 2048 08:15:05 executing program 5: perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x4, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000007}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 777.842234] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:15:05 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty, 0x8000000}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:05 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{0x0}], 0x1}, 0x10044001) 08:15:05 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 17) 08:15:05 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2}, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:05 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53", 0x39, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) [ 777.902035] FAULT_INJECTION: forcing a failure. [ 777.902035] name failslab, interval 1, probability 0, space 0, times 0 [ 777.903415] CPU: 1 PID: 7005 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 777.904157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 777.905128] Call Trace: [ 777.905448] dump_stack+0x107/0x167 [ 777.905871] should_fail.cold+0x5/0xa [ 777.906312] ? create_object.isra.0+0x3a/0xa30 [ 777.906843] should_failslab+0x5/0x20 [ 777.907284] kmem_cache_alloc+0x5b/0x310 [ 777.907757] create_object.isra.0+0x3a/0xa30 [ 777.908269] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 777.908823] kmem_cache_alloc_node+0x169/0x330 [ 777.909363] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 777.909974] copy_process+0x3305/0x78b0 [ 777.910436] ? stack_trace_save+0x8c/0xc0 [ 777.910918] ? lock_acquire+0x197/0x470 [ 777.911384] ? io_sq_thread_park+0x79/0xd0 [ 777.911872] ? lock_release+0x680/0x680 [ 777.912314] ? __cleanup_sighand+0xb0/0xb0 [ 777.912802] ? kernel_text_address+0xf2/0x120 [ 777.913330] ? find_held_lock+0x2c/0x110 [ 777.913803] ? io_uring_setup+0x1c23/0x2980 [ 777.914303] ? lock_downgrade+0x6d0/0x6d0 [ 777.914758] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 777.915328] create_io_thread+0xb6/0xf0 [ 777.915763] ? pidfd_prepare+0x80/0x80 [ 777.916217] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 777.916790] io_uring_setup+0x1d79/0x2980 [ 777.917275] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 777.917865] ? wait_for_completion_io+0x270/0x270 [ 777.918436] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 777.919007] ? syscall_enter_from_user_mode+0x1d/0x50 [ 777.919608] do_syscall_64+0x33/0x40 [ 777.920013] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 777.920609] RIP: 0033:0x7ffa83495b19 [ 777.921042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 777.923046] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 777.923925] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 777.924767] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 777.925594] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 777.926418] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 777.927245] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:15:05 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3}, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:05 executing program 5: r0 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000180)=0x0) r3 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000440)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0) dup3(r3, r3, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, r5, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x1, 0x1, {0x2, r7}}, 0x80000001) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0xfff) r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 08:15:05 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 18) 08:15:05 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty, 0x3c000000}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:05 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)}], 0x1}, 0x10044001) 08:15:05 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 24) [ 777.977045] FAULT_INJECTION: forcing a failure. [ 777.977045] name failslab, interval 1, probability 0, space 0, times 0 [ 777.978554] CPU: 0 PID: 7014 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 777.979350] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 777.980302] Call Trace: [ 777.980610] dump_stack+0x107/0x167 [ 777.981034] should_fail.cold+0x5/0xa [ 777.981495] ? create_object.isra.0+0x3a/0xa30 [ 777.982027] should_failslab+0x5/0x20 [ 777.982473] kmem_cache_alloc+0x5b/0x310 [ 777.982960] create_object.isra.0+0x3a/0xa30 [ 777.983474] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 777.984069] kmem_cache_alloc_node+0x169/0x330 [ 777.984602] copy_process+0x3305/0x78b0 [ 777.985068] ? stack_trace_save+0x8c/0xc0 [ 777.985552] ? lock_acquire+0x197/0x470 [ 777.986006] ? io_sq_thread_park+0x79/0xd0 [ 777.986488] ? lock_release+0x680/0x680 [ 777.986941] ? __cleanup_sighand+0xb0/0xb0 [ 777.987421] ? kernel_text_address+0xf2/0x120 [ 777.987928] ? find_held_lock+0x2c/0x110 [ 777.988391] ? io_uring_setup+0x1c23/0x2980 [ 777.988878] ? lock_downgrade+0x6d0/0x6d0 [ 777.989371] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 777.989927] create_io_thread+0xb6/0xf0 [ 777.990378] ? pidfd_prepare+0x80/0x80 [ 777.990823] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 777.991387] io_uring_setup+0x1d79/0x2980 [ 777.991860] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 777.992441] ? wait_for_completion_io+0x270/0x270 [ 777.992995] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 777.993536] FAULT_INJECTION: forcing a failure. [ 777.993536] name failslab, interval 1, probability 0, space 0, times 0 [ 777.993595] ? syscall_enter_from_user_mode+0x1d/0x50 [ 777.993610] do_syscall_64+0x33/0x40 [ 777.995809] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 777.996385] RIP: 0033:0x7ffa83495b19 [ 777.996813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 777.998886] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 777.999757] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 778.000575] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 778.001404] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 778.002231] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 778.003050] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 778.003884] CPU: 1 PID: 7016 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 778.004732] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 778.005693] Call Trace: [ 778.006002] dump_stack+0x107/0x167 [ 778.006427] should_fail.cold+0x5/0xa [ 778.006867] ? create_object.isra.0+0x3a/0xa30 [ 778.007396] should_failslab+0x5/0x20 [ 778.007833] kmem_cache_alloc+0x5b/0x310 [ 778.008299] create_object.isra.0+0x3a/0xa30 [ 778.008806] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 778.009367] kmem_cache_alloc_trace+0x151/0x320 [ 778.009910] io_uring_alloc_task_context+0x99/0x6a0 [ 778.010450] ? io_import_iovec+0x1120/0x1120 [ 778.010965] io_uring_setup+0x1dd1/0x2980 [ 778.011420] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 778.012009] ? wait_for_completion_io+0x270/0x270 [ 778.012545] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 778.013111] ? syscall_enter_from_user_mode+0x1d/0x50 [ 778.013676] do_syscall_64+0x33/0x40 [ 778.014081] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 778.014630] RIP: 0033:0x7f466af67b19 [ 778.015033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 778.017015] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 778.017837] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 778.018603] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 778.019368] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 778.020134] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 778.020900] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:15:20 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef0100010000", 0x3f, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:15:20 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty, 0xfeffffff}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:20 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:15:20 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 19) [ 792.812883] FAULT_INJECTION: forcing a failure. [ 792.812883] name failslab, interval 1, probability 0, space 0, times 0 [ 792.814638] CPU: 1 PID: 7033 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 792.815667] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 792.816852] FAULT_INJECTION: forcing a failure. [ 792.816852] name failslab, interval 1, probability 0, space 0, times 0 [ 792.816905] Call Trace: [ 792.816929] dump_stack+0x107/0x167 [ 792.816947] should_fail.cold+0x5/0xa [ 792.820043] ? create_object.isra.0+0x3a/0xa30 [ 792.820723] should_failslab+0x5/0x20 [ 792.821297] kmem_cache_alloc+0x5b/0x310 [ 792.821921] create_object.isra.0+0x3a/0xa30 [ 792.822592] kmemleak_alloc_percpu+0xa0/0x100 [ 792.823271] pcpu_alloc+0x4e2/0x1240 [ 792.823846] __percpu_counter_init+0x10d/0x2d0 [ 792.824537] io_uring_alloc_task_context+0xcc/0x6a0 [ 792.825287] ? io_import_iovec+0x1120/0x1120 [ 792.825966] io_uring_setup+0x1dd1/0x2980 [ 792.826598] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 792.827356] ? wait_for_completion_io+0x270/0x270 [ 792.828096] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 792.828880] ? syscall_enter_from_user_mode+0x1d/0x50 [ 792.829668] do_syscall_64+0x33/0x40 [ 792.830226] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 792.830996] RIP: 0033:0x7f466af67b19 [ 792.831553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 792.834330] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 792.835473] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 792.836545] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 792.837622] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 792.838754] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 792.839880] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 792.840953] CPU: 0 PID: 7035 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 792.841797] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 792.842772] Call Trace: [ 792.843094] dump_stack+0x107/0x167 [ 792.843522] should_fail.cold+0x5/0xa [ 792.843962] ? __delayacct_tsk_init+0x1b/0x80 [ 792.844489] should_failslab+0x5/0x20 [ 792.844924] kmem_cache_alloc+0x5b/0x310 [ 792.845404] __delayacct_tsk_init+0x1b/0x80 [ 792.845908] copy_process+0x3399/0x78b0 [ 792.846389] ? stack_trace_save+0x8c/0xc0 [ 792.846867] ? lock_acquire+0x197/0x470 [ 792.847325] ? io_sq_thread_park+0x79/0xd0 [ 792.847807] ? __cleanup_sighand+0xb0/0xb0 08:15:20 executing program 5: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2}, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:20 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)}], 0x1}, 0x10044001) 08:15:20 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 25) 08:15:20 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x8}, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 792.848284] ? kernel_text_address+0xf2/0x120 [ 792.848949] ? find_held_lock+0x2c/0x110 [ 792.849415] ? io_uring_setup+0x1c23/0x2980 [ 792.849918] ? lock_downgrade+0x6d0/0x6d0 [ 792.850395] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 792.850961] create_io_thread+0xb6/0xf0 [ 792.851412] ? pidfd_prepare+0x80/0x80 [ 792.851858] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 792.852426] io_uring_setup+0x1d79/0x2980 [ 792.852902] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 792.853476] ? wait_for_completion_io+0x270/0x270 [ 792.854042] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 792.854638] ? syscall_enter_from_user_mode+0x1d/0x50 [ 792.855227] do_syscall_64+0x33/0x40 [ 792.855653] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 792.856237] RIP: 0033:0x7ffa83495b19 [ 792.856666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 792.858760] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 792.859628] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 792.860438] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 792.861257] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 792.862074] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 792.862887] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 792.894359] loop0: detected capacity change from 0 to 2048 08:15:20 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x11}, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 792.900909] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5 [ 792.900909] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 792.900909] [ 792.902788] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 792.902788] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 792.902788] 08:15:20 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) [ 792.913910] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:15:20 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)}], 0x1}, 0x10044001) 08:15:20 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty, 0xfffffffe}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:20 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x14}, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:20 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:15:20 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 26) 08:15:20 executing program 5: perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4347, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd130, 0x0, @perf_config_ext, 0x1028, 0x0, 0x3fe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x8, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x800}, 0x1c) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r2) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1) r3 = syz_io_uring_setup(0x19b5, &(0x7f0000003480), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000240)=0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r6, 0x0}, 0x0) syz_io_uring_setup(0x19b5, &(0x7f0000003480)={0x0, 0x0, 0x8}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000240)=0x0) syz_io_uring_submit(0x0, r7, &(0x7f0000000780)=@IORING_OP_SEND={0x1a, 0x3, 0x0, r6, 0x0, &(0x7f0000000280)="e6d47ed4e2077d0a74197bf6da2a77911ad8be8083be7345f6128e6ed5d5c4afc79c18f33d740386bc42c5b2bf704ce2ec231942348c1bf08f5d849d6f55b0a58b8de2f0accdb8d88f47ad07037fcb6946d41b02a1fbb7d873aaa03cd628a9f002a744bd47feb8864630fc8f86eceb4f18bb0ccb6fee3121d1649dbe37a469001a153ba7f59a72fefab6db50a7a57efdac30c68459f29ede22a8fb0d9fcdf5479465ab5d14b9ebe7bfcc68256c26cf50f09485da7338f864621857107717", 0xbe, 0x91}, 0x7) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r6, 0x0, &(0x7f00000007c0)={&(0x7f0000000080)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000000700)=[{&(0x7f00000001c0)=""/44, 0x2c}, {&(0x7f0000000340)=""/74, 0x4a}, {&(0x7f00000003c0)=""/177, 0xb1}, {&(0x7f0000000480)=""/69, 0x45}, {&(0x7f0000000500)=""/148, 0x94}, {&(0x7f00000005c0)=""/55, 0x37}, {&(0x7f0000000600)=""/118, 0x76}, {&(0x7f0000000680)=""/67, 0x43}], 0x8}, 0x0, 0x2000, 0x1, {0x0, r8}}, 0x10000) fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0) r9 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) r10 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r10, &(0x7f0000000240)="01", 0x1) close(r10) ioctl$LOOP_CTL_REMOVE(r10, 0x4c81, r9) [ 792.976841] FAULT_INJECTION: forcing a failure. [ 792.976841] name failslab, interval 1, probability 0, space 0, times 0 [ 792.978182] CPU: 0 PID: 7063 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 792.978974] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 792.979921] Call Trace: [ 792.980229] dump_stack+0x107/0x167 [ 792.980647] should_fail.cold+0x5/0xa [ 792.981085] ? io_uring_alloc_task_context+0x99/0x6a0 [ 792.981686] should_failslab+0x5/0x20 [ 792.982123] kmem_cache_alloc_trace+0x55/0x320 [ 792.982647] io_uring_alloc_task_context+0x99/0x6a0 [ 792.983216] ? io_import_iovec+0x1120/0x1120 [ 792.983728] io_uring_setup+0x1dd1/0x2980 [ 792.984209] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 792.984788] ? wait_for_completion_io+0x270/0x270 [ 792.985355] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 792.985966] ? syscall_enter_from_user_mode+0x1d/0x50 [ 792.986559] do_syscall_64+0x33/0x40 [ 792.986984] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 792.987562] RIP: 0033:0x7f466af67b19 [ 792.987989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 792.990112] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 792.990986] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 792.991802] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 792.992617] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 792.993432] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 792.994256] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 792.995327] loop0: detected capacity change from 0 to 2048 08:15:20 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty, 0xffffffff}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 793.008038] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5 [ 793.008038] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 793.008038] [ 793.010131] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 793.010131] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 793.010131] [ 793.027359] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:15:33 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 27) 08:15:33 executing program 5: r0 = syz_open_dev$usbmon(&(0x7f00000007c0), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0xfdc0) 08:15:33 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 20) [ 805.832235] FAULT_INJECTION: forcing a failure. [ 805.832235] name failslab, interval 1, probability 0, space 0, times 0 [ 805.833352] FAULT_INJECTION: forcing a failure. [ 805.833352] name failslab, interval 1, probability 0, space 0, times 0 [ 805.835489] CPU: 1 PID: 7079 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 805.839055] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 805.841362] Call Trace: [ 805.842137] dump_stack+0x107/0x167 [ 805.843158] should_fail.cold+0x5/0xa [ 805.844223] ? create_object.isra.0+0x3a/0xa30 [ 805.845491] should_failslab+0x5/0x20 [ 805.846584] kmem_cache_alloc+0x5b/0x310 [ 805.847718] create_object.isra.0+0x3a/0xa30 [ 805.848930] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 805.850368] kmem_cache_alloc+0x159/0x310 [ 805.851516] __delayacct_tsk_init+0x1b/0x80 [ 805.852701] copy_process+0x3399/0x78b0 [ 805.853835] ? stack_trace_save+0x8c/0xc0 [ 805.854992] ? lock_acquire+0x197/0x470 [ 805.856082] ? io_sq_thread_park+0x79/0xd0 [ 805.857256] ? __cleanup_sighand+0xb0/0xb0 [ 805.858489] ? kernel_text_address+0xf2/0x120 [ 805.859725] ? find_held_lock+0x2c/0x110 [ 805.860846] ? io_uring_setup+0x1c23/0x2980 [ 805.862063] ? lock_downgrade+0x6d0/0x6d0 [ 805.863196] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 805.864533] create_io_thread+0xb6/0xf0 [ 805.865615] ? pidfd_prepare+0x80/0x80 [ 805.866714] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 805.868072] io_uring_setup+0x1d79/0x2980 [ 805.869214] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 805.870618] ? wait_for_completion_io+0x270/0x270 [ 805.871959] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 805.873384] ? syscall_enter_from_user_mode+0x1d/0x50 [ 805.874807] do_syscall_64+0x33/0x40 [ 805.875814] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 805.877200] RIP: 0033:0x7ffa83495b19 [ 805.878232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 805.883168] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 805.884985] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 805.886703] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 805.888389] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 805.890100] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 805.891787] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 805.893502] CPU: 0 PID: 7083 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 805.894480] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 805.895630] Call Trace: [ 805.895957] dump_stack+0x107/0x167 [ 805.896375] should_fail.cold+0x5/0xa [ 805.896810] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 805.897409] should_failslab+0x5/0x20 [ 805.897853] kmem_cache_alloc_trace+0x55/0x320 [ 805.898376] io_uring_alloc_task_context+0x4a3/0x6a0 [ 805.898949] ? io_import_iovec+0x1120/0x1120 [ 805.899455] io_uring_setup+0x1dd1/0x2980 [ 805.899933] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 805.900508] ? wait_for_completion_io+0x270/0x270 [ 805.901074] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 805.901671] ? syscall_enter_from_user_mode+0x1d/0x50 [ 805.902266] do_syscall_64+0x33/0x40 [ 805.902688] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 805.903274] RIP: 0033:0x7f466af67b19 [ 805.903698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 805.905790] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 805.906656] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 805.907467] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 805.908277] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 805.909092] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 805.909905] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:15:33 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, 0x0, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:15:33 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0x1}], 0x1}, 0x0) 08:15:33 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3c}, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:33 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev={0xac, 0x3}}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:33 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f01", 0x35, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:15:33 executing program 5: syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r2, 0x0, 0x0}, 0x0) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) syz_io_uring_setup(0x55f1, &(0x7f0000000080), &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0) move_pages(0x0, 0x1, &(0x7f0000000100)=[&(0x7f0000ffe000/0x1000)=nil], 0x0, &(0x7f0000000180), 0x0) [ 805.932334] loop0: detected capacity change from 0 to 2048 [ 805.962014] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:15:33 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, 0x0, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:15:33 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev={0xac, 0xf}}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:47 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 28) 08:15:47 executing program 5: syz_emit_ethernet(0xbe, &(0x7f00000000c0)={@local, @empty, @void, {@ipv4={0x806, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x9c, 0x0, @wg}}}}}, 0x0) syz_emit_ethernet(0x1012, &(0x7f0000000180)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}, @local, @val={@void, {0x8100, 0x2, 0x0, 0x2}}, {@generic={0x88b5, "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"}}}, &(0x7f0000000000)={0x0, 0x4, [0x4a7, 0xd28, 0x54d, 0x92e]}) syz_emit_ethernet(0x62, &(0x7f0000000040)={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x43}, @void, {@generic={0x8100, "9d843398c9f5079edee1625e5113118e74717a15afeac684250405090f013e0e0f1a6481120277ed88c05cb6ac04d9a1834a4e7a53d4b6249d83fe07439f46f85b8ef3719f72da1dc6d9d98fe5a611a81c67b7fb"}}}, 0x0) 08:15:47 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev={0xac, 0x12}}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:47 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 21) 08:15:47 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x60}, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:47 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0x1}], 0x1}, 0x0) 08:15:47 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, 0x0, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:15:47 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f01", 0x35, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) [ 820.359267] FAULT_INJECTION: forcing a failure. [ 820.359267] name failslab, interval 1, probability 0, space 0, times 0 [ 820.361768] CPU: 0 PID: 7119 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 820.363256] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 820.364605] FAULT_INJECTION: forcing a failure. [ 820.364605] name failslab, interval 1, probability 0, space 0, times 0 [ 820.365019] Call Trace: [ 820.365047] dump_stack+0x107/0x167 [ 820.365075] should_fail.cold+0x5/0xa [ 820.369810] ? alloc_pid+0xd7/0xd30 [ 820.370598] should_failslab+0x5/0x20 [ 820.371407] kmem_cache_alloc+0x5b/0x310 [ 820.372274] alloc_pid+0xd7/0xd30 [ 820.373016] ? copy_namespaces+0x1ca/0x4f0 [ 820.373924] copy_process+0x3b8b/0x78b0 [ 820.374793] ? stack_trace_save+0x8c/0xc0 [ 820.375683] ? __cleanup_sighand+0xb0/0xb0 [ 820.376576] ? kernel_text_address+0xf2/0x120 [ 820.377533] ? find_held_lock+0x2c/0x110 [ 820.378413] ? io_uring_setup+0x1c23/0x2980 [ 820.379329] ? lock_downgrade+0x6d0/0x6d0 [ 820.380199] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 820.381384] create_io_thread+0xb6/0xf0 [ 820.382244] ? pidfd_prepare+0x80/0x80 [ 820.383073] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 820.384116] io_uring_setup+0x1d79/0x2980 [ 820.385009] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 820.386097] ? wait_for_completion_io+0x270/0x270 [ 820.387137] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 820.388239] ? syscall_enter_from_user_mode+0x1d/0x50 [ 820.389328] do_syscall_64+0x33/0x40 [ 820.390129] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 820.391218] RIP: 0033:0x7ffa83495b19 [ 820.392012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 820.395935] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 820.397547] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 820.399085] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 820.400596] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 820.402226] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 820.403862] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 820.405419] CPU: 1 PID: 7124 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 820.407016] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 820.408912] Call Trace: [ 820.409526] dump_stack+0x107/0x167 [ 820.410372] should_fail.cold+0x5/0xa [ 820.411249] ? create_object.isra.0+0x3a/0xa30 [ 820.412289] should_failslab+0x5/0x20 [ 820.413164] kmem_cache_alloc+0x5b/0x310 [ 820.414116] create_object.isra.0+0x3a/0xa30 [ 820.415139] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 820.416303] kmem_cache_alloc_trace+0x151/0x320 [ 820.417383] io_uring_alloc_task_context+0x4a3/0x6a0 [ 820.418566] ? io_import_iovec+0x1120/0x1120 [ 820.419592] io_uring_setup+0x1dd1/0x2980 [ 820.420550] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 820.421701] ? wait_for_completion_io+0x270/0x270 [ 820.422838] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 820.424034] ? syscall_enter_from_user_mode+0x1d/0x50 [ 820.425211] do_syscall_64+0x33/0x40 [ 820.426066] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 820.427241] RIP: 0033:0x7f466af67b19 [ 820.428078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 820.432255] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 820.433974] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 820.435578] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 820.437186] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 820.438800] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 820.440403] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:15:47 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f0000000240)='./file0\x00', &(0x7f0000000480), &(0x7f00000004c0)={0x0, 0xfb, 0xcb, 0x2, 0x81, "b177ddc3fdbd494bf7439b921e6f779d", "4707a422374372dd6ccfe291493c9d56564526e0ac433f12733bb0ab5098b38f40de1e09eb1fbb0ad2a41d4e1e1ed1764685768397a92393d8ecf5db47ea7506435f81eb474d7ba66672471ceca658dae6799ed52c8739f61898e84f79e864abb67573034212aea94e74e9da664e7d61e2bffa6ab8b5ea718f92c45c37683c4f95dd6514fad538b9ab6650ef8cbf8f796984405abb962dad4e0de0978895b59c72844272c6afc0aef476c27838cd50ab1e81c1e65595"}, 0xcb, 0x0) r1 = creat(&(0x7f0000000280)='./file0\x00', 0x0) write$binfmt_elf64(r1, &(0x7f00000008c0)=ANY=[], 0x629) sendfile(r1, r0, 0x0, 0xffffffff000) r2 = openat2(r1, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100)={0x31b802, 0x10}, 0x18) writev(r2, &(0x7f0000000200)=[{&(0x7f00000002c0)="38faead153ac8391f3862cec77e1faa4f1c76bfe07056c1091942982c621eff0d63a51d41f297da627b50571bdbbe37aa5a63e3c5cc92d5e7c3c569ba504a4af008f2af1b15ccd0156b0a9bdf0d4b6329929fd1ce5b6f3f2356fad9b07855255fffa268606429ee75de35a50f56c624bebc0fc1040471a8a6b7a9e5b155d10041d82f92462834d0972bc16ea1e0b", 0x8e}, {&(0x7f0000000380)="7ebf1835a820c5175e7aa58b8090963a546034f616aec5c95d2d82085e6c45379347550617d092dfbeff71c4c3238f3cfce33b047c85a0d141b7feeef8b19b1fc93209dd9b7d5ef78ba77806e87c86a85c62a66afd490a9020679387765d460eb71ed2276243904e95dfe86ad88a32f349b21084ce52c0acc5f8f0dacfdbd122cb1c2036e901c022e46ae761d0ed80f5bf1db62740d18dcad0433450d5520cd910f4ec8ba26e06308084676054a9e65eb402c6ec5386e087ffe27cd21de587d71402e8d0e91d52e83b2fc3dffc184f6df3f0ce3a51c9c6444c8c60e1e25462dc3c701e44b479527ff4a573d8f18f55d0ec05ca0c923d50", 0xf7}], 0x2) openat(r1, &(0x7f00000005c0)='./file0\x00', 0x200, 0x40) openat(r2, &(0x7f00000001c0)='./file0\x00', 0x2040, 0x1) [ 820.446974] loop0: detected capacity change from 0 to 2048 [ 820.463415] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:15:47 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev={0xac, 0x16}}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:47 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:15:47 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 29) 08:15:47 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xff}, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:47 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0x1}], 0x1}, 0x0) [ 820.596434] FAULT_INJECTION: forcing a failure. [ 820.596434] name failslab, interval 1, probability 0, space 0, times 0 [ 820.599244] CPU: 1 PID: 7136 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 820.600906] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 820.602959] Call Trace: [ 820.603614] dump_stack+0x107/0x167 [ 820.604515] should_fail.cold+0x5/0xa [ 820.605457] ? io_wq_create+0xeb/0xc00 [ 820.606421] should_failslab+0x5/0x20 [ 820.607357] __kmalloc+0x72/0x390 [ 820.608230] io_wq_create+0xeb/0xc00 [ 820.609171] io_uring_alloc_task_context+0x1f1/0x6a0 [ 820.610442] ? io_import_iovec+0x1120/0x1120 [ 820.611539] ? io_apoll_task_func+0x2d0/0x2d0 [ 820.612648] ? __io_req_find_next+0x300/0x300 [ 820.613772] io_uring_setup+0x1dd1/0x2980 [ 820.614820] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 820.616102] ? wait_for_completion_io+0x270/0x270 [ 820.617327] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 820.618683] ? syscall_enter_from_user_mode+0x1d/0x50 [ 820.619977] do_syscall_64+0x33/0x40 [ 820.620911] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 820.622210] RIP: 0033:0x7f466af67b19 [ 820.623150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 820.627264] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 820.628875] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 820.630392] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 820.631906] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 820.633428] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 820.634963] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:15:47 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f01", 0x35, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:15:48 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:15:48 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev={0xac, 0x14, 0x3}}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:15:48 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 22) 08:15:48 executing program 5: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev={0xac, 0x12}}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 820.692899] loop0: detected capacity change from 0 to 2048 [ 820.726030] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:15:48 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x500, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 820.769324] FAULT_INJECTION: forcing a failure. [ 820.769324] name failslab, interval 1, probability 0, space 0, times 0 [ 820.771816] CPU: 0 PID: 7152 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 820.773272] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 820.775011] Call Trace: [ 820.775565] dump_stack+0x107/0x167 [ 820.776339] should_fail.cold+0x5/0xa [ 820.777151] ? alloc_pid+0xd7/0xd30 [ 820.777917] should_failslab+0x5/0x20 [ 820.778741] kmem_cache_alloc+0x5b/0x310 [ 820.779594] alloc_pid+0xd7/0xd30 [ 820.780329] ? copy_namespaces+0x1ca/0x4f0 [ 820.781236] copy_process+0x3b8b/0x78b0 [ 820.782092] ? stack_trace_save+0x8c/0xc0 [ 820.782982] ? __cleanup_sighand+0xb0/0xb0 [ 820.783893] ? kernel_text_address+0xf2/0x120 [ 820.784841] ? find_held_lock+0x2c/0x110 [ 820.785707] ? io_uring_setup+0x1c23/0x2980 [ 820.786639] ? lock_downgrade+0x6d0/0x6d0 [ 820.787516] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 820.788547] create_io_thread+0xb6/0xf0 [ 820.789392] ? pidfd_prepare+0x80/0x80 [ 820.790245] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 820.791313] io_uring_setup+0x1d79/0x2980 [ 820.792182] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 820.793249] ? wait_for_completion_io+0x270/0x270 [ 820.794302] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 820.795413] ? syscall_enter_from_user_mode+0x1d/0x50 [ 820.796501] do_syscall_64+0x33/0x40 [ 820.797292] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 820.798395] RIP: 0033:0x7ffa83495b19 [ 820.799177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 820.803089] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 820.804699] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 820.806235] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 820.807738] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 820.809253] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 820.810775] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:16:00 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 23) 08:16:00 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x802, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:00 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:16:00 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 30) 08:16:00 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev={0xac, 0x14, 0xf}}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:00 executing program 5: r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x1c08a4, 0x0) syz_mount_image$nfs4(0x0, &(0x7f00000010c0)='./file0\x00', 0xa8a, 0x0, 0x0, 0x6c810, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0xa0) r1 = open$dir(&(0x7f0000000200)='mnt/encrypted_dir/../file0\x00', 0x40081, 0x156) mkdirat(r1, &(0x7f0000000280)='mnt/encrypted_dir/../file0\x00', 0x20) faccessat2(r0, &(0x7f0000000040)='mnt/encrypted_dir/../file0\x00', 0x80, 0x3e4fcec92923ce05) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0xa4929, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x6, @perf_config_ext={0x9, 0x7}, 0x50008, 0x0, 0x81, 0x0, 0x0, 0x8, 0x0, 0x0, 0x3}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x0) rename(&(0x7f0000000180)='mnt/encrypted_dir\x00', &(0x7f0000000640)='./file0\x00') getdents64(0xffffffffffffffff, &(0x7f0000000d40)=""/4096, 0x1000) mkdirat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x61) bind$inet6(0xffffffffffffffff, &(0x7f0000000340)={0xa, 0x4e20, 0x3, @private0, 0x82}, 0x1c) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) openat(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xe2514abdea61426, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x3, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) syz_mount_image$tmpfs(&(0x7f0000000140), &(0x7f00000000c0)='./file0\x00', 0xfffffffffffffffc, 0x0, 0x0, 0x8420, &(0x7f0000000540)=ANY=[@ANYBLOB="6e725f696e836465733d302c0061736b3d5e4d41595f524541442c657549643d", @ANYRESDEC=0x0, @ANYBLOB=',fowner>', @ANYRESDEC=0x0, @ANYBLOB=',permit_directio,uid<', @ANYRESDEC=0x0, @ANYBLOB=',dont_measure,audit,rootcontext=staff_u,\x00']) r3 = socket$nl_audit(0x10, 0x3, 0x9) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000380)={'batadv0\x00'}) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000080)={@remote}, 0x14) 08:16:00 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff", 0x38, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) [ 833.259736] tmpfs: Unknown parameter 'nr_inƒdes' 08:16:00 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) (fail_nth: 1) [ 833.264172] FAULT_INJECTION: forcing a failure. [ 833.264172] name failslab, interval 1, probability 0, space 0, times 0 [ 833.265510] CPU: 0 PID: 7172 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 833.266297] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 833.267243] Call Trace: [ 833.267549] dump_stack+0x107/0x167 [ 833.267965] should_fail.cold+0x5/0xa [ 833.268403] ? create_object.isra.0+0x3a/0xa30 [ 833.268921] should_failslab+0x5/0x20 [ 833.269360] kmem_cache_alloc+0x5b/0x310 [ 833.269828] create_object.isra.0+0x3a/0xa30 [ 833.270335] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 833.270913] __kmalloc+0x16e/0x390 [ 833.271325] io_wq_create+0xeb/0xc00 [ 833.271753] io_uring_alloc_task_context+0x1f1/0x6a0 [ 833.272331] ? io_import_iovec+0x1120/0x1120 [ 833.272829] ? io_apoll_task_func+0x2d0/0x2d0 [ 833.273357] ? __io_req_find_next+0x300/0x300 [ 833.273871] io_uring_setup+0x1dd1/0x2980 [ 833.274349] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 833.274927] ? wait_for_completion_io+0x270/0x270 [ 833.275489] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 833.276081] ? syscall_enter_from_user_mode+0x1d/0x50 [ 833.276668] do_syscall_64+0x33/0x40 [ 833.277086] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 833.277677] RIP: 0033:0x7f466af67b19 [ 833.277817] FAULT_INJECTION: forcing a failure. [ 833.277817] name failslab, interval 1, probability 0, space 0, times 0 [ 833.278096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 833.278102] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 833.278113] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 833.278127] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 833.285155] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 833.285960] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 833.286776] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 833.287612] CPU: 1 PID: 7177 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 833.289232] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 833.289603] loop0: detected capacity change from 0 to 2048 [ 833.291099] Call Trace: [ 833.291122] dump_stack+0x107/0x167 [ 833.291145] should_fail.cold+0x5/0xa [ 833.294175] ? io_uring_alloc_task_context+0x99/0x6a0 [ 833.295436] should_failslab+0x5/0x20 [ 833.295504] FAULT_INJECTION: forcing a failure. [ 833.295504] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 833.296296] kmem_cache_alloc_trace+0x55/0x320 [ 833.296323] io_uring_alloc_task_context+0x99/0x6a0 [ 833.299725] ? io_import_iovec+0x1120/0x1120 [ 833.300726] io_uring_setup+0x1dd1/0x2980 [ 833.301670] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 833.302814] ? wait_for_completion_io+0x270/0x270 [ 833.303919] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 833.305096] ? syscall_enter_from_user_mode+0x1d/0x50 [ 833.306261] do_syscall_64+0x33/0x40 [ 833.307098] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 833.308249] RIP: 0033:0x7ffa83495b19 [ 833.309082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 833.313232] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 833.314951] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 833.316556] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 833.318176] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 833.319776] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 833.321378] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 833.323010] CPU: 0 PID: 7179 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 833.323791] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 833.324733] Call Trace: [ 833.325031] dump_stack+0x107/0x167 [ 833.325448] should_fail.cold+0x5/0xa [ 833.325884] _copy_from_user+0x2e/0x1b0 [ 833.326344] __copy_msghdr_from_user+0x91/0x4b0 [ 833.326870] ? __ia32_sys_shutdown+0x80/0x80 [ 833.327364] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 833.327954] ? __lock_acquire+0x1657/0x5b00 [ 833.328446] ? __lock_acquire+0xbb1/0x5b00 [ 833.328951] sendmsg_copy_msghdr+0xa1/0x160 [ 833.329452] ? do_recvmmsg+0x6d0/0x6d0 [ 833.329920] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 833.330527] ? lock_downgrade+0x6d0/0x6d0 [ 833.331027] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 833.331649] ___sys_sendmsg+0xc6/0x170 [ 833.332103] ? sendmsg_copy_msghdr+0x160/0x160 [ 833.332634] ? __fget_files+0x2cf/0x520 [ 833.333103] ? lock_downgrade+0x6d0/0x6d0 [ 833.333578] ? find_held_lock+0x2c/0x110 [ 833.334041] ? __fget_files+0x2f8/0x520 [ 833.334503] ? __fget_light+0xea/0x290 [ 833.334946] __sys_sendmsg+0xe5/0x1b0 [ 833.335376] ? __sys_sendmsg_sock+0x40/0x40 [ 833.335867] ? rcu_read_lock_any_held+0x75/0xa0 [ 833.336394] ? fput_many+0x2f/0x1a0 [ 833.336804] ? ksys_write+0x1a9/0x260 [ 833.337233] ? __ia32_sys_read+0xb0/0xb0 [ 833.337699] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 833.338297] ? syscall_enter_from_user_mode+0x1d/0x50 [ 833.338882] ? trace_hardirqs_on+0x5b/0x180 [ 833.339369] do_syscall_64+0x33/0x40 [ 833.339792] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 833.340368] RIP: 0033:0x7f9c0ab41b19 [ 833.340788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 833.342874] RSP: 002b:00007f9c080b7188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 833.343729] RAX: ffffffffffffffda RBX: 00007f9c0ac54f60 RCX: 00007f9c0ab41b19 [ 833.344535] RDX: 0000000010044001 RSI: 00000000200006c0 RDI: 0000000000000003 [ 833.345336] RBP: 00007f9c080b71d0 R08: 0000000000000000 R09: 0000000000000000 [ 833.346142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 833.346955] R13: 00007fff2fb0c47f R14: 00007f9c080b7300 R15: 0000000000022000 [ 833.377068] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:16:00 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:16:00 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x803, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:00 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev={0xac, 0x14, 0x12}}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:00 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff", 0x38, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:16:00 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev={0xac, 0x14, 0x16}}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 833.468531] tmpfs: Unknown parameter 'nr_inƒdes' [ 833.499425] loop0: detected capacity change from 0 to 2048 [ 833.504460] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 846.589034] FAULT_INJECTION: forcing a failure. [ 846.589034] name failslab, interval 1, probability 0, space 0, times 0 [ 846.590654] CPU: 1 PID: 7207 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 846.591617] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 846.592769] Call Trace: [ 846.593140] dump_stack+0x107/0x167 [ 846.593655] should_fail.cold+0x5/0xa [ 846.594201] ? io_wq_create+0x6ef/0xc00 [ 846.594761] should_failslab+0x5/0x20 [ 846.595295] kmem_cache_alloc_node_trace+0x59/0x340 [ 846.595998] io_wq_create+0x6ef/0xc00 [ 846.596534] io_uring_alloc_task_context+0x1f1/0x6a0 [ 846.597241] ? io_import_iovec+0x1120/0x1120 [ 846.597863] ? io_apoll_task_func+0x2d0/0x2d0 [ 846.598503] ? __io_req_find_next+0x300/0x300 [ 846.599130] io_uring_setup+0x1dd1/0x2980 [ 846.599710] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 846.600419] ? wait_for_completion_io+0x270/0x270 [ 846.601102] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 846.601848] ? syscall_enter_from_user_mode+0x1d/0x50 [ 846.602572] do_syscall_64+0x33/0x40 [ 846.603089] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 846.603811] RIP: 0033:0x7f466af67b19 [ 846.604337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 846.606505] FAULT_INJECTION: forcing a failure. [ 846.606505] name failslab, interval 1, probability 0, space 0, times 0 [ 846.606927] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 846.606941] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 846.606949] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 846.606964] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 846.613449] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 846.614449] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 846.615474] CPU: 0 PID: 7209 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 846.617027] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 846.618906] Call Trace: [ 846.619505] dump_stack+0x107/0x167 [ 846.620329] should_fail.cold+0x5/0xa [ 846.621196] ? create_object.isra.0+0x3a/0xa30 [ 846.622238] should_failslab+0x5/0x20 [ 846.622929] kmem_cache_alloc+0x5b/0x310 [ 846.623666] create_object.isra.0+0x3a/0xa30 [ 846.624451] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 846.625374] kmem_cache_alloc_trace+0x151/0x320 [ 846.626224] io_uring_alloc_task_context+0x99/0x6a0 [ 846.627126] ? io_import_iovec+0x1120/0x1120 [ 846.627919] io_uring_setup+0x1dd1/0x2980 [ 846.628678] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 846.629589] ? wait_for_completion_io+0x270/0x270 [ 846.630473] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 846.631401] ? syscall_enter_from_user_mode+0x1d/0x50 [ 846.632330] do_syscall_64+0x33/0x40 [ 846.632998] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 846.633915] RIP: 0033:0x7ffa83495b19 [ 846.634608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 846.637868] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 846.639232] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 846.640514] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 846.641780] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 846.643079] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 846.644365] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:16:13 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) (fail_nth: 2) 08:16:13 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff", 0x38, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:16:13 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x806, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:13 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:13 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 31) 08:16:13 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:16:13 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 24) 08:16:13 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4303, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x20040, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000300)}, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1000}, 0x0, 0xe, r0, 0x8) r2 = getpgrp(0x0) tgkill(0x0, r2, 0x0) r3 = fcntl$dupfd(0xffffffffffffffff, 0x0, r1) r4 = syz_open_procfs(0x0, &(0x7f0000000700)='clear_refs\x00') writev(r4, &(0x7f0000000380)=[{&(0x7f0000000040)='3', 0x1}], 0x1) utimensat(0xffffffffffffffff, 0x0, 0x0, 0x0) memfd_create(&(0x7f0000000180)='trusted.overlay.opaque\x00', 0x4) syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, 0x0, 0x2ff, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) recvmmsg$unix(r4, &(0x7f0000002480)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f0000000140)=[{&(0x7f0000000400)=""/108, 0x6c}, {&(0x7f0000000740)=""/4096, 0x1000}], 0x2, &(0x7f0000000200)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x40}}, {{&(0x7f0000000500)=@abs, 0x6e, &(0x7f0000001980)=[{&(0x7f0000001740)=""/28, 0x1c}, {&(0x7f0000001780)=""/104, 0x68}, {&(0x7f0000001800)=""/110, 0x6e}, {&(0x7f0000001880)}, {&(0x7f00000018c0)=""/32, 0x20}, {&(0x7f0000001900)=""/100, 0x64}], 0x6, &(0x7f0000001a00)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0xd0}}, {{&(0x7f0000001b00), 0x6e, &(0x7f0000001f80)=[{&(0x7f0000001b80)=""/19, 0x13}, {&(0x7f0000001bc0)=""/120, 0x78}, {&(0x7f0000001c40)=""/86, 0x56}, {&(0x7f0000001cc0)=""/30, 0x1e}, {&(0x7f0000001d00)=""/59, 0x3b}, {&(0x7f0000001d40)=""/206, 0xce}, {&(0x7f0000001e40)=""/40, 0x28}, {&(0x7f0000001e80)=""/218, 0xda}], 0x8, &(0x7f0000002000)=[@rights={{0x10}}], 0x10}}, {{0x0, 0x0, &(0x7f0000002140)=[{&(0x7f0000002040)=""/204, 0xcc}], 0x1, &(0x7f0000002180)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xd8}}, {{0x0, 0x0, &(0x7f0000002440)=[{&(0x7f0000002280)=""/150, 0x96}, {&(0x7f0000002340)=""/233, 0xe9}], 0x2}}], 0x5, 0x20, 0x0) r6 = syz_genetlink_get_family_id$mptcp(&(0x7f00000025c0), r4) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000280)={&(0x7f0000000600)=ANY=[@ANYBLOB="600000006b3eb29fc25093494dcc9f", @ANYRES16=r6, @ANYBLOB="2d0825bd7000fbdbdf250100000040000180050002006900000008000600010000001400040020010000000000000000000000000000060005004e21000008000300e000000108000600010000000c000180060005004e24000041682b9ce57983cff8de2b8936eff6aba64baffdbf4009097f03916cbbe6e1d99326add65f1a824b1c562fac6e96ede85c0dd06618c68d379cc654929691525ee272bd679850adcc9f51d03d6309f0f5b2b3413c276c99c2c3ec25"], 0x60}, 0x1, 0x0, 0x0, 0x20000001}, 0x4040) r7 = socket$nl_generic(0x10, 0x3, 0x10) fcntl$F_SET_RW_HINT(r7, 0x40c, &(0x7f0000000080)=0x2) perf_event_open(0x0, r2, 0x0, r3, 0x0) [ 846.650279] loop0: detected capacity change from 0 to 2048 [ 846.657670] FAULT_INJECTION: forcing a failure. [ 846.657670] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 846.659388] CPU: 0 PID: 7218 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 846.660346] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 846.661508] Call Trace: [ 846.661879] dump_stack+0x107/0x167 [ 846.662396] should_fail.cold+0x5/0xa [ 846.662944] _copy_from_user+0x2e/0x1b0 [ 846.663497] iovec_from_user+0x141/0x400 [ 846.664069] __import_iovec+0x67/0x590 [ 846.664609] ? __ia32_sys_shutdown+0x80/0x80 [ 846.665227] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 846.665964] import_iovec+0x83/0xb0 [ 846.666484] sendmsg_copy_msghdr+0x131/0x160 [ 846.667090] ? do_recvmmsg+0x6d0/0x6d0 [ 846.667631] ? lock_downgrade+0x6d0/0x6d0 [ 846.668217] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 846.668961] ___sys_sendmsg+0xc6/0x170 [ 846.669499] ? sendmsg_copy_msghdr+0x160/0x160 [ 846.670133] ? __fget_files+0x2cf/0x520 [ 846.670700] ? lock_downgrade+0x6d0/0x6d0 [ 846.671275] ? find_held_lock+0x2c/0x110 [ 846.671849] ? __fget_files+0x2f8/0x520 [ 846.672407] ? __fget_light+0xea/0x290 [ 846.672955] __sys_sendmsg+0xe5/0x1b0 [ 846.673503] ? __sys_sendmsg_sock+0x40/0x40 [ 846.674104] ? rcu_read_lock_any_held+0x75/0xa0 [ 846.674762] ? fput_many+0x2f/0x1a0 [ 846.675275] ? ksys_write+0x1a9/0x260 [ 846.675809] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 846.676541] ? syscall_enter_from_user_mode+0x1d/0x50 [ 846.677263] ? trace_hardirqs_on+0x5b/0x180 [ 846.677875] do_syscall_64+0x33/0x40 [ 846.678408] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 846.679132] RIP: 0033:0x7f9c0ab41b19 [ 846.679661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 846.682225] RSP: 002b:00007f9c080b7188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 846.683290] RAX: ffffffffffffffda RBX: 00007f9c0ac54f60 RCX: 00007f9c0ab41b19 [ 846.684296] RDX: 0000000010044001 RSI: 00000000200006c0 RDI: 0000000000000003 [ 846.685289] RBP: 00007f9c080b71d0 R08: 0000000000000000 R09: 0000000000000000 [ 846.686280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 846.687292] R13: 00007fff2fb0c47f R14: 00007f9c080b7300 R15: 0000000000022000 [ 846.697948] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:16:14 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x808, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:14 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 32) 08:16:14 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev={0xac, 0x14, 0x14, 0x3}}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:14 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x811, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 846.759427] FAULT_INJECTION: forcing a failure. [ 846.759427] name failslab, interval 1, probability 0, space 0, times 0 [ 846.762153] CPU: 1 PID: 7227 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 846.763715] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 846.765606] Call Trace: [ 846.766207] dump_stack+0x107/0x167 [ 846.767040] should_fail.cold+0x5/0xa [ 846.767902] ? create_object.isra.0+0x3a/0xa30 [ 846.768930] should_failslab+0x5/0x20 [ 846.769789] kmem_cache_alloc+0x5b/0x310 [ 846.770713] ? io_wq_create+0x114/0xc00 [ 846.771619] create_object.isra.0+0x3a/0xa30 [ 846.772608] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 846.773756] kmem_cache_alloc_node_trace+0x16d/0x340 [ 846.774922] io_wq_create+0x6ef/0xc00 [ 846.775792] io_uring_alloc_task_context+0x1f1/0x6a0 [ 846.776935] ? io_import_iovec+0x1120/0x1120 [ 846.777927] ? io_apoll_task_func+0x2d0/0x2d0 [ 846.778948] ? __io_req_find_next+0x300/0x300 [ 846.779971] io_uring_setup+0x1dd1/0x2980 [ 846.780915] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 846.782058] ? wait_for_completion_io+0x270/0x270 [ 846.783187] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 846.784368] ? syscall_enter_from_user_mode+0x1d/0x50 [ 846.785530] do_syscall_64+0x33/0x40 [ 846.786378] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 846.787536] RIP: 0033:0x7f466af67b19 [ 846.788376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 846.792546] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 846.794265] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 846.795880] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 846.797495] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 846.799115] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 846.800726] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 846.822509] FAULT_INJECTION: forcing a failure. [ 846.822509] name failslab, interval 1, probability 0, space 0, times 0 [ 846.823837] CPU: 0 PID: 7235 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 846.824625] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 846.825568] Call Trace: [ 846.825875] dump_stack+0x107/0x167 [ 846.826291] should_fail.cold+0x5/0xa [ 846.826733] ? create_object.isra.0+0x3a/0xa30 [ 846.827249] should_failslab+0x5/0x20 [ 846.827683] kmem_cache_alloc+0x5b/0x310 [ 846.828149] create_object.isra.0+0x3a/0xa30 [ 846.828651] kmemleak_alloc_percpu+0xa0/0x100 [ 846.829161] pcpu_alloc+0x4e2/0x1240 [ 846.829598] __percpu_counter_init+0x10d/0x2d0 [ 846.830127] io_uring_alloc_task_context+0xcc/0x6a0 [ 846.830704] ? io_import_iovec+0x1120/0x1120 [ 846.831211] io_uring_setup+0x1dd1/0x2980 [ 846.831684] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 846.832259] ? wait_for_completion_io+0x270/0x270 [ 846.832819] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 846.833418] ? syscall_enter_from_user_mode+0x1d/0x50 [ 846.834010] do_syscall_64+0x33/0x40 [ 846.834439] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 846.835020] RIP: 0033:0x7ffa83495b19 08:16:14 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) (fail_nth: 3) 08:16:14 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev={0xac, 0x14, 0x14, 0x8}}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:14 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 25) 08:16:14 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x814, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:14 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53", 0x39, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) [ 846.835446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 846.836797] FAULT_INJECTION: forcing a failure. [ 846.836797] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 846.837704] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 846.837715] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 846.837721] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 846.837727] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 846.837733] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 846.837739] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 846.850371] CPU: 1 PID: 7238 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 846.851906] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 846.853778] Call Trace: [ 846.854399] dump_stack+0x107/0x167 [ 846.855238] should_fail.cold+0x5/0xa [ 846.856108] _copy_to_user+0x2e/0x180 [ 846.856984] simple_read_from_buffer+0xcc/0x160 [ 846.858044] proc_fail_nth_read+0x198/0x230 [ 846.859029] ? proc_sessionid_read+0x230/0x230 [ 846.860059] ? security_file_permission+0xb1/0xe0 [ 846.861158] ? proc_sessionid_read+0x230/0x230 [ 846.862193] vfs_read+0x228/0x620 [ 846.862993] ksys_read+0x12d/0x260 [ 846.863796] ? vfs_write+0xb10/0xb10 [ 846.864647] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 846.865830] ? syscall_enter_from_user_mode+0x1d/0x50 [ 846.867000] do_syscall_64+0x33/0x40 [ 846.867851] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 846.869012] RIP: 0033:0x7f9c0aaf469c [ 846.869849] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 846.874001] RSP: 002b:00007f9c080b7170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 846.875735] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007f9c0aaf469c [ 846.877355] RDX: 000000000000000f RSI: 00007f9c080b71e0 RDI: 0000000000000004 [ 846.878969] RBP: 00007f9c080b71d0 R08: 0000000000000000 R09: 0000000000000000 [ 846.880584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 846.882200] R13: 00007fff2fb0c47f R14: 00007f9c080b7300 R15: 0000000000022000 [ 846.892978] loop0: detected capacity change from 0 to 2048 08:16:14 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x83c, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:14 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev={0xac, 0x14, 0x14, 0x3c}}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:14 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 26) [ 846.917285] FAULT_INJECTION: forcing a failure. [ 846.917285] name failslab, interval 1, probability 0, space 0, times 0 [ 846.918596] CPU: 0 PID: 7251 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 846.919366] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 846.920296] Call Trace: [ 846.920602] dump_stack+0x107/0x167 [ 846.921015] should_fail.cold+0x5/0xa [ 846.921446] ? create_object.isra.0+0x3a/0xa30 [ 846.921959] should_failslab+0x5/0x20 [ 846.922395] kmem_cache_alloc+0x5b/0x310 [ 846.922855] create_object.isra.0+0x3a/0xa30 [ 846.923355] kmemleak_alloc_percpu+0xa0/0x100 [ 846.923865] pcpu_alloc+0x4e2/0x1240 [ 846.924130] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 846.924299] __percpu_counter_init+0x10d/0x2d0 [ 846.926112] io_uring_alloc_task_context+0xcc/0x6a0 [ 846.926681] ? io_import_iovec+0x1120/0x1120 [ 846.927181] io_uring_setup+0x1dd1/0x2980 [ 846.927652] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 846.928219] ? wait_for_completion_io+0x270/0x270 [ 846.928772] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 846.929361] ? syscall_enter_from_user_mode+0x1d/0x50 [ 846.929944] do_syscall_64+0x33/0x40 [ 846.930368] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 846.930947] RIP: 0033:0x7ffa83495b19 [ 846.931370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 846.933458] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 846.934326] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 846.935142] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 846.935948] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 846.936756] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 846.937562] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:16:14 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 27) [ 846.997396] FAULT_INJECTION: forcing a failure. [ 846.997396] name failslab, interval 1, probability 0, space 0, times 0 [ 847.000013] CPU: 1 PID: 7254 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 847.001557] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 847.003451] Call Trace: [ 847.004058] dump_stack+0x107/0x167 [ 847.004893] should_fail.cold+0x5/0xa [ 847.005763] ? create_object.isra.0+0x3a/0xa30 [ 847.006806] should_failslab+0x5/0x20 [ 847.007674] kmem_cache_alloc+0x5b/0x310 [ 847.008596] create_object.isra.0+0x3a/0xa30 [ 847.009590] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 847.010759] kmem_cache_alloc_trace+0x151/0x320 [ 847.011818] io_uring_alloc_task_context+0x99/0x6a0 [ 847.012949] ? io_import_iovec+0x1120/0x1120 [ 847.013955] io_uring_setup+0x1dd1/0x2980 [ 847.014918] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 847.016071] ? wait_for_completion_io+0x270/0x270 [ 847.017189] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 847.018387] ? syscall_enter_from_user_mode+0x1d/0x50 [ 847.019564] do_syscall_64+0x33/0x40 [ 847.020411] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 847.021572] RIP: 0033:0x7ffa83495b19 [ 847.022427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 847.026604] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 847.028326] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 847.029942] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 847.031567] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 847.033191] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 847.034816] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:16:28 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:16:28 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x860, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:28 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:16:28 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_LIST_KEY(r0, 0x0, 0x4000040) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000580), r1) sendmsg$NLBL_MGMT_C_VERSION(r1, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000a40)={0x14, r2, 0xa11}, 0x14}}, 0x0) sendmsg$NLBL_MGMT_C_VERSION(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x4c, r2, 0x300, 0x70bd2c, 0x25dfdbfc, {}, [@NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @local}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @mcast1}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast2}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000401) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000240), r0) 08:16:28 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev={0xac, 0x14, 0x14, 0xff}}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:28 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 33) 08:16:28 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53", 0x39, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:16:28 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 28) [ 861.403289] loop0: detected capacity change from 0 to 2048 [ 861.405187] FAULT_INJECTION: forcing a failure. [ 861.405187] name failslab, interval 1, probability 0, space 0, times 0 [ 861.407764] CPU: 1 PID: 7264 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 861.409304] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 861.411186] Call Trace: [ 861.411787] dump_stack+0x107/0x167 [ 861.412612] should_fail.cold+0x5/0xa [ 861.413481] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 861.414747] should_failslab+0x5/0x20 [ 861.415607] kmem_cache_alloc_trace+0x55/0x320 [ 861.416654] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 861.417876] io_uring_setup+0x14f6/0x2980 [ 861.418833] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 861.419981] ? wait_for_completion_io+0x270/0x270 [ 861.421099] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 861.422283] ? syscall_enter_from_user_mode+0x1d/0x50 [ 861.423473] do_syscall_64+0x33/0x40 [ 861.424313] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 861.425471] RIP: 0033:0x7f466af67b19 [ 861.426313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 861.427539] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 861.430475] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 861.430496] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 861.430511] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 861.436080] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 861.437683] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 861.439297] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 861.467493] FAULT_INJECTION: forcing a failure. [ 861.467493] name failslab, interval 1, probability 0, space 0, times 0 [ 861.470130] CPU: 1 PID: 7277 Comm: syz-executor.1 Not tainted 5.10.246 #1 08:16:28 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:16:28 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:28 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x4305, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 861.471696] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 861.473764] Call Trace: [ 861.474367] dump_stack+0x107/0x167 [ 861.475211] should_fail.cold+0x5/0xa [ 861.476069] ? create_object.isra.0+0x3a/0xa30 [ 861.477098] should_failslab+0x5/0x20 08:16:28 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53", 0x39, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) [ 861.477954] kmem_cache_alloc+0x5b/0x310 [ 861.479016] create_object.isra.0+0x3a/0xa30 [ 861.480003] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 861.481154] kmem_cache_alloc_trace+0x151/0x320 [ 861.482214] io_uring_alloc_task_context+0x4a3/0x6a0 [ 861.483368] ? io_import_iovec+0x1120/0x1120 [ 861.484372] io_uring_setup+0x1dd1/0x2980 [ 861.485312] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 861.486450] ? wait_for_completion_io+0x270/0x270 [ 861.487582] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 861.488764] ? syscall_enter_from_user_mode+0x1d/0x50 [ 861.489930] do_syscall_64+0x33/0x40 [ 861.490783] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 861.491941] RIP: 0033:0x7ffa83495b19 [ 861.492779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 861.496927] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 861.498648] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 861.500247] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 861.501845] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 861.503461] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 861.505071] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:16:28 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 34) [ 861.526581] loop0: detected capacity change from 0 to 2048 08:16:28 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev, 0x3}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 861.557126] FAULT_INJECTION: forcing a failure. [ 861.557126] name failslab, interval 1, probability 0, space 0, times 0 [ 861.558437] CPU: 0 PID: 7289 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 861.559231] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 861.560172] Call Trace: [ 861.560485] dump_stack+0x107/0x167 [ 861.560899] should_fail.cold+0x5/0xa [ 861.561331] ? create_object.isra.0+0x3a/0xa30 [ 861.561857] should_failslab+0x5/0x20 [ 861.562292] kmem_cache_alloc+0x5b/0x310 [ 861.562771] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 861.563346] ? trace_hardirqs_on+0x5b/0x180 [ 861.563838] create_object.isra.0+0x3a/0xa30 [ 861.564336] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 861.564916] kmem_cache_alloc_trace+0x151/0x320 [ 861.565453] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 861.566070] io_uring_setup+0x14f6/0x2980 [ 861.566550] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 861.567131] ? wait_for_completion_io+0x270/0x270 [ 861.567695] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 861.568292] ? syscall_enter_from_user_mode+0x1d/0x50 [ 861.568885] do_syscall_64+0x33/0x40 [ 861.569309] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 861.569898] RIP: 0033:0x7f466af67b19 [ 861.570325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 861.572420] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 861.573280] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 861.574087] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 861.574912] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 861.575721] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 861.576527] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:16:28 executing program 5: syz_mount_image$nfs(0x0, 0x0, 0x0, 0x6, &(0x7f0000000280)=[{&(0x7f00000016c0)="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", 0xf00, 0x101}, {&(0x7f00000026c0)='L', 0x1}, {0x0}, {&(0x7f0000000140)="c6b7bff275d2511f1180e17ea1d43554c898d7fec3ae74339c4c3fb94e5720a0c710a27e4c15ef9492eb3d6231cae8ceda8fb40e8a95a11a2c0364617f25b7e723de7e8fe4b9d08f08f3ac8ee131120350ecbe29e846a0ec41bb89ad9b6fddce", 0x60, 0x6}, {&(0x7f00000001c0)="d21cdc275967848c4b2f85a73704ab02b361d2692dad459ade067474e221a22a75c8377a8a2e988a4e5877892ad8eb370e0d1463382daf615b1dde964fab501d4ebdffb76bbe9b13bbfee2c51664b3e3dd53c368bb52d071d671d1f3e96f4ecb932c7288de5fdb3945909105e488cc0468500d74cf8168", 0x77, 0x2}, {&(0x7f0000000240)="15853028eda66fa4a6f21dc32dd5890596647456a1ea38b2020621084dec00e6", 0x20, 0x57b7}], 0x2000008, 0x0) setxattr$incfs_metadata(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)="82b650207f6a0f1f1e831004f302c226a647751ff886ea7f3c18b81ff174570ab1e7959e0019051fef4de6d472c8701500a5e552cc26800abdffecf7bd8cc19503992619f0090ca70082518a7221fe066099f951eb888d090e9a730bdae19e2608f8f10b7168e468114c3b82e70d94dfad3d7759b97a09cb6103c88507cb46c114ded61f6b2299ffda", 0x89, 0x3) setxattr(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=@known='trusted.overlay.upper\x00', &(0x7f00000003c0)='user.incfs.metadata\x00', 0x14, 0x2) [ 861.605739] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:16:40 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 29) 08:16:40 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0xa, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:16:40 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 35) 08:16:40 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{0x0}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:16:40 executing program 5: r0 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r0, 0x1, 0x0) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x6af049b2f1bfd91e}, 0xc, &(0x7f0000000080)={&(0x7f0000000580)={0x860, 0x0, 0x800, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xd4, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x5c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0x10, 0x1, [0x1, 0xb, 0x24, 0x4, 0xd, 0x6, 0x67, 0x9, 0x24, 0xc, 0x36, 0x5]}, @NL80211_TXRATE_HT={0x1b, 0x2, [{0x4, 0x6}, {0x3, 0x9}, {0x6}, {0x1, 0x9}, {0x4, 0x4}, {0x6, 0x8}, {0x3, 0x4}, {0x1, 0xa}, {0x5, 0x2}, {0x1, 0x7}, {0x2, 0x4}, {0x6, 0x8}, {0x3, 0x5}, {0x0, 0x5}, {0x2, 0x2}, {0x5}, {0x7}, {0x3, 0x7}, {0x1, 0x8}, {0x5, 0x8}, {0x4, 0x3}, {0x2, 0x1}, {0x0, 0x5}]}, @NL80211_TXRATE_LEGACY={0xd, 0x1, [0x30, 0x24, 0x36, 0x13, 0x30, 0x1b, 0x1, 0x82b39c7acb14bff, 0x24]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7f, 0x0, 0x1, 0x200, 0x8, 0x7, 0xffff, 0x8]}}]}, @NL80211_BAND_6GHZ={0x74, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x1e, 0x2, [{0x7, 0x9}, {0x7, 0x5}, {0x0, 0x5}, {0x0, 0x6}, {0x1, 0x9}, {0x6, 0x9}, {0x0, 0x5}, {0x7, 0x1}, {0x6}, {0x6, 0x3}, {0x3, 0x9}, {0x6, 0x9}, {0x4, 0x2}, {0x7, 0x6}, {0x4}, {0x0, 0xa}, {0x0, 0x6}, {0x3, 0xa}, {0x6, 0x9}, {0x3, 0x5}, {0x4, 0x5}, {0x1, 0x8}, {0x6, 0x8}, {0x1, 0x7}, {0x2, 0x7}, {0x1, 0x6}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0x4}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0xc, 0x1, [0x0, 0xcea05755a7ab3c8c, 0x6c, 0x1, 0x60, 0x3, 0x3, 0x0]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0x1f, 0x1, [0xb, 0x18, 0x6, 0xc, 0xc, 0x2, 0xb, 0x30, 0x1b, 0x60, 0x12, 0x1, 0x2, 0x24, 0x24, 0x60, 0x12, 0x1b, 0x12, 0x1, 0x18, 0x3, 0x1, 0x36, 0x4, 0xc, 0x4]}]}]}, @NL80211_ATTR_TX_RATES={0x234, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0xb8, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x11, 0x2, [{0x4, 0x2}, {0x1, 0x4}, {0x3, 0x7}, {0x0, 0xa}, {0x3, 0xa}, {0x2, 0x8}, {0x6, 0x8}, {0x3, 0x1}, {0x1, 0x8}, {0x6, 0x3}, {0x1, 0x8}, {0x1, 0x4}, {0x3, 0x3}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3789, 0x81, 0xef, 0x8, 0x1, 0x43, 0x0, 0x3]}}, @NL80211_TXRATE_HT={0x24, 0x2, [{0x4, 0x2}, {0x0, 0x9}, {0x3, 0x9}, {0x1, 0xa}, {0x2, 0x1}, {0x7, 0x7}, {0x0, 0x3}, {0x5, 0x1}, {0x4, 0x4}, {0x6}, {0x0, 0x1}, {0x0, 0xa}, {0x1, 0x7}, {0x0, 0x1}, {0x0, 0x3}, {0x7, 0x6}, {0x3, 0x8}, {0x4, 0x5}, {0x2, 0x6}, {0x2, 0x9}, {0x5, 0x2}, {0x3, 0x4}, {0x7, 0x8}, {0x0, 0x8}, {0x4, 0x4}, {0x3, 0x7}, {0x2}, {0x3, 0x3}, {0x5}, {0x5, 0x5}, {0x1, 0x4}, {0x5, 0x8}]}, @NL80211_TXRATE_LEGACY={0x23, 0x1, [0x5, 0x60, 0x72, 0x4, 0x6c, 0x1, 0x2, 0x24, 0x60, 0x12, 0x1b, 0x36, 0x36, 0x30, 0x1b, 0x60, 0x48, 0x36, 0x3, 0x24, 0x18, 0x60, 0x1b, 0x60, 0x36, 0x60, 0x9, 0x9, 0x5, 0x94, 0xb]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xfff, 0x182, 0x101, 0x8000, 0x0, 0x9, 0x2, 0x9]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0xf9b1, 0x1ff, 0xb64, 0x7, 0x401, 0x1f, 0x3528]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x9, 0x5, 0x6, 0x8, 0x8, 0x3, 0xff]}}, @NL80211_TXRATE_LEGACY={0x7, 0x1, [0x9, 0x3, 0x9]}]}, @NL80211_BAND_2GHZ={0xdc, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x13, 0x1, [0x6c, 0x36, 0x36, 0x1d, 0x1, 0x6c, 0xb, 0xc, 0x60, 0x60, 0x36, 0x1b, 0x36, 0x3, 0x30]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0xb, 0xc, 0x16, 0x30, 0xc, 0x6c, 0xc, 0xb, 0x1b, 0x6, 0x4, 0x60, 0x16, 0x9, 0x18, 0x12]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x2, 0x1ff, 0x101, 0x0, 0x5, 0x8, 0x7]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x3, 0x6, 0x9b, 0x1180, 0x401, 0x2, 0x20]}}, @NL80211_TXRATE_LEGACY={0x18, 0x1, [0xb, 0x9, 0xc, 0x24, 0x36, 0x12, 0x2, 0x24, 0x4, 0x16, 0xb, 0x4, 0x52, 0x60, 0x3, 0x2, 0x30, 0x12, 0x48, 0xc]}, @NL80211_TXRATE_HT={0x26, 0x2, [{0x6, 0x5}, {0x2, 0x8}, {0x0, 0x3}, {0x7, 0xa}, {0x4, 0x4}, {0x3, 0x6}, {0x4, 0x7}, {0x3, 0x9}, {0x0, 0xa}, {0x1, 0x6}, {0x3, 0x6}, {0x7, 0x3}, {0x5}, {0x1, 0x9}, {0x1, 0x7}, {0x3, 0x2}, {0x3, 0x6}, {0x0, 0x9}, {0x2, 0x7}, {0x0, 0x2}, {0x7, 0x7}, {0x1, 0x2}, {0x5}, {0x4, 0x14}, {0x2, 0x6}, {0x1}, {0x7, 0x9}, {0x4, 0x5}, {0x0, 0x4}, {0x5, 0x7}, {0x1, 0x6}, {0x5, 0x4}, {0x0, 0x7}, {0x0, 0x5}]}, @NL80211_TXRATE_HT={0x24, 0x2, [{0x6, 0x9}, {0x3, 0x4}, {0x3, 0x3}, {0x7, 0x3}, {0x1, 0x1}, {0x1, 0x3}, {0x3, 0x5}, {0x7, 0x1}, {0x5, 0x4}, {0x0, 0x2}, {0x4, 0x1}, {0x1, 0x5}, {0x3, 0x9}, {0x1, 0x8}, {0x4, 0xa}, {0x7, 0x1}, {0x1, 0x6}, {0x4, 0x1}, {0x1}, {0x1, 0x5}, {0x0, 0xa}, {0x0, 0x6}, {0x2, 0x4}, {0x6, 0x9}, {0x0, 0x1}, {}, {0x3, 0x8}, {0x0, 0x7}, {0x0, 0xa}, {0x4, 0x1}, {0x3, 0x3}, {0x5, 0x6}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xfff8, 0x6, 0xbd73, 0x7, 0x0, 0x1, 0x3, 0x3]}}]}, @NL80211_BAND_5GHZ={0x9c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x7, 0x6, 0x8000, 0x4b19, 0x5, 0x7fff, 0xfffe, 0xd0]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x5e22, 0x9, 0x78f5, 0x28bc, 0x4, 0x5, 0x6]}}, @NL80211_TXRATE_LEGACY={0x24, 0x1, [0x9, 0x12, 0x16, 0x30, 0x1, 0x9, 0x24, 0x30, 0x5, 0x16, 0x36, 0x24, 0x18, 0x3, 0x2, 0x36, 0x3, 0xc, 0x30, 0x3, 0x5, 0x1, 0xc, 0xb, 0xc, 0xb, 0x3, 0x30, 0x60, 0x60, 0x2, 0x30]}, @NL80211_TXRATE_HT={0x3b, 0x2, [{0x5, 0x8}, {0x0, 0x2}, {0x1, 0x2}, {0x7, 0x7}, {0x4, 0x6}, {0x7, 0x8}, {0x1, 0x8}, {0x3, 0x7}, {0x6}, {0x3}, {0x0, 0xa}, {0x2, 0x9}, {0x3, 0x9}, {0x0, 0x9}, {0x4, 0x9}, {0x2, 0xa}, {0x7, 0x9}, {0x4, 0x1}, {0x4, 0x2}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x5}, {0x4, 0x1}, {0x5, 0x7}, {}, {0x7, 0x9}, {0x4}, {0x0, 0x5}, {0x2, 0x1}, {0x5, 0x1}, {0x4, 0xa}, {0x6, 0x8}, {0x7, 0x6}, {0x7, 0x3}, {0x5, 0x4}, {0x4, 0x6}, {0x4, 0x2}, {0x2}, {0x7, 0x2}, {0x3, 0x9}, {0x3, 0x3}, {0x7, 0x3}, {0x1, 0x6}, {0x3, 0x6}, {0x7, 0x1}, {0x2, 0x2}, {0x5}, {0x1, 0x9}, {0x3, 0x7}, {0x7, 0x9}, {0x1, 0x5}, {0x3, 0x9}, {0x3, 0x8}]}, @NL80211_TXRATE_LEGACY={0xe, 0x1, [0x5, 0xc, 0x30, 0x30, 0x36, 0x6, 0x60, 0x12, 0xc, 0x6]}]}]}, @NL80211_ATTR_TX_RATES={0xc8, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x1c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x18, 0x2, [{0x1, 0x7}, {0x4, 0x8}, {0x0, 0x9}, {0x1, 0xa}, {0x2}, {0x7, 0x1}, {0x0, 0x1}, {0x0, 0x9}, {0x5, 0x7}, {0x2, 0x2}, {0x5, 0x3}, {0x6, 0xa}, {0x3, 0x7}, {0x0, 0x7}, {0x4, 0x9}, {0x3, 0x9}, {0x4, 0x8}, {0x1, 0x5}, {0x5, 0x5}, {0x1, 0x2}]}]}, @NL80211_BAND_6GHZ={0x34, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x23, 0x1, [0x1b, 0x12, 0x60, 0x1, 0x24, 0x6, 0x14, 0x18, 0x24, 0x1, 0x2, 0xb, 0x16, 0x647053f7425f6a06, 0x6c, 0x1, 0x30, 0x16, 0x36, 0x3, 0xb, 0x1b, 0x6c, 0x5a, 0x7b, 0x3, 0xb, 0x5, 0x48, 0x5, 0xc]}, @NL80211_TXRATE_LEGACY={0x9, 0x1, [0x6c, 0xc, 0x12, 0x24, 0x18]}]}, @NL80211_BAND_60GHZ={0x74, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x15, 0x1, [0x3, 0x12, 0x1b, 0x3, 0xc, 0x6, 0x6c, 0x7, 0x60, 0xb, 0x1, 0x9, 0x17, 0x49, 0x60, 0xc, 0xc]}, @NL80211_TXRATE_HT={0x46, 0x2, [{0x3}, {0x2, 0x4}, {0x6, 0x1}, {0x0, 0x4}, {0x7, 0xa}, {0x0, 0x8}, {0x0, 0x3}, {0x1, 0x3}, {0x5, 0x3}, {0x0, 0x9}, {0x2, 0x5}, {0x1, 0x7}, {0x2, 0x8}, {0x2, 0x6}, {0x2, 0x9}, {0x1, 0x5}, {0x4, 0x3}, {0x1, 0x1}, {0x1}, {0x7, 0x9}, {0x1, 0x3}, {0x0, 0x3}, {0x2, 0x3}, {0x3, 0xa}, {0x4, 0x3}, {0x1}, {0x5, 0x2}, {0x3, 0x6}, {0x1, 0x9}, {0x3, 0x3}, {0x5, 0x5}, {0x4, 0x7}, {0x3, 0x4}, {0x4, 0x8}, {0x3, 0x6}, {0x5, 0x7}, {0x4, 0x2}, {0x5, 0x7}, {0x0, 0x9}, {0x0, 0x2}, {0x7, 0xa}, {0x0, 0x6}, {0x6, 0x2}, {0x2, 0x3}, {0x4, 0xa}, {0x4, 0x9}, {0x4, 0x4}, {0x3, 0x9}, {0x3, 0x7}, {0x4, 0x7}, {0x7, 0x2}, {0x0, 0x9}, {0x7, 0x3}, {0x2, 0x2}, {0x0, 0x8}, {0x4, 0x6}, {0x1, 0x9}, {0x0, 0x3}, {0x6, 0x5}, {0x6, 0x1}, {0x0, 0x1}, {0x6, 0xa}, {0x7, 0x7}, {0x5, 0xa}, {0x2, 0x4}, {0x1, 0x3}]}, @NL80211_TXRATE_LEGACY={0x6, 0x1, [0x16, 0x12]}, @NL80211_TXRATE_GI={0x5}]}]}, @NL80211_ATTR_TX_RATES={0x108, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0xc, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_5GHZ={0xb8, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x19, 0x2, [{0x1, 0x8}, {0x1, 0xa}, {0x6, 0x4}, {0x5, 0x2}, {0x2, 0xa}, {0x0, 0x4}, {0x3, 0xa}, {0x1, 0x6}, {0x1, 0x3}, {0x3, 0x2}, {0x4, 0x9}, {0x6, 0x4}, {0x4, 0x3}, {0x3, 0x9}, {0x0, 0x4}, {0x5, 0x4}, {0x1, 0x6}, {0x0, 0x6}, {0x5}, {0x7, 0x3}, {0x4, 0x4}]}, @NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x9}, {0x1, 0x5}, {0x3, 0x7}, {0x3}, {0x3, 0x7}, {0x0, 0x4}, {0x0, 0x1}, {0x0, 0x1}, {0x3, 0x5}, {0x0, 0x6}, {0x7, 0x4}, {0x6, 0x2}, {0x1, 0x9}, {0x0, 0x2}, {0x0, 0x4}, {0x7, 0x2}, {0x1, 0x7}, {0x6, 0x6}, {0x4}, {0x4, 0xa}, {0x3, 0x4}, {0x1, 0x7}, {0x7, 0x1}, {0x2, 0x4}, {0x0, 0x7}, {0x0, 0x2}, {0x3, 0x1}, {0x7, 0x8}, {0x2}, {0x6, 0x3}, {0x2, 0xa}, {0x1, 0x4}, {0x6, 0x9}, {0x6, 0x8}, {0x3, 0x8}, {0x1, 0x8}, {0x6, 0xa}, {0x0, 0x3}, {0x5, 0xa}, {0x4, 0x4}, {0x1, 0x7}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x76aa, 0x2, 0x2, 0x4, 0x7ff, 0x6, 0x80, 0xffc5]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7f, 0x7, 0x7, 0x1, 0x3ff, 0xe6cc, 0x5, 0x4]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x400, 0x4, 0x8, 0x1, 0x6, 0x101, 0xfff8, 0x78]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x7ff, 0xffff, 0x1, 0x4, 0x0, 0xfffb, 0x2f6]}}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_5GHZ={0x40, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x27, 0x2, [{0x3, 0x7}, {0x1, 0xf}, {0x5, 0x9}, {0x6, 0x6}, {0x6, 0x6}, {0x3, 0x9}, {0x2, 0x1}, {0x1, 0x4}, {0x4}, {0x1, 0x7}, {0x2, 0x8}, {0x6, 0x1}, {0x1, 0x6}, {0x0, 0x1}, {0x6, 0x1}, {0x4, 0x6}, {0x7, 0x5}, {0x5, 0x5}, {0x4, 0x6}, {0x2, 0x1}, {0x7, 0x2}, {0x7, 0x4}, {0x3, 0x4}, {0x1, 0x6}, {0x7, 0x5}, {0x1, 0x8}, {0x1, 0x5}, {}, {0x7}, {0x1, 0x4}, {0x6, 0x2}, {0x2, 0x8}, {0x6, 0x1}, {0x4, 0x8}, {0x5, 0x1}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7, 0x8, 0x81, 0x1c8, 0x6bad, 0xfff, 0xdd9, 0x3]}}]}]}, @NL80211_ATTR_TX_RATES={0x184, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xb4, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x3}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x1ff, 0x3f, 0x6, 0x1ff, 0x6, 0x463, 0x5fe]}}, @NL80211_TXRATE_LEGACY={0x1f, 0x1, [0x36, 0x1b, 0x60, 0x18, 0x6, 0x36, 0x1, 0x48, 0x1, 0x48, 0x4, 0x5, 0x4, 0x4, 0x3, 0x4, 0x24, 0x4, 0x5, 0x1, 0x60, 0x12, 0x1, 0x6, 0x3, 0x60, 0x1b]}, @NL80211_TXRATE_HT={0x24, 0x2, [{0x1, 0x2}, {0x0, 0x3}, {0x5, 0x3}, {0x6, 0x9}, {0x1, 0x5}, {0x7, 0x3}, {0x7, 0x4}, {0x0, 0x1}, {0x5, 0x5}, {0x7}, {0x4, 0x2}, {0x5, 0xa}, {0x3, 0x4}, {0x6, 0x7}, {0x2, 0x8}, {0x2, 0x8}, {0x5, 0x2}, {0x2}, {0x3, 0xa}, {0x3, 0xa}, {0x1, 0x3}, {0x2, 0x6}, {0x4, 0x1}, {0x2, 0x8}, {0x0, 0x3}, {0x2, 0x9}, {0x7, 0x9}, {0x3, 0x2}, {0x1, 0x3}, {0x2, 0x9}, {0x5, 0x6}, {0x4, 0x8}]}, @NL80211_TXRATE_HT={0x4f, 0x2, [{0x5, 0x3}, {0x5, 0x4}, {0x1, 0x9}, {0x3, 0x9}, {0x7, 0x8}, {0x7, 0x2}, {0x0, 0x7}, {0x5, 0x7}, {0x6, 0x1}, {0x7, 0x9}, {0x0, 0x9}, {0x0, 0x4}, {0x0, 0xa}, {0x5, 0x8}, {0x2, 0x3}, {0x2, 0x4}, {0x2, 0x6}, {0x2, 0x1}, {0x6, 0x4}, {0x0, 0x7}, {0x1, 0x4}, {0x2, 0x1}, {0x3, 0x8}, {0x1, 0x2}, {0x0, 0x6}, {0x4, 0x8}, {0x4, 0x4}, {0x2, 0x8}, {0x5, 0x6}, {0x4, 0x6}, {0x7, 0x6}, {0x1, 0x3}, {0x1, 0x1}, {0x5, 0x2}, {0x0, 0x2}, {0x3, 0xa}, {0x1, 0x7}, {0x6, 0x1}, {0x4, 0x8}, {}, {0x3, 0x8}, {0x2, 0x5}, {0x6, 0x7}, {0x3, 0x8}, {0x5, 0x7}, {0x6, 0xa}, {0x5}, {0x0, 0x1}, {0x7, 0x3}, {0x0, 0xa}, {0x2, 0x8}, {0x4, 0x4}, {0x4, 0x7}, {0x7, 0x6}, {0x3}, {0x3, 0x7}, {0x3, 0x6}, {0x5, 0x3}, {0x3, 0xa}, {0x0, 0x5}, {0x0, 0x1}, {0x6, 0x3}, {0x2, 0x1}, {0x1, 0x9}, {0x3, 0x6}, {0x4, 0x1}, {0x3, 0x4}, {0x5, 0x1}, {0x1, 0x4}, {0x1, 0x9}, {0x5, 0x1}, {0x3, 0xa}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x4}]}]}, @NL80211_BAND_5GHZ={0xcc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x26, 0x2, [{0x4, 0x5}, {0x4, 0x8}, {0x1, 0x7}, {0x2}, {0x0, 0x9}, {0x7, 0x3}, {0x2, 0x8}, {0x7, 0x9}, {0x1, 0x3}, {0x5}, {0x7, 0xa}, {0x0, 0xa}, {0x0, 0x4}, {0x0, 0x5}, {0x4, 0x3}, {0x1, 0x5}, {0x4, 0x6}, {0x1, 0xa}, {0x6, 0x5}, {0x2, 0x2}, {0x1, 0x3}, {0x7, 0x1}, {0x0, 0x6}, {0x0, 0x8}, {0x6, 0x7}, {0x6, 0x2}, {0x4, 0x6}, {0x6, 0x7}, {0x5, 0x4}, {0x4, 0x9}, {0x2, 0x1}, {0x6, 0x1}, {0x1, 0x8}, {0x7, 0x2}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xa9, 0x0, 0x461, 0xfff8, 0x800, 0x3, 0x1000, 0x6]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x9, 0x1, 0x6, 0x200, 0x3f, 0x45b, 0x7]}}, @NL80211_TXRATE_LEGACY={0x12, 0x1, [0x90, 0xb, 0x48, 0x6c, 0x1b, 0x3f, 0x60, 0xc, 0x36, 0x3, 0x30, 0x4, 0x48, 0x6]}, @NL80211_TXRATE_HT={0x42, 0x2, [{0x1, 0x5}, {0x1, 0x3}, {0x3, 0x3}, {0x7, 0x6}, {0x4, 0xa}, {0x5, 0x1}, {0x2, 0x1}, {0x0, 0x8}, {0x1, 0x3}, {0x1, 0x9}, {0x2, 0x2}, {0x0, 0x5}, {0x4, 0x7}, {0x5, 0x2}, {0x2, 0x8}, {0x4, 0x5}, {0x6, 0x4}, {0x4, 0x7}, {0x1, 0x6}, {0x1, 0x1}, {0x1, 0x8}, {0x7, 0xa}, {0x5}, {0x4, 0x3}, {0x2, 0x2}, {0x2, 0x5}, {0x1, 0x7}, {0x6, 0x4}, {0x5, 0xa}, {0x1, 0x8}, {0x0, 0x7}, {0x1, 0x1}, {0x3, 0x8}, {0x0, 0x7}, {0x1, 0x5}, {0x1, 0x2}, {0x0, 0x7}, {0x3, 0x2}, {0x0, 0x7}, {0x4, 0x6}, {0x5, 0x7}, {0x1, 0xa}, {0x7, 0x7}, {0x5, 0xa}, {0x5, 0x7}, {0x2, 0x5}, {0x3, 0x8}, {0x0, 0x6}, {0x4, 0x9}, {0x0, 0x7}, {0x0, 0x3}, {0x0, 0xa}, {0x5, 0x1}, {0x0, 0x5}, {0x4, 0x1}, {0x0, 0x5}, {0x2, 0x5}, {0x0, 0x4}, {0x4, 0x1}, {0x7, 0x1}, {0x0, 0x6}, {0x6, 0x5}]}, @NL80211_TXRATE_LEGACY={0x1e, 0x1, [0x2, 0xb, 0x18, 0x3, 0x3, 0x30, 0xb, 0x30, 0x9, 0x6, 0x3, 0x24, 0x6c, 0x9, 0x5, 0x6, 0xb, 0x1b, 0x0, 0x48, 0x6, 0x5, 0x1, 0x18, 0x1b, 0x6]}]}]}, @NL80211_ATTR_TX_RATES={0x1e8, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x18, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x400, 0x5, 0x7, 0x100, 0x3, 0xff, 0x100, 0x7fff]}}]}, @NL80211_BAND_6GHZ={0x6c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x21, 0x1, [0x60, 0x6, 0x48, 0x5, 0x60, 0x12, 0x36, 0x36, 0x6, 0x30, 0x12, 0xb, 0x0, 0x6c, 0x4, 0x3, 0xc, 0x18, 0x24, 0x9, 0x1, 0x3, 0x24, 0x36, 0x30, 0x6d, 0x1, 0x36, 0x24]}, @NL80211_TXRATE_HT={0x5, 0x2, [{0x1, 0xa}]}, @NL80211_TXRATE_LEGACY={0x16, 0x1, [0x12, 0x24, 0x4, 0x9, 0x30, 0x58, 0x18, 0x24, 0x1, 0x6c, 0x48, 0x18, 0x30, 0x3, 0x60, 0x3d, 0x1, 0x24]}, @NL80211_TXRATE_LEGACY={0x10, 0x1, [0xd, 0x6c, 0x3, 0x30, 0x48, 0x2, 0x16, 0x5, 0x6, 0x0, 0x36, 0x36]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xd9f, 0x30, 0x0, 0x2, 0x84, 0x5, 0x74, 0x3f]}}]}, @NL80211_BAND_6GHZ={0x9c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x4d, 0x2, [{0x4}, {0x4, 0x1}, {0x1, 0x8}, {0x0, 0x3}, {0x0, 0xa}, {0x3, 0x4}, {0x0, 0x3}, {0x0, 0x4}, {0x4, 0x8}, {0x5, 0x4}, {0x4, 0x2}, {0x4, 0x6}, {0x2, 0x6}, {0x6, 0x6}, {0x0, 0x3}, {0x1, 0x9}, {0x6, 0x2}, {0x1, 0x1}, {0x1, 0x5}, {0x6, 0x8}, {0x3, 0x2}, {0x4, 0x8}, {0x7, 0x9}, {0x6, 0x3}, {0x0, 0x8}, {0x7, 0x5}, {0x6}, {0x1, 0x2}, {0x1, 0x9}, {0x1, 0x7}, {0x2, 0x9}, {0x0, 0x7}, {0x6, 0x4}, {0x0, 0x4}, {0x6, 0x5}, {0x6, 0x8}, {0x0, 0x4}, {0x0, 0x5}, {0x7}, {0x5, 0x4}, {0x2}, {0x4, 0x5}, {0x1, 0x8}, {0x7, 0x6}, {0x4, 0x7}, {}, {0x0, 0x12}, {0x5, 0x5}, {0x1}, {0x0, 0x5}, {0x0, 0x5}, {0x7, 0x9}, {0x5, 0x9}, {0x3, 0x8}, {0x5, 0x7}, {0x7, 0xa}, {0x0, 0x7}, {0x0, 0x7}, {0x6, 0x2}, {0x6, 0x9}, {0x2, 0xa}, {0x0, 0x1}, {0x4}, {0x5, 0xa}, {0x3, 0x4}, {0x7, 0x3}, {0x6, 0xa}, {0x1, 0x9}, {0x7, 0x3}, {0x7, 0x9}, {0x3, 0x4}, {0x7, 0xa}, {0x1, 0x3}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0xa, 0x1, [0x16, 0x4, 0x1, 0x18, 0x1, 0x30]}, @NL80211_TXRATE_HT={0xa, 0x2, [{0x1, 0x5}, {0x1, 0x8}, {0x7}, {0x2}, {0x6, 0x4}, {0x6, 0x4}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x1, 0x7, 0x1, 0x4, 0x8, 0x1, 0x6]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x6, 0x40, 0x100, 0x7c00, 0x6, 0x400, 0x6]}}]}, @NL80211_BAND_2GHZ={0x50, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1e, 0x1, [0x36, 0x12, 0x48, 0x48, 0x1, 0x2, 0x9, 0x4, 0x16, 0x1b, 0x36, 0x2, 0x60, 0x17, 0x9, 0x9, 0x16, 0x12, 0x3, 0x60, 0x5, 0x1, 0x1b, 0x12, 0x48, 0x0]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x22, 0x2, [{0x2, 0xa}, {0x4, 0x9}, {0x5, 0x1}, {0x0, 0x8}, {0x1, 0x7}, {0x7, 0x6}, {0x0, 0x8}, {0x6, 0x7}, {0x2, 0xa}, {0x5, 0x5}, {0x5, 0x9}, {0x4, 0x7}, {0x1, 0x9}, {0x5, 0x3}, {0x5, 0x4}, {0x7, 0x3}, {0x3, 0x3}, {0x6, 0x8}, {0x2}, {0x5, 0x8}, {0x1}, {0x5, 0x9}, {0x6, 0x6}, {0x1, 0x3}, {0x1, 0xa}, {0x2, 0x4}, {0x0, 0x5}, {0x0, 0x1}, {0x6, 0x1}, {0x5, 0x4}]}]}, @NL80211_BAND_60GHZ={0x24, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1d, 0x1, [0xc, 0x9, 0x36, 0x2, 0x1, 0x1b, 0x48, 0x0, 0x5, 0x16, 0x0, 0x35, 0x48, 0x5, 0x60, 0x30, 0x30, 0xb, 0x18, 0x5, 0x2e, 0x6, 0x1b, 0x8, 0x48]}]}, @NL80211_BAND_5GHZ={0x2c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x40, 0xe385, 0x2, 0x3f, 0x3f, 0x81, 0x705, 0x4]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x9, 0x2, 0x3ff, 0x2d, 0x9633, 0xf50f, 0x1]}}]}, @NL80211_BAND_6GHZ={0x24, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x5, 0x7, 0xed, 0xfffa, 0x100, 0x0, 0x2]}}, @NL80211_TXRATE_LEGACY={0x9, 0x1, [0x48, 0x48, 0x4, 0x48, 0x18]}]}]}]}, 0x860}}, 0x20000000) syz_mount_image$nfs4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000000500), 0x0, &(0x7f0000000540)) move_mount(0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0, 0x0) [ 873.047265] FAULT_INJECTION: forcing a failure. [ 873.047265] name failslab, interval 1, probability 0, space 0, times 0 [ 873.050170] CPU: 1 PID: 7306 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 873.051950] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 873.054084] Call Trace: [ 873.054793] dump_stack+0x107/0x167 [ 873.055727] should_fail.cold+0x5/0xa [ 873.056721] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 873.058089] should_failslab+0x5/0x20 08:16:40 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x8035, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:40 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) [ 873.059107] kmem_cache_alloc_trace+0x55/0x320 08:16:40 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev, 0x8}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 873.060488] io_uring_alloc_task_context+0x4a3/0x6a0 [ 873.061877] ? io_import_iovec+0x1120/0x1120 [ 873.063214] io_uring_setup+0x1dd1/0x2980 [ 873.064317] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 873.065631] ? wait_for_completion_io+0x270/0x270 [ 873.066935] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 873.068301] ? syscall_enter_from_user_mode+0x1d/0x50 [ 873.069654] do_syscall_64+0x33/0x40 [ 873.070612] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 873.071949] RIP: 0033:0x7ffa83495b19 [ 873.072905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 873.077622] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 873.079563] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 873.081375] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 873.083216] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 873.084477] FAULT_INJECTION: forcing a failure. [ 873.084477] name failslab, interval 1, probability 0, space 0, times 0 [ 873.085045] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 873.085061] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 873.087945] CPU: 0 PID: 7316 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 873.088733] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 873.089707] Call Trace: [ 873.090025] dump_stack+0x107/0x167 [ 873.090453] should_fail.cold+0x5/0xa [ 873.090917] ? create_object.isra.0+0x3a/0xa30 [ 873.091449] should_failslab+0x5/0x20 [ 873.091908] kmem_cache_alloc+0x5b/0x310 [ 873.092383] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 873.092945] ? trace_hardirqs_on+0x5b/0x180 [ 873.093455] create_object.isra.0+0x3a/0xa30 [ 873.093981] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 873.094577] kmem_cache_alloc_trace+0x151/0x320 [ 873.095134] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 873.095767] io_uring_setup+0x14f6/0x2980 [ 873.096256] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 873.096857] ? wait_for_completion_io+0x270/0x270 [ 873.097431] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 873.098019] ? syscall_enter_from_user_mode+0x1d/0x50 [ 873.098620] do_syscall_64+0x33/0x40 [ 873.099044] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 873.099613] RIP: 0033:0x7f466af67b19 [ 873.100022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 873.102056] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 873.102935] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 873.103723] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 873.104507] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 873.105298] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 873.106097] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 873.123998] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:16:40 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x8100, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:40 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) 08:16:40 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x8) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40042409, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffff0600ffffffff"], 0x28}}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="050000000000000000002e"], 0x28}}, 0x0) sendmsg$NL80211_CMD_AUTHENTICATE(r1, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x60, r3, 0x400, 0x70bd29, 0x25dfdbfe, {{}, {@void, @void}}, [@key_params=[@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}], @NL80211_ATTR_MAC={0xa, 0x6, @random="543c8eda03c2"}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}]}, 0x60}, 0x1, 0x0, 0x0, 0x40000881}, 0x1) r4 = syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) preadv2(r4, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/35, 0x23}], 0x1, 0x10001, 0xeea2, 0x11) 08:16:40 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{0x0}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) [ 873.199389] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 08:16:40 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev, 0x3c}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:40 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x240, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:16:40 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 36) [ 873.218581] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 873.219539] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.5'. [ 873.240544] FAULT_INJECTION: forcing a failure. [ 873.240544] name failslab, interval 1, probability 0, space 0, times 0 [ 873.243295] CPU: 1 PID: 7337 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 873.244873] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 873.246850] Call Trace: [ 873.247470] dump_stack+0x107/0x167 [ 873.248413] should_fail.cold+0x5/0xa [ 873.249297] ? create_object.isra.0+0x3a/0xa30 [ 873.250343] should_failslab+0x5/0x20 [ 873.251242] kmem_cache_alloc+0x5b/0x310 [ 873.252181] create_object.isra.0+0x3a/0xa30 [ 873.253192] kmemleak_alloc_percpu+0xa0/0x100 [ 873.254209] pcpu_alloc+0x4e2/0x1240 [ 873.255097] ? io_async_queue_proc+0x80/0x80 [ 873.256283] percpu_ref_init+0x31/0x3d0 [ 873.257254] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 873.258505] io_uring_setup+0x14f6/0x2980 [ 873.259471] ? __do_sys_io_uring_enter+0x1890/0x1890 08:16:40 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 30) [ 873.260625] ? wait_for_completion_io+0x270/0x270 [ 873.261854] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 873.263311] ? syscall_enter_from_user_mode+0x1d/0x50 [ 873.264501] do_syscall_64+0x33/0x40 08:16:40 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{0x0}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) [ 873.265469] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 873.266841] RIP: 0033:0x7f466af67b19 [ 873.267713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 873.271985] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 873.273997] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 873.275692] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 873.277337] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 873.278981] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 873.279703] FAULT_INJECTION: forcing a failure. [ 873.279703] name failslab, interval 1, probability 0, space 0, times 0 [ 873.280626] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 873.282862] CPU: 0 PID: 7340 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 873.283683] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 873.284692] Call Trace: [ 873.285007] dump_stack+0x107/0x167 [ 873.285448] should_fail.cold+0x5/0xa [ 873.285899] ? create_object.isra.0+0x3a/0xa30 [ 873.286444] should_failslab+0x5/0x20 [ 873.286913] kmem_cache_alloc+0x5b/0x310 [ 873.287353] create_object.isra.0+0x3a/0xa30 [ 873.287867] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 873.288458] __kmalloc+0x16e/0x390 [ 873.288877] io_wq_create+0xeb/0xc00 [ 873.289322] io_uring_alloc_task_context+0x1f1/0x6a0 [ 873.289921] ? io_import_iovec+0x1120/0x1120 [ 873.290443] ? io_apoll_task_func+0x2d0/0x2d0 [ 873.290975] ? __io_req_find_next+0x300/0x300 [ 873.291509] io_uring_setup+0x1dd1/0x2980 [ 873.292012] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 873.292605] ? wait_for_completion_io+0x270/0x270 [ 873.293191] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 873.293813] ? syscall_enter_from_user_mode+0x1d/0x50 [ 873.294421] do_syscall_64+0x33/0x40 [ 873.294870] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 873.295479] RIP: 0033:0x7ffa83495b19 [ 873.295908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 873.298115] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 873.299034] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 873.299879] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 873.300739] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 873.301563] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 873.302394] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:16:40 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}]}) [ 873.365458] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:16:53 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 31) 08:16:53 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x8847, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 886.180421] FAULT_INJECTION: forcing a failure. [ 886.180421] name failslab, interval 1, probability 0, space 0, times 0 [ 886.183621] CPU: 1 PID: 7359 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 886.185494] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 886.188160] Call Trace: [ 886.188890] dump_stack+0x107/0x167 [ 886.189862] should_fail.cold+0x5/0xa [ 886.191023] ? io_wq_create+0x6ef/0xc00 [ 886.192274] should_failslab+0x5/0x20 [ 886.193006] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 886.193316] kmem_cache_alloc_node_trace+0x59/0x340 [ 886.193351] io_wq_create+0x6ef/0xc00 [ 886.196832] io_uring_alloc_task_context+0x1f1/0x6a0 [ 886.197427] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.5'. [ 886.198393] ? io_import_iovec+0x1120/0x1120 [ 886.198421] ? io_apoll_task_func+0x2d0/0x2d0 [ 886.198446] ? __io_req_find_next+0x300/0x300 [ 886.203492] io_uring_setup+0x1dd1/0x2980 [ 886.204610] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 886.206026] ? wait_for_completion_io+0x270/0x270 [ 886.207388] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 886.209008] ? syscall_enter_from_user_mode+0x1d/0x50 [ 886.210394] do_syscall_64+0x33/0x40 [ 886.211400] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 886.212946] RIP: 0033:0x7ffa83495b19 [ 886.214060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 886.219144] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 08:16:53 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 37) 08:16:53 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, 0x0) 08:16:53 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:16:53 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x8) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40042409, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffff0600ffffffff"], 0x28}}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="050000000000000000002e"], 0x28}}, 0x0) sendmsg$NL80211_CMD_AUTHENTICATE(r1, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x60, r3, 0x400, 0x70bd29, 0x25dfdbfe, {{}, {@void, @void}}, [@key_params=[@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}], @NL80211_ATTR_MAC={0xa, 0x6, @random="543c8eda03c2"}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}]}, 0x60}, 0x1, 0x0, 0x0, 0x40000881}, 0x1) r4 = syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) preadv2(r4, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/35, 0x23}], 0x1, 0x10001, 0xeea2, 0x11) 08:16:53 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev, 0x300}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:16:53 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0xa00, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) [ 886.221250] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 886.223316] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 886.225325] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 886.227215] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 886.229164] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 886.241184] FAULT_INJECTION: forcing a failure. [ 886.241184] name failslab, interval 1, probability 0, space 0, times 0 [ 886.242892] CPU: 0 PID: 7371 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 886.244022] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 886.245293] Call Trace: [ 886.245668] dump_stack+0x107/0x167 [ 886.246258] should_fail.cold+0x5/0xa [ 886.246868] ? percpu_ref_init+0xd8/0x3d0 [ 886.247512] should_failslab+0x5/0x20 [ 886.248133] kmem_cache_alloc_trace+0x55/0x320 [ 886.248830] ? io_async_queue_proc+0x80/0x80 [ 886.249548] percpu_ref_init+0xd8/0x3d0 [ 886.250188] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 886.250937] io_uring_setup+0x14f6/0x2980 [ 886.251469] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 886.252095] ? wait_for_completion_io+0x270/0x270 [ 886.252712] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 886.253359] ? syscall_enter_from_user_mode+0x1d/0x50 [ 886.254023] do_syscall_64+0x33/0x40 [ 886.254504] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 886.255337] RIP: 0033:0x7f466af67b19 [ 886.255944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 886.258553] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 886.259491] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 886.260373] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 886.261289] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 886.262429] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 886.263449] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:16:53 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x8) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40042409, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002c00010d000000000000e4ffffff0600ffffffff"], 0x28}}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="050000000000000000002e"], 0x28}}, 0x0) sendmsg$NL80211_CMD_AUTHENTICATE(r1, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x60, r3, 0x400, 0x70bd29, 0x25dfdbfe, {{}, {@void, @void}}, [@key_params=[@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}], @NL80211_ATTR_MAC={0xa, 0x6, @random="543c8eda03c2"}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}]}, 0x60}, 0x1, 0x0, 0x0, 0x40000881}, 0x1) r4 = syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) preadv2(r4, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/35, 0x23}], 0x1, 0x10001, 0xeea2, 0x11) [ 886.280266] loop0: detected capacity change from 0 to 2048 [ 886.285982] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 886.321384] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.5'. 08:17:05 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev, 0x3c00}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:05 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 32) 08:17:05 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x8e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, 0x0) semtimedop(r0, &(0x7f0000000100)=[{0x0, 0x52e5, 0x1000}, {0x4, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)) r1 = semget$private(0x0, 0x4000, 0x0) semctl$SEM_STAT_ANY(r1, 0x2, 0x14, &(0x7f00000010c0)=""/79) semctl$IPC_RMID(r1, 0x0, 0x0) r2 = semget$private(0x0, 0x2, 0x320) semtimedop(r2, &(0x7f00000001c0)=[{0x3, 0xed, 0x1000}, {0x1, 0x92, 0x1000}, {0x1, 0x2, 0x1800}, {0x0, 0x1}], 0x4, &(0x7f0000000200)) semop(r0, &(0x7f0000000000)=[{0x0, 0x8, 0x800}, {0x2, 0x5, 0x3800}, {0x2, 0xff81, 0x800}], 0x3) semctl$SEM_INFO(0x0, 0x5, 0x13, 0x0) unshare(0x48020200) 08:17:05 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:17:05 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x4002, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:17:05 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 38) 08:17:05 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, 0x0) [ 898.263263] FAULT_INJECTION: forcing a failure. [ 898.263263] name failslab, interval 1, probability 0, space 0, times 0 [ 898.264657] CPU: 0 PID: 7402 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 898.265474] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 898.266455] Call Trace: [ 898.266775] dump_stack+0x107/0x167 [ 898.267223] should_fail.cold+0x5/0xa [ 898.267682] ? create_object.isra.0+0x3a/0xa30 [ 898.268231] should_failslab+0x5/0x20 [ 898.268686] kmem_cache_alloc+0x5b/0x310 [ 898.269180] create_object.isra.0+0x3a/0xa30 [ 898.269713] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 898.270323] kmem_cache_alloc_trace+0x151/0x320 [ 898.270879] ? io_async_queue_proc+0x80/0x80 [ 898.271414] percpu_ref_init+0xd8/0x3d0 [ 898.271891] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 898.272187] FAULT_INJECTION: forcing a failure. [ 898.272187] name failslab, interval 1, probability 0, space 0, times 0 [ 898.272540] io_uring_setup+0x14f6/0x2980 [ 898.275353] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 898.275956] ? wait_for_completion_io+0x270/0x270 [ 898.276536] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 898.277154] ? syscall_enter_from_user_mode+0x1d/0x50 [ 898.277766] do_syscall_64+0x33/0x40 [ 898.278210] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 898.278812] RIP: 0033:0x7f466af67b19 [ 898.279272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 898.281433] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 898.282333] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 898.283183] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 898.284022] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 898.284861] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 898.285702] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 898.286566] CPU: 1 PID: 7406 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 898.287245] loop0: detected capacity change from 0 to 2048 [ 898.288019] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 898.288027] Call Trace: [ 898.288050] dump_stack+0x107/0x167 [ 898.291715] should_fail.cold+0x5/0xa [ 898.292525] ? create_object.isra.0+0x3a/0xa30 [ 898.293486] should_failslab+0x5/0x20 [ 898.294286] kmem_cache_alloc+0x5b/0x310 [ 898.295147] ? io_wq_create+0x114/0xc00 [ 898.295982] create_object.isra.0+0x3a/0xa30 [ 898.296899] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 898.298211] kmem_cache_alloc_node_trace+0x16d/0x340 [ 898.299294] io_wq_create+0x6ef/0xc00 [ 898.300285] io_uring_alloc_task_context+0x1f1/0x6a0 [ 898.301396] ? io_import_iovec+0x1120/0x1120 [ 898.302517] ? io_apoll_task_func+0x2d0/0x2d0 [ 898.303473] ? __io_req_find_next+0x300/0x300 [ 898.304630] io_uring_setup+0x1dd1/0x2980 [ 898.305548] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 898.306851] ? wait_for_completion_io+0x270/0x270 [ 898.307895] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 898.308982] ? syscall_enter_from_user_mode+0x1d/0x50 [ 898.310047] do_syscall_64+0x33/0x40 08:17:05 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x8848, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 898.310816] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 898.312029] RIP: 0033:0x7ffa83495b19 [ 898.312796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 898.317033] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 898.318934] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 898.320711] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 898.322514] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 898.324282] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 898.326072] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:17:05 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0xa000000, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:17:05 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x8864, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:05 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev, 0x1000000}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:05 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 33) 08:17:05 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:17:05 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 39) 08:17:05 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, 0x0) [ 898.425542] FAULT_INJECTION: forcing a failure. [ 898.425542] name failslab, interval 1, probability 0, space 0, times 0 [ 898.428144] CPU: 1 PID: 7421 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 898.429684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 898.431556] Call Trace: [ 898.432166] dump_stack+0x107/0x167 [ 898.432996] should_fail.cold+0x5/0xa [ 898.433862] ? create_object.isra.0+0x3a/0xa30 [ 898.434901] should_failslab+0x5/0x20 [ 898.435775] kmem_cache_alloc+0x5b/0x310 [ 898.436698] ? io_wq_create+0x114/0xc00 [ 898.437600] create_object.isra.0+0x3a/0xa30 [ 898.438585] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 898.439738] kmem_cache_alloc_node_trace+0x16d/0x340 [ 898.440882] io_wq_create+0x6ef/0xc00 [ 898.441747] io_uring_alloc_task_context+0x1f1/0x6a0 [ 898.442885] ? io_import_iovec+0x1120/0x1120 [ 898.443885] ? io_apoll_task_func+0x2d0/0x2d0 [ 898.444893] ? __io_req_find_next+0x300/0x300 [ 898.445912] io_uring_setup+0x1dd1/0x2980 [ 898.446852] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 898.448003] ? wait_for_completion_io+0x270/0x270 [ 898.449108] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 898.450279] ? syscall_enter_from_user_mode+0x1d/0x50 [ 898.450459] FAULT_INJECTION: forcing a failure. [ 898.450459] name failslab, interval 1, probability 0, space 0, times 0 [ 898.451458] do_syscall_64+0x33/0x40 [ 898.451479] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 898.451495] RIP: 0033:0x7ffa83495b19 [ 898.455826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 898.459934] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 898.461635] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 898.463240] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 898.464841] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 898.466441] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 898.468051] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 898.469672] CPU: 0 PID: 7425 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 898.470626] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 898.471783] Call Trace: [ 898.472149] dump_stack+0x107/0x167 [ 898.472669] should_fail.cold+0x5/0xa [ 898.473204] ? create_object.isra.0+0x3a/0xa30 [ 898.473840] should_failslab+0x5/0x20 [ 898.474379] kmem_cache_alloc+0x5b/0x310 [ 898.474959] create_object.isra.0+0x3a/0xa30 [ 898.475594] kmemleak_alloc_percpu+0xa0/0x100 [ 898.476236] pcpu_alloc+0x4e2/0x1240 [ 898.476770] ? io_async_queue_proc+0x80/0x80 [ 898.477390] percpu_ref_init+0x31/0x3d0 [ 898.477948] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 898.478706] io_uring_setup+0x14f6/0x2980 [ 898.479304] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 898.480013] ? wait_for_completion_io+0x270/0x270 [ 898.480704] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 898.481431] ? syscall_enter_from_user_mode+0x1d/0x50 08:17:05 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x8906, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:05 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0x1}], 0x1}, 0x0) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) [ 898.482155] do_syscall_64+0x33/0x40 [ 898.482811] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 898.483545] RIP: 0033:0x7f466af67b19 [ 898.484075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 898.486639] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 898.487714] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 898.488721] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 898.489715] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 898.490718] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 898.491707] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:17:05 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x40020000, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) [ 898.495147] loop0: detected capacity change from 0 to 2048 08:17:05 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev, 0x3000000}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:05 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffbfffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0x10001, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101002, 0x20) sendfile(r0, r2, 0x0, 0x20d315) 08:17:06 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x4, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:06 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}]}) 08:17:06 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 34) 08:17:06 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0x1}], 0x1}, 0x0) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) [ 898.657539] loop0: detected capacity change from 0 to 2048 08:17:06 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0xffffff7f, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:17:06 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev, 0x8000000}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 898.687092] FAULT_INJECTION: forcing a failure. [ 898.687092] name failslab, interval 1, probability 0, space 0, times 0 [ 898.688588] CPU: 0 PID: 7451 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 898.689530] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 898.690699] Call Trace: [ 898.691071] dump_stack+0x107/0x167 [ 898.691588] should_fail.cold+0x5/0xa [ 898.692131] ? create_object.isra.0+0x3a/0xa30 [ 898.692773] should_failslab+0x5/0x20 [ 898.693307] kmem_cache_alloc+0x5b/0x310 [ 898.693891] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 898.694604] ? trace_hardirqs_on+0x5b/0x180 [ 898.695213] create_object.isra.0+0x3a/0xa30 [ 898.695823] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 898.696541] kmem_cache_alloc_trace+0x151/0x320 [ 898.697209] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 898.697965] io_uring_setup+0x14f6/0x2980 [ 898.698548] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 898.699266] ? wait_for_completion_io+0x270/0x270 [ 898.699966] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 898.700705] ? syscall_enter_from_user_mode+0x1d/0x50 [ 898.701433] do_syscall_64+0x33/0x40 [ 898.701959] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 898.702676] RIP: 0033:0x7ffa83495b19 [ 898.703209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 898.705772] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 898.706827] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 898.707827] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 898.708828] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 898.709822] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 898.710819] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 898.714983] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5 [ 898.714983] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 898.714983] [ 898.717020] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 898.717020] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 898.717020] [ 898.719150] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:17:20 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 40) 08:17:20 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 35) 08:17:20 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}]}) 08:17:20 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0x1}], 0x1}, 0x0) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:17:20 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev, 0x3c000000}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:20 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:20 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0x7ffff000}], 0x1}, 0x10044001) 08:17:20 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000000480)=[{{&(0x7f0000000040)={0x2, 0x4e22, @remote}, 0x10, 0x0}}], 0x1, 0x10) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@initdev, @in6=@mcast2}}, {{@in=@loopback}, 0x0, @in6=@loopback}}, &(0x7f0000000000)=0xe8) sendmsg$nl_generic(r3, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x28, 0x39, 0x400, 0x70bd27, 0x25dfdbfb, {0x18}, [@typed={0x14, 0x3a, 0x0, 0x0, @ipv6=@private2}]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x48000) [ 913.007083] FAULT_INJECTION: forcing a failure. [ 913.007083] name failslab, interval 1, probability 0, space 0, times 0 [ 913.009806] CPU: 0 PID: 7473 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 913.011173] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 913.012824] Call Trace: [ 913.013362] dump_stack+0x107/0x167 [ 913.014094] should_fail.cold+0x5/0xa [ 913.014857] ? __d_alloc+0x2a/0x990 [ 913.015589] should_failslab+0x5/0x20 [ 913.016369] kmem_cache_alloc+0x5b/0x310 [ 913.017185] __d_alloc+0x2a/0x990 [ 913.017879] ? find_held_lock+0x2c/0x110 [ 913.018703] d_alloc_pseudo+0x19/0x70 [ 913.019475] alloc_file_pseudo+0xce/0x250 [ 913.020011] loop0: detected capacity change from 0 to 2048 [ 913.020296] ? trace_hardirqs_on+0x5b/0x180 [ 913.020323] ? alloc_file+0x5a0/0x5a0 [ 913.023215] anon_inode_getfile+0xc8/0x1f0 [ 913.024084] io_uring_setup+0x138b/0x2980 [ 913.024928] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 913.025947] ? wait_for_completion_io+0x270/0x270 [ 913.026931] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 913.027995] ? syscall_enter_from_user_mode+0x1d/0x50 [ 913.029020] do_syscall_64+0x33/0x40 [ 913.029768] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 913.030789] RIP: 0033:0x7f466af67b19 [ 913.031554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 913.035241] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 913.035476] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5 [ 913.035476] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 913.035476] [ 913.036762] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 913.036774] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 913.036786] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 913.036797] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 913.036821] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 913.040622] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 913.040622] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 913.040622] [ 913.053175] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:17:20 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev, 0xfeffffff}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 913.079711] FAULT_INJECTION: forcing a failure. [ 913.079711] name failslab, interval 1, probability 0, space 0, times 0 [ 913.082546] CPU: 1 PID: 7481 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 913.084266] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 913.086318] Call Trace: [ 913.086986] dump_stack+0x107/0x167 [ 913.087918] should_fail.cold+0x5/0xa [ 913.088858] ? create_object.isra.0+0x3a/0xa30 [ 913.089979] should_failslab+0x5/0x20 [ 913.090880] kmem_cache_alloc+0x5b/0x310 [ 913.091861] create_object.isra.0+0x3a/0xa30 [ 913.092905] kmemleak_alloc_percpu+0xa0/0x100 [ 913.093884] pcpu_alloc+0x4e2/0x1240 [ 913.094759] ? io_async_queue_proc+0x80/0x80 [ 913.095741] percpu_ref_init+0x31/0x3d0 [ 913.096681] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 913.097978] io_uring_setup+0x14f6/0x2980 [ 913.098911] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 913.100133] ? wait_for_completion_io+0x270/0x270 [ 913.101309] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 913.102496] ? syscall_enter_from_user_mode+0x1d/0x50 [ 913.103725] do_syscall_64+0x33/0x40 [ 913.104603] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 913.105825] RIP: 0033:0x7ffa83495b19 [ 913.106700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 913.111116] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 913.112898] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 913.114561] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 913.116252] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 913.117935] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 913.119651] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:17:20 executing program 5: r0 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r0, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000640)={'macvtap0\x00'}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r1, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0) r2 = syz_mount_image$nfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0xffff, 0x6, &(0x7f0000000580)=[{&(0x7f0000000140)="7198d186a59a5db79177effe54b041b9c4b79b440be46fb468c384c2392fc88d90040ccb8033ad782aa2b4238e100e8b8551e8a225456c6552f608ecd004c36b13460e69e7d7bfba763e540cb10994665711bf6e6af38e286cb3fc09dc50f7bec78bf320d50046742b8090052ffe6110f55dace0d24e45fdd20c978973c57cfb988cc2e21ebaeed0e45ec429cc1fb78a10f823e40fa8a644c748e300d6dfa0389214aa7be8ad48ee5ee5d20c7017708511ebd224b0f8820f4463833071b7feca6566f3464ec15cb9887258010fbc7c8562bfc21d3d1fe6d7e83959acf315233a9f0557bfbea523622561a331c99ced30aa5ac013d0d382f8f9", 0xf9, 0x100000000}, {&(0x7f00000000c0)="51c7309c3a78a1e5c1eb6d08a77a500c289690b24a39057c59d4855191867228d3722e57036c18e2a2", 0x29, 0x9}, {&(0x7f0000000280)="658a9cbc01c53bbd0612c34ca24db4b96d8363020c57e7988ed2ac9f99d1ff10288e93e8b41d93670e82ffa044f63c9e94aa683ae95780578eb076fe05e1e0bcbb92dfc47194dedd9a83cbe97ef3f9ec11b5c107a234412c9afb6ffcb8fc1354210c4ae211a9c1bce97f8e1ce0edd4058e5bbcb70bd4735c6665e64ad132880190836ed516ef46fc19df3d033219ac8e7b77b8a0a2fd954c3acd052525840cd77bcf7495db6178f511c8699c07f87e9959aa58a7e7558afbff665e46a61cf408ce5bca47", 0xc4, 0x3}, {&(0x7f0000000380)="d7fc47095fb8b539349e0764c9c5f9e9471d29614ae4f33bcbe9181b853a8f3eac4776c537d324df27e4acb9dc2c", 0x2e, 0x1ff}, {&(0x7f00000003c0)="c68cc1daa831017273e6e06dfcd50c896b493b5a68b27a73ec1bc0263e4ca4afb3bbb9ad435f033aeae9990b69d096ce29f0a0469483656233405a09add8e3a08ed7ee521a0519c7e03e8c95e5ec873cc68c3c9b3793002994da750444e18f37fb2e6df42a4a196a003268cc4221bd09e4099c87e715c89b89238338fe9474f94f4adf7888706643b5dd0899be7b216684b44a426fd70149de9e132777586e4ec6fe9e740a2cd6ad938221bd11cfb9998a6366bfbf3c1fdde7202717f1a17d6853feecaf9d6dfcd545fe7f39309e83b6081235066c1bfd00219e5c0d32dc8469aebc44e36ae8fa36b1e8", 0xea, 0x8}, {&(0x7f00000004c0)="9885718a7486494cba31a93587551144c5ffcde512891f3cfc9bb00e767b138feaefe73b4b63cb0e61168bc8bde8dc5dee4135b48a366cd43ab959508f13d44bee345a93054b70429264ea1892672780742aa5c2ed58ebb4c4c7cc31804a11f891440735bce2c7e52a33fa594b7723f9c75278583da5c476362729bdb265f2390886558cb91cc50a9a0368dc6bb051f2992630eef598c73bcd19bfd6933edc3338a160cf1620dc41bbbee8557a0e012af549281f0a", 0xb5}], 0x70015, &(0x7f0000000e00)=ANY=[@ANYBLOB="272c002c002c2c7b2e2e272f212c7d2c002c002c5c21fd2c2e2c686173682c7569643d", @ANYRESDEC, @ANYBLOB="2c49cf19655268643e", @ANYRESDEC, @ANYBLOB=',fsname=,-}(:-*@.-,dont_measure,\x00']) write$binfmt_elf64(r2, &(0x7f00000006c0)={{0x7f, 0x45, 0x4c, 0x46, 0xde, 0x5, 0xfe, 0x19, 0x7d, 0x2, 0x6, 0x1f, 0x212, 0x40, 0x94, 0x1f, 0x1, 0x38, 0x1, 0x9, 0x9, 0xff}, [{0x60000007, 0x6, 0x7fff, 0x2, 0x80000000, 0x2, 0x5, 0x7}], "5d5d2aba0f29781317c056cf3cc00d1923f33d434444d17c000d9091794c83ffd65bd0724688c028b1f0825c27a6a6d661715204cedad9177c2f610afc193aa8c5c306065249827d947fed13a4af682e50b83a867925100d6ba451bff785aca5dbb8f6c5babee6e51c492e3c93da58903fdd54d7cc7730ff19dbfc6fea20de55df5f8ef9b13608c574f370346737e725a691c46717e1444d323eb076fcfa0c4e3305f60b0e512ee675db5b0399fafb8da1a8389c013db7c45260eeb84232d1ae6ad745", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x73b) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000f, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) 08:17:20 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x2, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:20 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}]}) 08:17:20 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev, 0xfffffffe}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:20 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x129) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000140)="aff643dd209a751214c0b3cb7e9951f44b2d61d4e42f02293298ff2b6dcba79ec2fbeed4f91029a353a3015a019d418f37609a6993e028a3abc4ebaa42c7c206bf13c936c1905cfad0f80d03d88d66abc049fabe7d4c61e04cba0340ea603b7df87f2dd59debef5a2d84fcafd8815e290725a8a15817aabb633197346ce6f18a3d2001026099cf19d09657d300"/153, 0x99}], 0x1) r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x8000) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2}) 08:17:20 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 41) [ 913.214781] loop0: detected capacity change from 0 to 2048 [ 913.222030] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5 [ 913.222030] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 913.222030] [ 913.224637] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 913.224637] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 913.224637] [ 913.226503] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:17:20 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x3, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 913.242420] FAULT_INJECTION: forcing a failure. [ 913.242420] name failslab, interval 1, probability 0, space 0, times 0 [ 913.243788] CPU: 0 PID: 7498 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 913.244593] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 913.245560] Call Trace: [ 913.245871] dump_stack+0x107/0x167 [ 913.246299] should_fail.cold+0x5/0xa [ 913.246747] ? create_object.isra.0+0x3a/0xa30 [ 913.247278] should_failslab+0x5/0x20 [ 913.247754] kmem_cache_alloc+0x5b/0x310 [ 913.248226] create_object.isra.0+0x3a/0xa30 [ 913.248739] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 913.249331] kmem_cache_alloc+0x159/0x310 [ 913.249816] __d_alloc+0x2a/0x990 [ 913.250218] ? find_held_lock+0x2c/0x110 [ 913.250691] d_alloc_pseudo+0x19/0x70 [ 913.251132] alloc_file_pseudo+0xce/0x250 [ 913.251621] ? trace_hardirqs_on+0x5b/0x180 [ 913.252120] ? alloc_file+0x5a0/0x5a0 [ 913.252571] anon_inode_getfile+0xc8/0x1f0 [ 913.253076] io_uring_setup+0x138b/0x2980 [ 913.253563] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 913.254150] ? wait_for_completion_io+0x270/0x270 [ 913.254724] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 913.255340] ? syscall_enter_from_user_mode+0x1d/0x50 [ 913.255949] do_syscall_64+0x33/0x40 [ 913.256377] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 913.256969] RIP: 0033:0x7f466af67b19 [ 913.257399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 913.259536] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 913.260412] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 913.261238] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 913.262063] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 913.262882] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 913.263716] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:17:20 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev, 0xffffffff}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:20 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 36) [ 913.329073] FAULT_INJECTION: forcing a failure. [ 913.329073] name failslab, interval 1, probability 0, space 0, times 0 [ 913.331767] CPU: 1 PID: 7507 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 913.333302] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 913.335154] Call Trace: [ 913.335770] dump_stack+0x107/0x167 [ 913.336589] should_fail.cold+0x5/0xa [ 913.337449] ? create_object.isra.0+0x3a/0xa30 [ 913.338470] should_failslab+0x5/0x20 [ 913.339323] kmem_cache_alloc+0x5b/0x310 [ 913.340257] create_object.isra.0+0x3a/0xa30 [ 913.341254] kmemleak_alloc_percpu+0xa0/0x100 [ 913.342264] pcpu_alloc+0x4e2/0x1240 [ 913.343118] ? io_async_queue_proc+0x80/0x80 [ 913.344116] percpu_ref_init+0x31/0x3d0 [ 913.345013] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 913.346229] io_uring_setup+0x14f6/0x2980 [ 913.347167] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 913.348315] ? wait_for_completion_io+0x270/0x270 [ 913.349419] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 913.350595] ? syscall_enter_from_user_mode+0x1d/0x50 [ 913.351767] do_syscall_64+0x33/0x40 [ 913.352609] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 913.353758] RIP: 0033:0x7ffa83495b19 [ 913.354598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 913.358702] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 913.360411] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 913.362005] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 913.363605] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 913.365205] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 913.366817] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 913.379505] FAULT_INJECTION: forcing a failure. [ 913.379505] name failslab, interval 1, probability 0, space 0, times 0 [ 913.380911] CPU: 0 PID: 7512 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 913.381708] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 913.382681] Call Trace: [ 913.382999] dump_stack+0x107/0x167 [ 913.383440] should_fail.cold+0x5/0xa [ 913.383885] ? __alloc_file+0x21/0x320 [ 913.384341] should_failslab+0x5/0x20 [ 913.384784] kmem_cache_alloc+0x5b/0x310 08:17:20 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 42) [ 913.385261] __alloc_file+0x21/0x320 [ 913.385888] alloc_empty_file+0x6d/0x170 [ 913.386364] alloc_file+0x5e/0x5a0 [ 913.386781] alloc_file_pseudo+0x16a/0x250 [ 913.387278] ? alloc_file+0x5a0/0x5a0 [ 913.387740] anon_inode_getfile+0xc8/0x1f0 [ 913.388238] io_uring_setup+0x138b/0x2980 [ 913.388724] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 913.389315] ? wait_for_completion_io+0x270/0x270 [ 913.389891] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 913.390502] ? syscall_enter_from_user_mode+0x1d/0x50 [ 913.391105] do_syscall_64+0x33/0x40 [ 913.391551] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 913.392150] RIP: 0033:0x7f466af67b19 [ 913.392583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 913.394745] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 913.395662] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 913.396506] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 913.397345] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 913.398181] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 913.399020] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:17:33 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0x11fffffaf}], 0x1}, 0x10044001) 08:17:33 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:33 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@delalloc}, {@max_dir_size_kb}]}) 08:17:33 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:33 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(0xffffffffffffffff, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:17:33 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 37) 08:17:33 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x1}, 0x0, 0x0, 0x40000000, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r0, 0x0, 0x9f97, 0x1000006) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ppoll(&(0x7f0000000240)=[{0xffffffffffffffff, 0x19520}, {0xffffffffffffffff, 0x82}, {0xffffffffffffffff, 0xa109}, {0xffffffffffffffff, 0x4}, {0xffffffffffffffff, 0x104ad}], 0x5, &(0x7f00000002c0), &(0x7f0000000440)={[0xb9]}, 0x8) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x189040, 0x0) fallocate(r2, 0x8, 0x7, 0x2) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000540)={{{@in=@private, @in=@private}}, {{@in=@loopback}, 0x0, @in6=@private1}}, &(0x7f0000000140)=0xfffffffffffffd1e) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00') pread64(r3, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) 08:17:33 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 43) [ 926.635457] FAULT_INJECTION: forcing a failure. [ 926.635457] name failslab, interval 1, probability 0, space 0, times 0 [ 926.639275] CPU: 1 PID: 7535 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 926.639568] FAULT_INJECTION: forcing a failure. [ 926.639568] name failslab, interval 1, probability 0, space 0, times 0 [ 926.640756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 926.640763] Call Trace: [ 926.640789] dump_stack+0x107/0x167 [ 926.640810] should_fail.cold+0x5/0xa [ 926.640836] ? percpu_ref_init+0xd8/0x3d0 [ 926.647893] should_failslab+0x5/0x20 [ 926.648713] kmem_cache_alloc_trace+0x55/0x320 [ 926.649690] ? io_async_queue_proc+0x80/0x80 [ 926.650630] percpu_ref_init+0xd8/0x3d0 [ 926.651480] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 926.652640] io_uring_setup+0x14f6/0x2980 [ 926.653526] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 926.654594] ? wait_for_completion_io+0x270/0x270 [ 926.655646] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 926.656760] ? syscall_enter_from_user_mode+0x1d/0x50 [ 926.657861] do_syscall_64+0x33/0x40 [ 926.658651] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 926.659765] RIP: 0033:0x7ffa83495b19 [ 926.660564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 926.664490] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 926.666111] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 926.667640] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 926.669164] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 926.670684] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 926.672213] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 926.673759] CPU: 0 PID: 7534 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 926.675209] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 926.677233] Call Trace: [ 926.677787] dump_stack+0x107/0x167 [ 926.678551] should_fail.cold+0x5/0xa [ 926.679352] ? create_object.isra.0+0x3a/0xa30 [ 926.680322] should_failslab+0x5/0x20 [ 926.681122] kmem_cache_alloc+0x5b/0x310 [ 926.681979] create_object.isra.0+0x3a/0xa30 [ 926.682902] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 926.683981] kmem_cache_alloc+0x159/0x310 [ 926.684848] __alloc_file+0x21/0x320 [ 926.685626] alloc_empty_file+0x6d/0x170 [ 926.686480] alloc_file+0x5e/0x5a0 [ 926.687233] alloc_file_pseudo+0x16a/0x250 [ 926.688132] ? alloc_file+0x5a0/0x5a0 [ 926.688946] anon_inode_getfile+0xc8/0x1f0 [ 926.689834] io_uring_setup+0x138b/0x2980 [ 926.690720] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 926.691802] ? wait_for_completion_io+0x270/0x270 [ 926.692834] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 926.693928] ? syscall_enter_from_user_mode+0x1d/0x50 [ 926.695018] do_syscall_64+0x33/0x40 [ 926.695813] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 926.696891] RIP: 0033:0x7f466af67b19 [ 926.697674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 926.701554] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 926.703169] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 926.704700] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 926.706203] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 926.707713] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 926.709210] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:17:34 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(0xffffffffffffffff, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:17:34 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x3, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 926.723364] loop0: detected capacity change from 0 to 2048 [ 926.733678] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5 [ 926.733678] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 926.733678] [ 926.737188] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 926.737188] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 926.737188] [ 926.747187] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:17:34 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x2, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:34 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 44) 08:17:34 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@errors_continue}, {@max_dir_size_kb}]}) 08:17:34 executing program 5: syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'prefer', '=static', @void}}, 0x22}]}) creat(&(0x7f00000000c0)='./file0\x00', 0x51) 08:17:34 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x8, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:34 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x3, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 926.867090] tmpfs: Bad value for 'mpol' [ 926.873090] tmpfs: Bad value for 'mpol' [ 926.884505] FAULT_INJECTION: forcing a failure. [ 926.884505] name failslab, interval 1, probability 0, space 0, times 0 [ 926.886962] CPU: 1 PID: 7555 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 926.888435] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 926.890268] Call Trace: [ 926.890855] dump_stack+0x107/0x167 [ 926.891670] should_fail.cold+0x5/0xa [ 926.892518] ? security_file_alloc+0x34/0x170 [ 926.893505] should_failslab+0x5/0x20 [ 926.894345] kmem_cache_alloc+0x5b/0x310 [ 926.895255] security_file_alloc+0x34/0x170 [ 926.896219] __alloc_file+0xb7/0x320 [ 926.897036] alloc_empty_file+0x6d/0x170 [ 926.897931] alloc_file+0x5e/0x5a0 [ 926.898717] alloc_file_pseudo+0x16a/0x250 [ 926.899658] ? alloc_file+0x5a0/0x5a0 [ 926.900511] anon_inode_getfile+0xc8/0x1f0 [ 926.901447] io_uring_setup+0x138b/0x2980 [ 926.902367] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 926.903483] ? wait_for_completion_io+0x270/0x270 [ 926.904572] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 926.905722] ? syscall_enter_from_user_mode+0x1d/0x50 [ 926.906861] do_syscall_64+0x33/0x40 [ 926.907690] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 926.908810] RIP: 0033:0x7f466af67b19 [ 926.909630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 926.913696] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 926.915373] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 926.916956] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 926.918534] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 926.920119] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 926.921696] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 926.931712] loop0: detected capacity change from 0 to 2048 [ 926.971074] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5 [ 926.971074] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 926.971074] [ 926.974659] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 926.974659] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 926.974659] [ 926.987306] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:17:47 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 38) 08:17:47 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x8}, 0x10044001) 08:17:47 executing program 5: shmat(0x0, &(0x7f0000ffe000/0x1000)=nil, 0x4000) r0 = shmget$private(0x0, 0x5000, 0x0, &(0x7f0000ffb000/0x5000)=nil) shmctl$SHM_LOCK(r0, 0xb) shmctl$SHM_UNLOCK(r0, 0xc) r1 = shmget(0x1, 0x3000, 0x100, &(0x7f0000ffa000/0x3000)=nil) shmat(r1, &(0x7f0000ffd000/0x3000)=nil, 0x4000) shmdt(0x0) 08:17:47 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(0xffffffffffffffff, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:17:47 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x3c, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:47 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 45) 08:17:47 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:47 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@lazytime}, {@max_dir_size_kb}]}) [ 940.587353] FAULT_INJECTION: forcing a failure. [ 940.587353] name failslab, interval 1, probability 0, space 0, times 0 [ 940.589969] CPU: 1 PID: 7576 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 940.591481] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 940.593371] Call Trace: [ 940.593975] dump_stack+0x107/0x167 [ 940.594786] should_fail.cold+0x5/0xa [ 940.595671] ? create_object.isra.0+0x3a/0xa30 [ 940.596725] should_failslab+0x5/0x20 [ 940.597591] kmem_cache_alloc+0x5b/0x310 [ 940.598509] create_object.isra.0+0x3a/0xa30 [ 940.599443] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 940.600505] kmem_cache_alloc_trace+0x151/0x320 [ 940.601459] ? io_async_queue_proc+0x80/0x80 [ 940.602369] percpu_ref_init+0xd8/0x3d0 [ 940.603179] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 940.604305] io_uring_setup+0x14f6/0x2980 [ 940.605171] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 940.606283] ? wait_for_completion_io+0x270/0x270 [ 940.607372] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 940.608546] ? syscall_enter_from_user_mode+0x1d/0x50 [ 940.609717] do_syscall_64+0x33/0x40 [ 940.610551] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 940.611683] RIP: 0033:0x7ffa83495b19 [ 940.612526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 940.616473] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 940.618027] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 940.619481] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 940.619752] loop0: detected capacity change from 0 to 2048 [ 940.621011] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 940.621023] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 940.621034] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:17:47 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, 0x0, 0x0, 0xcd04, 0x0, 0x0) 08:17:48 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x2, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 940.650588] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5 [ 940.650588] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 940.650588] [ 940.654162] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 940.654162] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 940.654162] [ 940.670206] FAULT_INJECTION: forcing a failure. [ 940.670206] name failslab, interval 1, probability 0, space 0, times 0 [ 940.672678] CPU: 1 PID: 7586 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 940.674087] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 940.675816] Call Trace: [ 940.676371] dump_stack+0x107/0x167 [ 940.677146] should_fail.cold+0x5/0xa [ 940.677940] ? create_object.isra.0+0x3a/0xa30 [ 940.678874] should_failslab+0x5/0x20 [ 940.679663] kmem_cache_alloc+0x5b/0x310 [ 940.680516] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 940.681651] create_object.isra.0+0x3a/0xa30 [ 940.682779] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 940.683946] kmem_cache_alloc+0x159/0x310 [ 940.685033] security_file_alloc+0x34/0x170 [ 940.685940] __alloc_file+0xb7/0x320 [ 940.686893] alloc_empty_file+0x6d/0x170 [ 940.687826] alloc_file+0x5e/0x5a0 [ 940.688744] alloc_file_pseudo+0x16a/0x250 [ 940.689638] ? alloc_file+0x5a0/0x5a0 [ 940.690639] anon_inode_getfile+0xc8/0x1f0 [ 940.691607] io_uring_setup+0x138b/0x2980 [ 940.692687] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 940.693737] ? wait_for_completion_io+0x270/0x270 [ 940.695016] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 940.696210] ? syscall_enter_from_user_mode+0x1d/0x50 [ 940.697282] do_syscall_64+0x33/0x40 [ 940.698051] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 940.699375] RIP: 0033:0x7f466af67b19 [ 940.700209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 940.704943] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 940.706689] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 940.708198] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 940.709684] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 940.711158] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 940.712643] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:17:48 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = pidfd_getfd(0xffffffffffffffff, r0, 0x0) r2 = syz_open_dev$rtc(&(0x7f0000000080), 0xff, 0x400103) copy_file_range(0xffffffffffffffff, &(0x7f0000000000)=0x7fff, r2, 0x0, 0x1ff, 0x0) fcntl$dupfd(r1, 0x406, r0) 08:17:48 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x300, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 940.745233] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:17:48 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x3, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:17:48 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@max_dir_size_kb}]}) 08:18:03 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 39) 08:18:03 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x300}, 0x10044001) 08:18:03 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 46) 08:18:03 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@noacl}, {@max_dir_size_kb}]}) 08:18:03 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xffff}}, './file0\x00'}) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000080)=0x9, 0x4) r2 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000006c0), 0x101002, 0x0) read(r3, &(0x7f0000000700)=""/230, 0xe6) fsmount(r2, 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000002c0)=ANY=[@ANYBLOB="0100000001000000180000001f7a9be9e76225c6c361589ec5b8167ea8df9edd604e4ed93ba14035dfd761585d6fadfe11d6ec77ee62b6fc01800000000000008ccb2f267e2119e96b81809e868b1d1bf9898ca0d6082926d46bbb805cab428139af7e03434b9ecded137b328e490e1275c39be8baa8f8d584551b78d34ff4a6ae9dd44d2eaf33df366ce44a86e09449534b443c9b", @ANYRES32=r3, @ANYBLOB="57377c15010000802e2f66696c653000"]) getpeername$netlink(r2, &(0x7f0000000100), &(0x7f0000000140)=0xc) signalfd4(r1, &(0x7f00000000c0)={[0x9]}, 0x8, 0x180800) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r6 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r6, 0x1, 0x0) getsockopt$IP_SET_OP_GET_BYNAME(r6, 0x1, 0x53, &(0x7f0000000400)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000440)=0x28) r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0) r8 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x80002, 0xa2, 0x11}, 0x18) r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r10 = fcntl$dupfd(r8, 0x48136b5f4f5a43b6, r9) sendmsg$nl_generic(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c00000043f1200c0000ebff7f11ff030a009a487421b77a6afa7e0400000000a9a5c438000000000000000000", @ANYRES32=r10, @ANYBLOB="fabf3336e0fda0128ef710b6cf8cbcd9099615ce649e93952c9eca6c9503620b9beeec26a04a3d07be027659ae2606ce8ded39aaec7c4c6f2ae598d6928c36020200d0f9e208bcb606c313334fc2b3a35d77c7233fa35e9c1af9154b173f76a1f2281f73062b50b08c4d30ac1b60980ac45fdbbb1bf74c5e05a95819d775e2360d61d4f84bf0254da521a7e0b3563e687fa1b6a104b1507a8369e2276addea696fa42b9d70dca2c3c86c7845c197f03739c8c53de065fb6d20be879c54cae0e7e18bedee137302df1d20de21bbde856f0907600421919c3325343b0c4091430c667fcb1c9aa40d563ff85d2f780549e00967fbb8f9cf1aa41a7a073e726ddda05416a20407968e7ca36712"], 0x1c}}, 0x0) 08:18:03 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, 0x0, 0x0, 0xcd04, 0x0, 0x0) 08:18:03 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x3c00, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:18:03 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x8, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:18:03 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0xffff, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 955.705638] FAULT_INJECTION: forcing a failure. [ 955.705638] name failslab, interval 1, probability 0, space 0, times 0 [ 955.707115] CPU: 1 PID: 7620 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 955.708010] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 955.709073] Call Trace: [ 955.709420] dump_stack+0x107/0x167 [ 955.709891] should_fail.cold+0x5/0xa [ 955.709925] FAULT_INJECTION: forcing a failure. [ 955.709925] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 955.710429] ? io_uring_alloc_task_context+0x99/0x6a0 [ 955.713680] should_failslab+0x5/0x20 [ 955.714174] kmem_cache_alloc_trace+0x55/0x320 [ 955.714768] io_uring_alloc_task_context+0x99/0x6a0 [ 955.715408] ? io_import_iovec+0x1120/0x1120 [ 955.715967] ? lock_downgrade+0x6d0/0x6d0 [ 955.716516] ? do_raw_spin_lock+0x121/0x260 [ 955.717074] ? rwlock_bug.part.0+0x90/0x90 [ 955.717640] __io_uring_add_tctx_node+0x2c6/0x520 [ 955.718274] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 955.718943] ? alloc_fd+0x2e7/0x670 [ 955.719415] io_uring_setup+0x1fbb/0x2980 [ 955.719947] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 955.720607] ? wait_for_completion_io+0x270/0x270 [ 955.721246] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 955.721917] ? syscall_enter_from_user_mode+0x1d/0x50 [ 955.722584] do_syscall_64+0x33/0x40 [ 955.723060] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 955.723711] RIP: 0033:0x7f466af67b19 [ 955.724202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 955.726562] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 955.727532] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 955.728455] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 955.729361] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 955.730275] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 955.731203] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 955.732175] CPU: 0 PID: 7626 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 955.733769] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 955.735690] Call Trace: [ 955.736325] dump_stack+0x107/0x167 [ 955.737192] should_fail.cold+0x5/0xa 08:18:03 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, 0x0, 0x0, 0xcd04, 0x0, 0x0) [ 955.738087] _copy_to_user+0x2e/0x180 [ 955.739101] io_uring_setup+0x11b5/0x2980 [ 955.740059] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 955.741209] ? wait_for_completion_io+0x270/0x270 [ 955.742321] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 955.743506] ? syscall_enter_from_user_mode+0x1d/0x50 [ 955.744682] do_syscall_64+0x33/0x40 [ 955.745519] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 955.746676] RIP: 0033:0x7ffa83495b19 [ 955.747516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 955.751693] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 955.753412] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 955.755009] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 955.756615] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 955.758216] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 955.759810] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 955.763285] loop0: detected capacity change from 0 to 2048 08:18:03 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x11, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 955.788031] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5 [ 955.788031] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 955.788031] [ 955.791708] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 955.791708] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 955.791708] [ 955.843084] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:18:15 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 47) 08:18:15 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:18:15 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0xa}, 0x10044001) 08:18:15 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 40) 08:18:15 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0x0, 0x0, 0xfffffffffffffed7) 08:18:15 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x14, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:18:15 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@max_dir_size_kb}]}) 08:18:15 executing program 5: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x80a00, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/snd_seq_dummy', 0x20080, 0x9a) r2 = epoll_create1(0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0xe0, 0x0, &(0x7f00000002c0)=[@dead_binder_done, @acquire_done={0x40106309, 0x2}, @enter_looper, @increfs={0x40046304, 0x2}, @increfs, @release={0x40046306, 0x2}, @transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000140)={@ptr={0x70742a85, 0x1, &(0x7f0000000040)=""/163, 0xa3, 0x2, 0x32}, @fd={0x66642a85, 0x0, r1}, @flat=@weak_handle={0x77682a85, 0x0, 0x1}}, &(0x7f00000001c0)={0x0, 0x28, 0x40}}}, @free_buffer, @transaction_sg={0x40486311, {0x3, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000200)={@fd, @flat=@weak_binder={0x77622a85, 0x1000, 0x1}, @fd={0x66642a85, 0x0, r2}}, &(0x7f0000000280)={0x0, 0x18, 0x30}}, 0x1000}, @decrefs={0x40046307, 0x2}], 0x83, 0x0, &(0x7f00000003c0)="1a2db187c04ea453903c2d14a329bcd0eb707d213bf099a882d1cbb99c34ea5f96124f76bb7c806fcbce501da229a02cb624d134524c08688883bfb372ed3d62581e1b7c12d479721de2ab10da7d89e9535f1a93b8e4d8b1d3d6b6d06835202778433f5d18843913103f10e9d583da183a31e75f86d4741290a23ce676c48cb4244ad2"}) getpeername$packet(r1, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000500)=0x14) getdents64(r0, &(0x7f0000000540)=""/223, 0xdf) ioctl$EXT4_IOC_CLEAR_ES_CACHE(r1, 0x6628) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000640)={{0x1, 0x1, 0x18, r2, {0x81}}, './file0\x00'}) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r4, &(0x7f0000000680)={0x80000010}) syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), r4) ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000700)={{0x1, 0x1, 0x18, r0, {0x1, 0x3}}, './file0\x00'}) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f0000000740)={0x5}) getdents64(r1, &(0x7f0000000780)=""/235, 0xeb) r6 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000880), 0x2000, 0x0) ioctl$FS_IOC_FSSETXATTR(r6, 0x401c5820, &(0x7f00000008c0)={0xfffffff9, 0x4, 0x198b, 0x100, 0x10000}) r7 = socket(0x26, 0xa, 0xfffffffd) r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000940), r1) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r7, &(0x7f0000000a80)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000a40)={&(0x7f0000000980)={0xa0, r8, 0xc, 0x70bd2b, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_ADDR={0x3c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x20}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_ADDR={0x38, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r3}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @remote}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e24}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8}]}, 0xa0}, 0x1, 0x0, 0x0, 0x8000}, 0x40040) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000ac0)={{0x1, 0x1, 0x18, r1, {0x0, 0xee01}}, './file0\x00'}) ioctl$TIOCGSID(r9, 0x5429, &(0x7f0000000b00)) [ 968.624822] FAULT_INJECTION: forcing a failure. [ 968.624822] name failslab, interval 1, probability 0, space 0, times 0 [ 968.626172] CPU: 0 PID: 7655 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 968.626972] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 968.627912] Call Trace: [ 968.628237] dump_stack+0x107/0x167 [ 968.628665] should_fail.cold+0x5/0xa [ 968.629101] ? create_object.isra.0+0x3a/0xa30 [ 968.629627] should_failslab+0x5/0x20 [ 968.630062] kmem_cache_alloc+0x5b/0x310 [ 968.630101] FAULT_INJECTION: forcing a failure. [ 968.630101] name failslab, interval 1, probability 0, space 0, times 0 [ 968.630529] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 968.630542] create_object.isra.0+0x3a/0xa30 [ 968.630551] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 968.630565] kmem_cache_alloc+0x159/0x310 [ 968.630586] security_file_alloc+0x34/0x170 [ 968.635732] __alloc_file+0xb7/0x320 [ 968.636156] alloc_empty_file+0x6d/0x170 [ 968.636622] alloc_file+0x5e/0x5a0 [ 968.637027] alloc_file_pseudo+0x16a/0x250 [ 968.637508] ? alloc_file+0x5a0/0x5a0 [ 968.637954] anon_inode_getfile+0xc8/0x1f0 [ 968.638438] io_uring_setup+0x138b/0x2980 [ 968.638912] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 968.639484] ? wait_for_completion_io+0x270/0x270 [ 968.640047] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 968.640653] ? syscall_enter_from_user_mode+0x1d/0x50 [ 968.641240] do_syscall_64+0x33/0x40 [ 968.641663] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 968.642245] RIP: 0033:0x7f466af67b19 [ 968.642671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 968.644769] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 968.645633] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 968.646443] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 968.647252] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 968.648069] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 968.648883] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 968.649720] CPU: 1 PID: 7659 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 968.650155] loop0: detected capacity change from 0 to 2048 [ 968.651297] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 968.651304] Call Trace: [ 968.651332] dump_stack+0x107/0x167 [ 968.651355] should_fail.cold+0x5/0xa [ 968.651380] ? percpu_ref_init+0xd8/0x3d0 [ 968.657015] should_failslab+0x5/0x20 [ 968.657898] kmem_cache_alloc_trace+0x55/0x320 [ 968.658960] ? io_async_queue_proc+0x80/0x80 [ 968.659982] percpu_ref_init+0xd8/0x3d0 [ 968.660915] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 968.662118] io_uring_setup+0x14f6/0x2980 [ 968.663045] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 968.664232] ? wait_for_completion_io+0x270/0x270 [ 968.665372] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 968.666531] ? syscall_enter_from_user_mode+0x1d/0x50 [ 968.667740] do_syscall_64+0x33/0x40 [ 968.668609] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 968.669782] RIP: 0033:0x7ffa83495b19 [ 968.670568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 968.674857] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 968.676647] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 968.678250] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 968.679900] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 968.681567] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 968.683140] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:18:16 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0x240}, 0x10044001) 08:18:16 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0x0, 0x0, 0xfffffffffffffed7) [ 968.686718] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5 [ 968.686718] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 968.686718] [ 968.697041] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:18:16 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x3, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:18:16 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 41) 08:18:16 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x3c, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:18:16 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@nouser_xattr}, {@max_dir_size_kb}]}) 08:18:16 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x3f, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 968.785179] FAULT_INJECTION: forcing a failure. [ 968.785179] name failslab, interval 1, probability 0, space 0, times 0 [ 968.786580] CPU: 0 PID: 7675 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 968.787375] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 968.788334] Call Trace: [ 968.788641] dump_stack+0x107/0x167 [ 968.789063] should_fail.cold+0x5/0xa [ 968.789506] ? create_object.isra.0+0x3a/0xa30 [ 968.790029] should_failslab+0x5/0x20 [ 968.790469] kmem_cache_alloc+0x5b/0x310 [ 968.790947] create_object.isra.0+0x3a/0xa30 [ 968.791447] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 968.792029] kmem_cache_alloc+0x159/0x310 [ 968.792521] __d_alloc+0x2a/0x990 [ 968.792920] ? find_held_lock+0x2c/0x110 [ 968.793387] d_alloc_pseudo+0x19/0x70 [ 968.793823] alloc_file_pseudo+0xce/0x250 [ 968.794298] ? trace_hardirqs_on+0x5b/0x180 [ 968.794788] ? alloc_file+0x5a0/0x5a0 [ 968.795241] anon_inode_getfile+0xc8/0x1f0 [ 968.795729] io_uring_setup+0x138b/0x2980 [ 968.796222] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 968.796799] ? wait_for_completion_io+0x270/0x270 [ 968.797367] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 968.797973] ? syscall_enter_from_user_mode+0x1d/0x50 [ 968.798564] do_syscall_64+0x33/0x40 [ 968.798992] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 968.799587] RIP: 0033:0x7ffa83495b19 [ 968.800016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 968.802139] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 968.803016] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 968.803831] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 968.804660] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 968.805471] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 968.806287] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:18:16 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0x0, 0x0, 0xfffffffffffffed7) [ 968.824327] loop0: detected capacity change from 0 to 2048 [ 968.841321] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5 [ 968.841321] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 968.841321] [ 968.851586] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:18:16 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 48) 08:18:16 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x8, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:18:16 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0xa00}, 0x10044001) 08:18:16 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x13, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:18:16 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@max_dir_size_kb}]}) [ 968.937580] FAULT_INJECTION: forcing a failure. [ 968.937580] name failslab, interval 1, probability 0, space 0, times 0 [ 968.938922] CPU: 0 PID: 7698 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 968.939717] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 968.940696] Call Trace: [ 968.941007] dump_stack+0x107/0x167 [ 968.941427] should_fail.cold+0x5/0xa [ 968.941858] ? create_object.isra.0+0x3a/0xa30 [ 968.942384] should_failslab+0x5/0x20 [ 968.942935] kmem_cache_alloc+0x5b/0x310 [ 968.943408] create_object.isra.0+0x3a/0xa30 [ 968.943914] kmemleak_alloc_percpu+0xa0/0x100 [ 968.944451] pcpu_alloc+0x4e2/0x1240 [ 968.944889] __percpu_counter_init+0x10d/0x2d0 [ 968.945420] io_uring_alloc_task_context+0xcc/0x6a0 [ 968.946008] ? io_import_iovec+0x1120/0x1120 [ 968.946582] ? lock_downgrade+0x6d0/0x6d0 [ 968.947066] ? do_raw_spin_lock+0x121/0x260 [ 968.947571] ? rwlock_bug.part.0+0x90/0x90 [ 968.948067] __io_uring_add_tctx_node+0x2c6/0x520 [ 968.948632] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 968.949239] ? alloc_fd+0x2e7/0x670 [ 968.949668] io_uring_setup+0x1fbb/0x2980 [ 968.950156] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 968.950745] ? wait_for_completion_io+0x270/0x270 [ 968.951315] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 968.951926] ? syscall_enter_from_user_mode+0x1d/0x50 [ 968.952525] do_syscall_64+0x33/0x40 [ 968.952952] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 968.953539] RIP: 0033:0x7f466af67b19 [ 968.953967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 968.956069] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 968.956948] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 968.957759] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 968.958579] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 968.959392] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 968.960211] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 981.573807] FAULT_INJECTION: forcing a failure. [ 981.573807] name failslab, interval 1, probability 0, space 0, times 0 [ 981.576454] CPU: 0 PID: 7707 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 981.578011] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 981.579918] Call Trace: [ 981.580549] dump_stack+0x107/0x167 [ 981.581398] should_fail.cold+0x5/0xa [ 981.582343] ? create_object.isra.0+0x3a/0xa30 [ 981.583480] should_failslab+0x5/0x20 [ 981.584369] kmem_cache_alloc+0x5b/0x310 [ 981.585294] loop0: detected capacity change from 0 to 2048 [ 981.586610] create_object.isra.0+0x3a/0xa30 [ 981.587659] kmemleak_alloc_percpu+0xa0/0x100 [ 981.588699] pcpu_alloc+0x4e2/0x1240 [ 981.589588] __percpu_counter_init+0x10d/0x2d0 [ 981.590709] io_uring_alloc_task_context+0xcc/0x6a0 [ 981.591847] ? io_import_iovec+0x1120/0x1120 [ 981.592111] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) [ 981.592859] ? lock_downgrade+0x6d0/0x6d0 [ 981.592886] ? do_raw_spin_lock+0x121/0x260 [ 981.596664] ? rwlock_bug.part.0+0x90/0x90 [ 981.597630] __io_uring_add_tctx_node+0x2c6/0x520 [ 981.598725] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 981.599924] ? alloc_fd+0x2e7/0x670 [ 981.600773] io_uring_setup+0x1fbb/0x2980 [ 981.601724] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 981.602872] ? wait_for_completion_io+0x270/0x270 [ 981.604001] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 981.605198] ? syscall_enter_from_user_mode+0x1d/0x50 [ 981.606394] do_syscall_64+0x33/0x40 [ 981.607249] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 981.608426] RIP: 0033:0x7f466af67b19 [ 981.609293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 981.613482] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 981.615207] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 981.616828] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 981.618441] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 981.620072] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 981.621705] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:18:28 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 49) 08:18:28 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 42) 08:18:28 executing program 5: r0 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r0, 0x1, 0x0) ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000000080)={{0x2, 0x4e24, @remote}, {0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1d}}, 0x20, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 'bridge_slave_1\x00'}) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000240)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53efb4b18dd2cfebb01b4ae2d043cf6dadb74c0be67c095b66977a82198e924f82af804d2084", 0x5e, 0x400}], 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00']) 08:18:28 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x3c, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:18:28 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) (fail_nth: 1) 08:18:28 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:18:28 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0x4002}, 0x10044001) 08:18:28 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@nolazytime}, {@max_dir_size_kb}]}) [ 981.646793] FAULT_INJECTION: forcing a failure. [ 981.646793] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 981.649881] CPU: 1 PID: 7718 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 981.651481] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 981.653424] Call Trace: [ 981.654048] dump_stack+0x107/0x167 [ 981.654901] should_fail.cold+0x5/0xa [ 981.655790] _copy_to_iter+0x264/0x12d0 [ 981.656728] ? mark_lock+0xf5/0x2df0 [ 981.657604] ? _copy_from_iter_nocache+0xd60/0xd60 [ 981.658743] ? __virt_addr_valid+0x170/0x5d0 [ 981.659762] ? __check_object_size+0x319/0x440 [ 981.660831] simple_copy_to_iter+0x4c/0x70 [ 981.661808] __skb_datagram_iter+0x4f7/0x880 [ 981.662827] ? zerocopy_sg_from_iter+0x110/0x110 [ 981.663932] skb_copy_datagram_iter+0x88/0x190 [ 981.664999] tcp_recvmsg+0x13b5/0x2930 [ 981.665915] ? tcp_splice_read+0x8c0/0x8c0 [ 981.666884] ? find_held_lock+0x2c/0x110 [ 981.667826] ? sock_has_perm+0x1ea/0x280 [ 981.668771] ? selinux_socket_post_create+0x7f0/0x7f0 [ 981.669049] FAULT_INJECTION: forcing a failure. [ 981.669049] name failslab, interval 1, probability 0, space 0, times 0 [ 981.669956] ? lock_downgrade+0x6d0/0x6d0 [ 981.670000] ? lock_downgrade+0x6d0/0x6d0 [ 981.670025] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 981.670052] ? tcp_splice_read+0x8c0/0x8c0 [ 981.670071] inet6_recvmsg+0x13b/0x6e0 [ 981.670099] ? __fget_files+0x2f8/0x520 [ 981.678441] ? inet6_bind+0x120/0x120 [ 981.679326] ? security_socket_recvmsg+0x95/0xc0 [ 981.680419] ? inet6_bind+0x120/0x120 [ 981.681296] sock_recvmsg+0xff/0x180 [ 981.682161] __sys_recvfrom+0x1be/0x2f0 [ 981.683081] ? __ia32_sys_send+0x100/0x100 [ 981.684052] ? lock_downgrade+0x6d0/0x6d0 [ 981.685042] ? wait_for_completion_io+0x270/0x270 [ 981.686154] ? rcu_read_lock_any_held+0x75/0xa0 [ 981.687221] ? vfs_write+0x354/0xb10 [ 981.688080] ? fput_many+0x2f/0x1a0 [ 981.688923] ? ksys_write+0x1a9/0x260 [ 981.689799] ? __ia32_sys_read+0xb0/0xb0 [ 981.690741] __x64_sys_recvfrom+0xdd/0x1b0 [ 981.691718] ? syscall_enter_from_user_mode+0x1d/0x50 [ 981.692913] do_syscall_64+0x33/0x40 [ 981.693769] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 981.694950] RIP: 0033:0x7fb671b17b19 [ 981.695809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 981.700053] RSP: 002b:00007fb66f06c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 981.701813] RAX: ffffffffffffffda RBX: 00007fb671c2b020 RCX: 00007fb671b17b19 [ 981.703455] RDX: 00000000ffffff3e RSI: 0000000020001700 RDI: 0000000000000003 [ 981.705113] RBP: 00007fb66f06c1d0 R08: 0000000000000000 R09: fffffffffffffed7 [ 981.706763] R10: 000000000000cd04 R11: 0000000000000246 R12: 0000000000000001 [ 981.708419] R13: 00007ffc16c94b0f R14: 00007fb66f06c300 R15: 0000000000022000 [ 981.710108] CPU: 0 PID: 7721 Comm: syz-executor.1 Not tainted 5.10.246 #1 08:18:29 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 981.711748] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 981.713862] Call Trace: [ 981.714483] dump_stack+0x107/0x167 [ 981.715351] should_fail.cold+0x5/0xa [ 981.716240] ? __alloc_file+0x21/0x320 [ 981.717172] should_failslab+0x5/0x20 [ 981.718069] kmem_cache_alloc+0x5b/0x310 [ 981.719027] __alloc_file+0x21/0x320 [ 981.719890] alloc_empty_file+0x6d/0x170 [ 981.720851] alloc_file+0x5e/0x5a0 [ 981.721683] alloc_file_pseudo+0x16a/0x250 [ 981.722665] ? alloc_file+0x5a0/0x5a0 [ 981.723587] anon_inode_getfile+0xc8/0x1f0 [ 981.724589] io_uring_setup+0x138b/0x2980 [ 981.725561] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 981.726735] ? wait_for_completion_io+0x270/0x270 [ 981.727905] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 981.729139] ? syscall_enter_from_user_mode+0x1d/0x50 [ 981.730337] do_syscall_64+0x33/0x40 [ 981.731221] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 981.732414] RIP: 0033:0x7ffa83495b19 [ 981.733273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 981.737536] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 981.739298] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 981.740955] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 981.742601] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 981.744255] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 981.745922] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:18:29 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 50) [ 981.806423] FAULT_INJECTION: forcing a failure. [ 981.806423] name failslab, interval 1, probability 0, space 0, times 0 [ 981.809124] CPU: 1 PID: 7731 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 981.810711] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 981.812637] Call Trace: [ 981.813253] dump_stack+0x107/0x167 [ 981.814095] should_fail.cold+0x5/0xa [ 981.814975] ? create_object.isra.0+0x3a/0xa30 [ 981.816030] should_failslab+0x5/0x20 [ 981.816918] kmem_cache_alloc+0x5b/0x310 [ 981.817858] create_object.isra.0+0x3a/0xa30 [ 981.818872] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 981.820025] kmem_cache_alloc_trace+0x151/0x320 [ 981.821095] io_uring_alloc_task_context+0x99/0x6a0 [ 981.822216] ? io_import_iovec+0x1120/0x1120 [ 981.823210] ? lock_downgrade+0x6d0/0x6d0 [ 981.824126] ? do_raw_spin_lock+0x121/0x260 [ 981.825107] ? rwlock_bug.part.0+0x90/0x90 [ 981.826057] __io_uring_add_tctx_node+0x2c6/0x520 [ 981.827145] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 981.828311] ? alloc_fd+0x2e7/0x670 [ 981.829158] io_uring_setup+0x1fbb/0x2980 [ 981.830110] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 981.831264] ? wait_for_completion_io+0x270/0x270 [ 981.832404] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 981.833578] ? syscall_enter_from_user_mode+0x1d/0x50 [ 981.834754] do_syscall_64+0x33/0x40 [ 981.835596] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 981.836774] RIP: 0033:0x7f466af67b19 [ 981.837626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 981.841756] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 981.843503] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 981.845150] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 981.846786] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 981.848434] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 981.850069] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:18:29 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x300, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:18:29 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x2, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:18:29 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0xa000000}, 0x10044001) 08:18:44 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) (fail_nth: 2) 08:18:44 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x2}, 0x0, 0xffffefffffffffff, 0xffffffffffffffff, 0x2) dup2(r0, r0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=ANY=[@ANYBLOB="f00000001d00210c000000000000000004000200d1001180f817f38838867118d8f7d30f5e00c04164aa091d55e1cab9264fce85edde14acfec3678f7cb8ce6e8dd83a6dfdf5c178c05324b894bfef0c75edf063672ce2ea179ed6975063aa21f55e3aae151d27d6069546a0030356ecc68bb21fa8c76fd8cdb50a1858916b2d8043b068bcbd882521dee5ed3990a74df47171c2d3a821e8aa5daa86c9618a90f0c8e5b831ce56aa2df7456ecd46dcf13f4f1e215dacb880f1ee20238b5c31354069839cd36b49dad9b2ed18a00d48b324caf70c2add496712447982d5db8000000008005b00ac1e0101000000000000"], 0xf0}}, 0x0) [ 997.356078] FAULT_INJECTION: forcing a failure. [ 997.356078] name failslab, interval 1, probability 0, space 0, times 0 08:18:44 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 51) 08:18:44 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0x40020000}, 0x10044001) 08:18:44 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@max_dir_size_kb}]}) 08:18:44 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 43) 08:18:44 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x3c00, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:18:44 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x3, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 997.359063] CPU: 0 PID: 7749 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 997.360921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 997.363049] Call Trace: [ 997.363736] dump_stack+0x107/0x167 [ 997.364680] should_fail.cold+0x5/0xa [ 997.365651] ? io_wq_create+0xeb/0xc00 [ 997.366638] should_failslab+0x5/0x20 [ 997.367604] __kmalloc+0x72/0x390 [ 997.368497] io_wq_create+0xeb/0xc00 [ 997.369463] io_uring_alloc_task_context+0x1f1/0x6a0 [ 997.370761] ? io_import_iovec+0x1120/0x1120 [ 997.371890] ? io_apoll_task_func+0x2d0/0x2d0 [ 997.373032] ? __io_req_find_next+0x300/0x300 [ 997.374170] ? do_raw_spin_lock+0x121/0x260 [ 997.375262] ? rwlock_bug.part.0+0x90/0x90 [ 997.376344] __io_uring_add_tctx_node+0x2c6/0x520 [ 997.377579] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 997.378912] ? alloc_fd+0x2e7/0x670 [ 997.379853] io_uring_setup+0x1fbb/0x2980 [ 997.380930] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 997.382220] ? wait_for_completion_io+0x270/0x270 08:18:44 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0xffffff7f}, 0x10044001) [ 997.383468] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 997.384886] ? syscall_enter_from_user_mode+0x1d/0x50 [ 997.386202] do_syscall_64+0x33/0x40 [ 997.387155] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 997.388454] RIP: 0033:0x7f466af67b19 [ 997.389406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 997.394107] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 997.396043] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 997.397875] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 997.399689] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 997.401502] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 997.403306] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:18:44 executing program 5: syz_80211_inject_frame(&(0x7f0000000000), &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x72) r0 = openat(0xffffffffffffffff, &(0x7f0000000180)='/proc/self/exe\x00', 0x0, 0x0) syz_80211_inject_frame(&(0x7f0000000040)=@broadcast, &(0x7f00000004c0)=@mgmt_frame=@assoc_resp={@with_ht={{{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1}, {0x4}, @broadcast, @device_b, @initial, {0x9, 0xb11}}, @ver_80211n={0x0, 0x2e8, 0x3, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1}}, 0x4, 0x1f, @default, @void, @val={0x2d, 0x1a, {0x10, 0x2, 0x3, 0x0, {0xcec, 0x2, 0x0, 0x20, 0x0, 0x1, 0x1, 0x3}, 0x6, 0x0, 0x6}}, [{0xdd, 0x1e, "4995bc28426f8cc51c78fc9291ba79f66b512d5523efd4a1ec984d4dc638"}, {0xdd, 0xa3, "29b9dc3a8f20ced8bf02ed71576fdf355a187300c505f96220a63b7d2699f1cbaf7200ec7d394e14aa24b8c1330c9250bd7d77f74ebda588912b26a1783f9f57140b0774719e4ab4c65a00044cd10454aaa98c6b5e9baffa59ce8729defc7d091f60ba8c2a1727855870e43b28b0641989ddf4c051ffde1e787b13cb8f4f872b2e9db85b4aa3635a50cde5a1915ab1d42c2c2d06b4466940f1e5ee4978fcc5cdb403fd"}, {0xdd, 0x7a, "8746db63c7e407fe43b4d3cbedec29ac481cb686cbab49254897f4e6d7f1c238a15342fc0fc9c4174535e7b17c34ca71fe2d52cc606ed24465b8d9475e2630b7a00fed0fd1a51fc1fce3892c8305517bb0c9c36952f6272a5b9d70efe28b08cf0c59e944157964d92ae71091c19b1770aa6135a7bdc511c2a34f"}, {0xdd, 0xc8, "f83da08bdbc60b245e76ecd5ce588fef66fb438a4b365b3fe71adfc6cdea074847e0a582883884ff523d3f6badec479f41991a8ad09c84b2688c40c3bf9218114a87f9c981c016b755db937a06a34235ef3fbe07e2aa250a04278a310e34bcf7606799a19c0a9a45caa1d15c2c1e09d76f219fc2998cc3d61caed672f37f3f652db0bcea6530aeaf1a71af108b64851840614c908465acbc492f2e8d1d25fde2605c0ea2fcaf40a8e9d3c59d0e8876ce30065d8ec85a78f7aaae5cbc3cb1afeb239e83c4a218afac"}, {0xdd, 0xbd, "363f20eaf05dde0f2766727b13e4047e009731aecfbf4ecc61a442240c05b6627b5c411b4645a3f70e64ad699a3a25d9679f2bd44728ea36f9b8594da5097ff372b10542c8ce39a5523e7cb5d71b83e2366b8b80d15ef2c1600348c9edf960114a18fa3f2b381c82911ad5854a3799a6d49467c8812f6168f34ad38af609d86c761ed80618d74f815ce927fb94ddeecc5e2a78a32fb2298dd2b10663e73d10badaef8cabb4451d0d2133c7303cbe0a40297137257e490e6c5488f48cc8"}, {0xdd, 0xed, "2a1d9d0babc4c95fb74434b8d78e16eeb930eb1e12435888d1e9f54ae7e4fa944717fa1abd345f3a2d1a78c20b37395bf0cbab41d218d469b7df96401989055f30e969dfb5a06908c4b68807f924134092eb431e6cc3e8665602ca3a601ae34832d4631e9bf86b97e8182a0ecf562bfff97043190c097e444b5160bd325f526a0e4f51a7081299e8634c85babc774ee4ac4bf86469f985d9b5404e4d5af7dc7fc6bf980e8522daa38a236c9abf1423bcafbb08ddca340828db7b5feaffaf11c38de526296499a00bc928f2905008cc7bbb0a544dfe5577da5d22f44b5a0bcac49bb6b9670a2bf6b4d8090d454a"}, {0xdd, 0xcf, "87c5f7d4f294ea9f9559b8c7827afe76ee15b8d7661763993cf00da6f55563b172bd36ae5533bd92e0785aeb0db22191f55c72210e51015f6a7c0fff4e0f6f2ca27cd3f27a24ce01d637b5be8dac0996870fd583b0f4b7970343a26d5cc85f7853af29ce0c655c536ef56437216ad423cbf7705c5ecd0f78ebbcaf86848f49716558d1467ef7070e949858d3f7a21bc80d82e7124912660c0da6c95868e1bb0ea6bffe3dcba7955e8b7cfb31d1363d8423cd35e9c14809ac3f28bc61325f75dd17f76e67ced4ef3b48cd4778a07577"}, {0xdd, 0xec, "d64f236e2c168c89e4fa2524887963b8b96d524ed099c32376979acffc3e2cc14d1d1b37fbc919d9d7cc66ddee003026378bc6fdec56b721d2fa3eaa1367ef8205230c0f167cb96bdf02fe1b20d20a55de3a07c78057e30f7b04b0cdc2dacf4ac34e85a5b41a7b0873eec8fc7f7fbc6d00a1d437dfd41171dff63d5fc94a1b2f2788379732ef349e68f27c98ed3207bf3453ccbe600b1ff7cf6b90497b8a95f0bbd492d6c51497a2ad3bc638598e54b716839fb656e062e006966a7e24918860728f7bde3134290c5b630b31fd0c94b8c3b92a1e7c1deca4e6e3e16d40ebf80f9fb4de34af5a151383f456e4"}]}, 0x5b6) r1 = socket$netlink(0x10, 0x3, 0xc) syz_80211_inject_frame(&(0x7f00000000c0)=@device_b, &(0x7f0000000100)=@ctrl_frame=@ack={{}, {0x2}}, 0xa) sendfile(r1, r0, 0x0, 0x4000007ffffffc) [ 997.412552] FAULT_INJECTION: forcing a failure. [ 997.412552] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 997.414046] CPU: 1 PID: 7758 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 997.414822] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 997.415771] Call Trace: [ 997.416075] dump_stack+0x107/0x167 [ 997.416490] should_fail.cold+0x5/0xa [ 997.416933] __alloc_pages_nodemask+0x182/0x600 [ 997.417459] ? lock_chain_count+0x20/0x20 [ 997.417929] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 997.418616] alloc_pages_vma+0xbb/0x410 [ 997.419077] wp_page_copy+0xee7/0x1f00 [ 997.419529] ? print_bad_pte+0x5a0/0x5a0 [ 997.419999] ? lock_downgrade+0x6d0/0x6d0 [ 997.420468] ? vm_normal_page+0x162/0x2e0 [ 997.420980] ? count_memcg_event_mm.part.0+0x10f/0x2f0 [ 997.421576] do_wp_page+0x27b/0x1390 [ 997.422005] handle_mm_fault+0x1cc7/0x3500 [ 997.422494] ? __pmd_alloc+0x630/0x630 [ 997.422959] ? vmacache_find+0x55/0x2a0 [ 997.423410] ? vmacache_update+0xce/0x140 [ 997.423908] do_user_addr_fault+0x56e/0xc60 [ 997.424422] exc_page_fault+0xa2/0x1a0 [ 997.424893] asm_exc_page_fault+0x1e/0x30 [ 997.425396] RIP: 0010:copy_user_generic_string+0x2c/0x40 [ 997.426039] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 43 30 1d 02 0f 1f 00 0f 01 [ 997.428212] RSP: 0018:ffff88804680f820 EFLAGS: 00050246 [ 997.428857] RAX: 0000000000000001 RBX: 0000000000008000 RCX: 0000000000001000 [ 997.429697] RDX: 0000000000000000 RSI: ffff888042178000 RDI: 0000000020001700 [ 997.430532] RBP: 0000000020001700 R08: 0000000000000000 R09: ffff88804217ffff [ 997.431365] R10: ffffed100842ffff R11: 0000000000000001 R12: ffff888042178000 [ 997.432201] R13: 0000000020009700 R14: 00007ffffffff000 R15: 0000000000000000 [ 997.433062] copyout.part.0+0x10b/0x140 [ 997.433529] _copy_to_iter+0x293/0x12d0 [ 997.434038] ? mark_lock+0xf5/0x2df0 [ 997.434481] ? _copy_from_iter_nocache+0xd60/0xd60 [ 997.435062] ? __virt_addr_valid+0x170/0x5d0 [ 997.435580] ? __check_object_size+0x319/0x440 [ 997.436122] simple_copy_to_iter+0x4c/0x70 [ 997.436646] __skb_datagram_iter+0x4f7/0x880 [ 997.437179] ? zerocopy_sg_from_iter+0x110/0x110 [ 997.437760] skb_copy_datagram_iter+0x88/0x190 [ 997.438312] tcp_recvmsg+0x13b5/0x2930 [ 997.438783] ? tcp_splice_read+0x8c0/0x8c0 [ 997.439285] ? find_held_lock+0x2c/0x110 [ 997.439761] ? sock_has_perm+0x1ea/0x280 [ 997.440238] ? selinux_socket_post_create+0x7f0/0x7f0 [ 997.440855] ? lock_downgrade+0x6d0/0x6d0 [ 997.441332] ? tcp_splice_read+0x8c0/0x8c0 [ 997.441836] inet6_recvmsg+0x13b/0x6e0 [ 997.442293] ? __fget_files+0x2f8/0x520 [ 997.442753] ? inet6_bind+0x120/0x120 [ 997.443212] ? security_socket_recvmsg+0x95/0xc0 [ 997.443770] ? inet6_bind+0x120/0x120 [ 997.444215] sock_recvmsg+0xff/0x180 [ 997.444659] __sys_recvfrom+0x1be/0x2f0 [ 997.445131] ? __ia32_sys_send+0x100/0x100 [ 997.445628] ? lock_downgrade+0x6d0/0x6d0 [ 997.446128] ? wait_for_completion_io+0x270/0x270 [ 997.446697] ? rcu_read_lock_any_held+0x75/0xa0 [ 997.447244] ? vfs_write+0x354/0xb10 [ 997.447681] ? fput_many+0x2f/0x1a0 [ 997.448113] ? ksys_write+0x1a9/0x260 [ 997.448577] ? __ia32_sys_read+0xb0/0xb0 [ 997.449066] __x64_sys_recvfrom+0xdd/0x1b0 [ 997.449570] ? syscall_enter_from_user_mode+0x1d/0x50 [ 997.450181] do_syscall_64+0x33/0x40 [ 997.450623] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 997.451236] RIP: 0033:0x7fb671b17b19 [ 997.451680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 997.453874] RSP: 002b:00007fb66f06c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 997.454778] RAX: ffffffffffffffda RBX: 00007fb671c2b020 RCX: 00007fb671b17b19 [ 997.455624] RDX: 00000000ffffff3e RSI: 0000000020001700 RDI: 0000000000000003 [ 997.456477] RBP: 00007fb66f06c1d0 R08: 0000000000000000 R09: fffffffffffffed7 [ 997.457337] R10: 000000000000cd04 R11: 0000000000000246 R12: 0000000000000001 [ 997.458186] R13: 00007ffc16c94b0f R14: 00007fb66f06c300 R15: 0000000000022000 [ 997.458761] FAULT_INJECTION: forcing a failure. [ 997.458761] name failslab, interval 1, probability 0, space 0, times 0 [ 997.461833] CPU: 0 PID: 7766 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 997.463411] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 997.465331] Call Trace: [ 997.465619] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 997.465937] dump_stack+0x107/0x167 [ 997.465961] should_fail.cold+0x5/0xa [ 997.468690] ? create_object.isra.0+0x3a/0xa30 [ 997.469740] should_failslab+0x5/0x20 [ 997.470615] kmem_cache_alloc+0x5b/0x310 [ 997.471555] create_object.isra.0+0x3a/0xa30 [ 997.472561] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 997.473748] kmem_cache_alloc+0x159/0x310 [ 997.474709] __d_alloc+0x2a/0x990 [ 997.475505] ? find_held_lock+0x2c/0x110 [ 997.476441] d_alloc_pseudo+0x19/0x70 [ 997.477325] alloc_file_pseudo+0xce/0x250 [ 997.478273] ? trace_hardirqs_on+0x5b/0x180 [ 997.479264] ? alloc_file+0x5a0/0x5a0 [ 997.480154] anon_inode_getfile+0xc8/0x1f0 [ 997.481138] io_uring_setup+0x138b/0x2980 [ 997.482101] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 997.483264] ? wait_for_completion_io+0x270/0x270 [ 997.484399] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 997.485616] ? syscall_enter_from_user_mode+0x1d/0x50 [ 997.486805] do_syscall_64+0x33/0x40 [ 997.487662] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 997.488847] RIP: 0033:0x7ffa83495b19 [ 997.489702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 997.493937] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 997.495696] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 997.497355] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 997.498995] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 997.500643] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 997.502286] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:18:44 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0xffff, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 997.512658] loop0: detected capacity change from 0 to 2048 [ 997.513101] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 997.521372] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 08:18:44 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x8, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 997.562706] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:18:44 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0xa00000000000000}, 0x10044001) 08:18:44 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 52) [ 997.620203] FAULT_INJECTION: forcing a failure. [ 997.620203] name failslab, interval 1, probability 0, space 0, times 0 [ 997.621609] CPU: 1 PID: 7780 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 997.622417] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 997.623392] Call Trace: [ 997.623708] dump_stack+0x107/0x167 [ 997.624135] should_fail.cold+0x5/0xa [ 997.624594] ? io_wq_create+0x6ef/0xc00 [ 997.625065] should_failslab+0x5/0x20 [ 997.625523] kmem_cache_alloc_node_trace+0x59/0x340 [ 997.626112] io_wq_create+0x6ef/0xc00 [ 997.626564] io_uring_alloc_task_context+0x1f1/0x6a0 [ 997.627169] ? io_import_iovec+0x1120/0x1120 [ 997.627686] ? io_apoll_task_func+0x2d0/0x2d0 [ 997.628214] ? __io_req_find_next+0x300/0x300 [ 997.628752] ? do_raw_spin_lock+0x121/0x260 [ 997.629257] ? rwlock_bug.part.0+0x90/0x90 [ 997.629754] __io_uring_add_tctx_node+0x2c6/0x520 [ 997.630320] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 997.630963] ? alloc_fd+0x2e7/0x670 [ 997.631395] io_uring_setup+0x1fbb/0x2980 [ 997.631889] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 997.632480] ? wait_for_completion_io+0x270/0x270 [ 997.633064] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 997.633680] ? syscall_enter_from_user_mode+0x1d/0x50 [ 997.634284] do_syscall_64+0x33/0x40 [ 997.634735] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 997.635342] RIP: 0033:0x7f466af67b19 [ 997.635777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 997.637952] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 997.638862] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 997.639725] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 997.640566] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 997.641419] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 997.642265] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 997.824180] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 997.826887] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 997.830276] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 08:18:58 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 44) 08:18:58 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:18:58 executing program 5: syz_mount_image$tmpfs(&(0x7f00000002c0), &(0x7f0000000300)='./cgroup/cgroup.procs\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='uid=', @ANYRESDEC, @ANYBLOB="2cae7373db16cccb74710f5c0ae358a1b37768ec471759778f97c8b560c280ec3734e549de320fe8"]) [ 1010.695125] FAULT_INJECTION: forcing a failure. [ 1010.695125] name failslab, interval 1, probability 0, space 0, times 0 [ 1010.696535] CPU: 1 PID: 7797 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1010.697373] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1010.698342] Call Trace: [ 1010.698654] dump_stack+0x107/0x167 [ 1010.699083] should_fail.cold+0x5/0xa [ 1010.699532] ? security_file_alloc+0x34/0x170 [ 1010.700056] should_failslab+0x5/0x20 [ 1010.700500] kmem_cache_alloc+0x5b/0x310 [ 1010.701009] security_file_alloc+0x34/0x170 [ 1010.701529] __alloc_file+0xb7/0x320 [ 1010.701975] alloc_empty_file+0x6d/0x170 [ 1010.702451] alloc_file+0x5e/0x5a0 [ 1010.702887] alloc_file_pseudo+0x16a/0x250 [ 1010.703380] ? alloc_file+0x5a0/0x5a0 [ 1010.703847] anon_inode_getfile+0xc8/0x1f0 [ 1010.704345] io_uring_setup+0x138b/0x2980 [ 1010.704859] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1010.705468] ? wait_for_completion_io+0x270/0x270 [ 1010.706038] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1010.706669] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1010.707272] do_syscall_64+0x33/0x40 [ 1010.707717] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1010.708316] RIP: 0033:0x7ffa83495b19 [ 1010.708769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1010.710987] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1010.711911] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1010.712785] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1010.713619] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1010.714481] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1010.715319] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:18:58 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x11, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:18:58 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:18:58 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@max_dir_size_kb}]}) 08:18:58 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 53) 08:18:58 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0x4002000000000000}, 0x10044001) [ 1010.732127] FAULT_INJECTION: forcing a failure. [ 1010.732127] name failslab, interval 1, probability 0, space 0, times 0 [ 1010.735130] CPU: 0 PID: 7796 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1010.736819] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1010.738847] Call Trace: [ 1010.739497] dump_stack+0x107/0x167 [ 1010.740394] should_fail.cold+0x5/0xa [ 1010.741342] ? create_object.isra.0+0x3a/0xa30 [ 1010.742447] should_failslab+0x5/0x20 [ 1010.743363] kmem_cache_alloc+0x5b/0x310 [ 1010.744336] ? io_wq_create+0x114/0xc00 [ 1010.745303] create_object.isra.0+0x3a/0xa30 [ 1010.746340] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1010.747524] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1010.748704] io_wq_create+0x6ef/0xc00 [ 1010.749601] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1010.750777] ? io_import_iovec+0x1120/0x1120 [ 1010.751794] ? io_apoll_task_func+0x2d0/0x2d0 [ 1010.752841] ? __io_req_find_next+0x300/0x300 [ 1010.753874] ? do_raw_spin_lock+0x121/0x260 [ 1010.754867] ? rwlock_bug.part.0+0x90/0x90 [ 1010.755846] __io_uring_add_tctx_node+0x2c6/0x520 [ 1010.756962] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1010.758158] ? alloc_fd+0x2e7/0x670 [ 1010.759007] io_uring_setup+0x1fbb/0x2980 [ 1010.759967] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1010.761137] ? wait_for_completion_io+0x270/0x270 [ 1010.762268] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1010.763472] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1010.764658] do_syscall_64+0x33/0x40 [ 1010.765523] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1010.766698] RIP: 0033:0x7f466af67b19 08:18:58 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x14, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1010.767552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1010.771865] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1010.773577] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1010.775175] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1010.776786] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1010.778394] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1010.780100] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1010.789369] loop0: detected capacity change from 0 to 2048 [ 1010.808195] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:19:11 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x1, 0x0, 0x5}}}}}}, 0x0) 08:19:11 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0xffffff7f00000000}, 0x10044001) [ 1024.564976] FAULT_INJECTION: forcing a failure. [ 1024.564976] name failslab, interval 1, probability 0, space 0, times 0 [ 1024.566849] CPU: 0 PID: 7826 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1024.568057] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1024.569504] Call Trace: [ 1024.569969] dump_stack+0x107/0x167 [ 1024.570596] should_fail.cold+0x5/0xa [ 1024.571260] ? create_object.isra.0+0x3a/0xa30 [ 1024.572052] should_failslab+0x5/0x20 [ 1024.572917] kmem_cache_alloc+0x5b/0x310 [ 1024.573639] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1024.574599] create_object.isra.0+0x3a/0xa30 [ 1024.575356] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1024.576235] kmem_cache_alloc+0x159/0x310 [ 1024.576970] security_file_alloc+0x34/0x170 [ 1024.577726] __alloc_file+0xb7/0x320 [ 1024.578375] alloc_empty_file+0x6d/0x170 [ 1024.579078] alloc_file+0x5e/0x5a0 [ 1024.579576] FAULT_INJECTION: forcing a failure. [ 1024.579576] name failslab, interval 1, probability 0, space 0, times 0 [ 1024.579706] alloc_file_pseudo+0x16a/0x250 [ 1024.582886] ? alloc_file+0x5a0/0x5a0 [ 1024.583557] anon_inode_getfile+0xc8/0x1f0 [ 1024.584304] io_uring_setup+0x138b/0x2980 [ 1024.585034] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1024.585915] ? wait_for_completion_io+0x270/0x270 [ 1024.586770] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1024.587682] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1024.588581] do_syscall_64+0x33/0x40 [ 1024.589232] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1024.590112] RIP: 0033:0x7ffa83495b19 [ 1024.590759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1024.593958] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1024.595273] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1024.596504] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1024.597757] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1024.598994] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1024.600228] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:19:11 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd03, 0x0, 0xfffffffffffffed7) 08:19:11 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 54) 08:19:11 executing program 5: ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000500)={0x0, 0x8001, 0x5, 0x1}) r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) r3 = getpgid(0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000340)=ANY=[@ANYBLOB="000000d3000000000000", @ANYRES32=r0, @ANYRES32, @ANYRES32, @ANYBLOB='./file0\x00']) perf_event_open(&(0x7f00000002c0)={0x0, 0x80, 0x6, 0x7, 0x20, 0xff, 0x0, 0xf42, 0x60080, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x7fffffff, 0x2, @perf_config_ext={0x4, 0x1}, 0x40080, 0x80000000, 0x80, 0x0, 0x2009, 0x89, 0x8, 0x0, 0x7ff, 0x0, 0xe1c}, r3, 0x9, r4, 0x1) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000003080)={0x0, "1aaaa8aae701d5ca00"}) r5 = socket$inet_tcp(0x2, 0x1, 0x0) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r8, 0x0, 0x0}, 0x0) getsockopt$bt_BT_SNDMTU(r8, 0x112, 0xc, &(0x7f0000000000)=0xff12, &(0x7f0000000040)=0x2) setsockopt$inet_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f00000051c0)={@in, 0x0, 0x0, 0x0, 0x0, "0251f7c0b5745a843e33f9671616246b571db84658220dde12dca995eae804e6d173c1236d6dc27245d6cd4e7055478a9a772b501e4c1d116a5743271835608e12391c2bad9669a57267068800c5d50b"}, 0xd8) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) 08:19:11 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x3c, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:19:11 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@noquota}, {@max_dir_size_kb}]}) 08:19:11 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 45) [ 1024.601501] CPU: 1 PID: 7833 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1024.603285] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1024.605082] Call Trace: [ 1024.605659] dump_stack+0x107/0x167 [ 1024.606456] should_fail.cold+0x5/0xa [ 1024.607288] ? __io_uring_add_tctx_node+0x15c/0x520 [ 1024.608423] should_failslab+0x5/0x20 [ 1024.609247] kmem_cache_alloc_trace+0x55/0x320 [ 1024.610230] __io_uring_add_tctx_node+0x15c/0x520 [ 1024.611243] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1024.612346] ? alloc_fd+0x2e7/0x670 [ 1024.613129] io_uring_setup+0x1fbb/0x2980 [ 1024.614011] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1024.615074] ? wait_for_completion_io+0x270/0x270 [ 1024.616176] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1024.617294] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1024.618452] do_syscall_64+0x33/0x40 [ 1024.619265] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1024.620379] RIP: 0033:0x7f466af67b19 [ 1024.621210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1024.625179] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1024.626813] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1024.628337] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1024.629890] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1024.631460] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1024.633010] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1024.636752] loop0: detected capacity change from 0 to 2048 [ 1024.652330] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1024.663080] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) [ 1024.668432] FAULT_INJECTION: forcing a failure. [ 1024.668432] name failslab, interval 1, probability 0, space 0, times 0 [ 1024.670949] CPU: 1 PID: 7839 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1024.672434] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1024.674237] Call Trace: [ 1024.674855] dump_stack+0x107/0x167 [ 1024.675644] should_fail.cold+0x5/0xa [ 1024.676490] ? io_uring_alloc_task_context+0x99/0x6a0 [ 1024.677619] should_failslab+0x5/0x20 [ 1024.678492] kmem_cache_alloc_trace+0x55/0x320 [ 1024.679482] io_uring_alloc_task_context+0x99/0x6a0 [ 1024.680556] ? io_import_iovec+0x1120/0x1120 [ 1024.681537] ? lock_downgrade+0x6d0/0x6d0 [ 1024.682437] ? do_raw_spin_lock+0x121/0x260 [ 1024.683364] ? rwlock_bug.part.0+0x90/0x90 [ 1024.684282] __io_uring_add_tctx_node+0x2c6/0x520 08:19:12 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:19:12 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 46) 08:19:12 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1024.685335] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1024.686661] ? alloc_fd+0x2e7/0x670 08:19:12 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x3, 0x5}}}}}}, 0x0) [ 1024.687465] io_uring_setup+0x1fbb/0x2980 [ 1024.688460] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1024.689571] ? wait_for_completion_io+0x270/0x270 [ 1024.690631] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1024.691780] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1024.692894] do_syscall_64+0x33/0x40 [ 1024.693736] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1024.694891] RIP: 0033:0x7ffa83495b19 [ 1024.695691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1024.699709] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1024.701804] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1024.703483] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1024.705060] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1024.706595] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1024.708132] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:19:12 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x7, 0x5}}}}}}, 0x0) 08:19:12 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x60, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:19:12 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x4}}}}}}, 0x0) 08:19:12 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nogrpid}, {@nolazytime}, {@max_dir_size_kb}]}) 08:19:12 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 55) [ 1024.816879] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1024.818732] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1024.820422] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 08:19:12 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0x0, 0xa}, 0x10044001) [ 1024.838455] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1024.844059] FAULT_INJECTION: forcing a failure. [ 1024.844059] name failslab, interval 1, probability 0, space 0, times 0 [ 1024.845800] CPU: 0 PID: 7857 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1024.846905] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1024.848223] Call Trace: [ 1024.848649] dump_stack+0x107/0x167 [ 1024.849245] should_fail.cold+0x5/0xa [ 1024.849856] ? __io_uring_add_tctx_node+0x15c/0x520 [ 1024.850643] should_failslab+0x5/0x20 [ 1024.851257] kmem_cache_alloc_trace+0x55/0x320 [ 1024.851978] __io_uring_add_tctx_node+0x15c/0x520 [ 1024.852748] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1024.853589] ? alloc_fd+0x2e7/0x670 [ 1024.854182] io_uring_setup+0x1fbb/0x2980 [ 1024.854840] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1024.855638] ? wait_for_completion_io+0x270/0x270 [ 1024.856405] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1024.857165] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1024.857989] do_syscall_64+0x33/0x40 [ 1024.858511] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1024.859323] RIP: 0033:0x7f466af67b19 [ 1024.859861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1024.862268] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1024.863470] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1024.864591] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1024.865744] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1024.866880] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1024.868000] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1024.887278] loop0: detected capacity change from 0 to 2048 [ 1024.891573] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:19:26 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd0f, 0x0, 0xfffffffffffffed7) 08:19:26 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x8}}}}}}, 0x0) 08:19:26 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 56) 08:19:26 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0xf0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:19:26 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) 08:19:26 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 47) 08:19:26 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0x0, 0x240}, 0x10044001) 08:19:26 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000500)=ANY=[], 0x58) r1 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) syz_io_uring_setup(0x49d5, &(0x7f0000000140)={0x0, 0x4, 0x10, 0x3, 0x2a8, 0x0, r1}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f00000001c0)) r3 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000440)=0x0) ioctl$FIOCLEX(r1, 0x5451) dup(0xffffffffffffffff) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0) dup3(r3, r3, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, r5, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x1, 0x1, {0x2, r7}}, 0x80000001) syz_io_uring_submit(r2, 0x0, &(0x7f0000000240)=@IORING_OP_LINK_TIMEOUT={0xf, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200), 0x1, 0x1, 0x1, {0x0, r7}}, 0x5) fsmount(r1, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e24, 0x4a0a, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000000c0)={{0x0, 0x1, 0x9, 0xd8bd, 0x1, 0x241, 0x100, 0x5, 0x3, 0x4, 0x9, 0x3, 0x37a, 0xbe6, 0x9}, 0x10, [0x0, 0x0]}) [ 1038.757572] loop0: detected capacity change from 0 to 2048 [ 1038.773619] FAULT_INJECTION: forcing a failure. [ 1038.773619] name failslab, interval 1, probability 0, space 0, times 0 [ 1038.774122] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) [ 1038.776792] CPU: 0 PID: 7879 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1038.780343] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1038.782454] Call Trace: [ 1038.783137] dump_stack+0x107/0x167 [ 1038.784067] should_fail.cold+0x5/0xa [ 1038.785040] ? xas_alloc+0x336/0x440 [ 1038.786027] should_failslab+0x5/0x20 [ 1038.786995] kmem_cache_alloc+0x5b/0x310 [ 1038.788030] ? stack_trace_consume_entry+0x160/0x160 [ 1038.789328] xas_alloc+0x336/0x440 [ 1038.790158] xas_create+0x34a/0x10d0 [ 1038.790960] ? kernel_text_address+0xf2/0x120 [ 1038.791913] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1038.793258] xas_store+0x8c/0x1c40 [ 1038.794035] __xa_store+0x164/0x2d0 [ 1038.794968] ? xa_delete_node+0x280/0x280 [ 1038.795926] ? trace_hardirqs_on+0x5b/0x180 [ 1038.797053] xa_store+0x31/0x50 [ 1038.797925] __io_uring_add_tctx_node+0x1cf/0x520 [ 1038.799178] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1038.800524] ? alloc_fd+0x2e7/0x670 [ 1038.801480] io_uring_setup+0x1fbb/0x2980 [ 1038.802563] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1038.803868] ? wait_for_completion_io+0x270/0x270 [ 1038.805131] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1038.806494] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1038.807619] do_syscall_64+0x33/0x40 [ 1038.808576] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1038.809678] RIP: 0033:0x7f466af67b19 [ 1038.810625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1038.814584] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1038.816525] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1038.818124] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1038.819682] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1038.821231] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1038.822761] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1038.841821] FAULT_INJECTION: forcing a failure. [ 1038.841821] name failslab, interval 1, probability 0, space 0, times 0 [ 1038.844239] CPU: 1 PID: 7890 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1038.845718] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1038.847492] Call Trace: [ 1038.848059] dump_stack+0x107/0x167 [ 1038.848827] should_fail.cold+0x5/0xa [ 1038.849662] ? create_object.isra.0+0x3a/0xa30 [ 1038.850635] should_failslab+0x5/0x20 [ 1038.851451] kmem_cache_alloc+0x5b/0x310 [ 1038.852324] create_object.isra.0+0x3a/0xa30 [ 1038.853274] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1038.854366] kmem_cache_alloc_trace+0x151/0x320 [ 1038.855378] io_uring_alloc_task_context+0x99/0x6a0 [ 1038.856458] ? io_import_iovec+0x1120/0x1120 [ 1038.857412] ? lock_downgrade+0x6d0/0x6d0 [ 1038.858297] ? do_raw_spin_lock+0x121/0x260 [ 1038.859221] ? rwlock_bug.part.0+0x90/0x90 [ 1038.860134] __io_uring_add_tctx_node+0x2c6/0x520 [ 1038.861183] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1038.862348] ? alloc_fd+0x2e7/0x670 [ 1038.863261] io_uring_setup+0x1fbb/0x2980 [ 1038.864267] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1038.865357] ? wait_for_completion_io+0x270/0x270 [ 1038.866403] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1038.867523] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1038.868631] do_syscall_64+0x33/0x40 [ 1038.869438] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1038.870529] RIP: 0033:0x7ffa83495b19 [ 1038.871325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1038.875226] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1038.876820] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1038.878330] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1038.879827] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1038.881360] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1038.882864] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:19:26 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x300, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:19:26 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:19:26 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 57) 08:19:26 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x1100, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1039.024544] FAULT_INJECTION: forcing a failure. 08:19:26 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x3}}}}}}, 0x0) [ 1039.024544] name failslab, interval 1, probability 0, space 0, times 0 [ 1039.027250] CPU: 1 PID: 7902 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1039.028701] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1039.030464] Call Trace: [ 1039.031030] dump_stack+0x107/0x167 [ 1039.031802] should_fail.cold+0x5/0xa [ 1039.032608] ? create_object.isra.0+0x3a/0xa30 [ 1039.033585] should_failslab+0x5/0x20 [ 1039.034389] kmem_cache_alloc+0x5b/0x310 [ 1039.035259] create_object.isra.0+0x3a/0xa30 [ 1039.036190] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1039.037291] kmem_cache_alloc+0x159/0x310 [ 1039.038172] xas_alloc+0x336/0x440 [ 1039.038923] xas_create+0x34a/0x10d0 08:19:26 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x129) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) ioctl$BTRFS_IOC_SET_FEATURES(r0, 0x40309439, &(0x7f0000000280)={0x1, 0x2}) r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x8000) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000240)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=0xffffffffffffffff, @ANYBLOB="0000001000000000000066696c76b19b"]) ioctl$BLKGETSIZE(r1, 0x1260, &(0x7f0000000300)) write$binfmt_elf64(r3, &(0x7f0000000a00)={{0x7f, 0x45, 0x4c, 0x46, 0xc0, 0x3f, 0x7, 0x9, 0xa6, 0x3, 0x3, 0x6, 0xc3, 0x40, 0x9c, 0x1000, 0x7ff, 0x38, 0x2, 0x4, 0x401, 0xfffb}, [{0x1, 0x1, 0x10000, 0x82c9dae, 0x8001, 0x5, 0x200, 0x7ff}, {0x60000000, 0x8089, 0x165, 0x7, 0x7d, 0x80000001, 0x9, 0x5}], "bda641cf8a4ce28f44bf80f9e454554a695e7bcbab0bf64fafe47cf92fa18c4202bdb52e6623df0e628115ce30969c73d88179a23f66f54a624cfa7b43544b18eefa2679a8640ebb1f60ba9e9cb288bc3b68c9ad41fdb3a7efd1acf8a371e48c9fed7f163014b7bcfe0947eab3d3eb0543e10b6b5a58ed902e2f3d5b70586af6b126d6025f019c59b2a1a3acc73eec5f0d7a23ef33a0c34d9cf257331bd5b010f83117bce370cb5bb50a0bc9ec62fbdc3dd337d523f855b7d1426f80d3fd94859f35f21711d8b9af917ea0c8f0d495f49689a7d4c61fe2f14f0d68cb3e5691b92eb9e410e93ccf74d569769f2c5ab7300d2d74045ebfae1489a6b3b2dfa7f4e2955a6456602d979ef891fbfacb3295fc2da29edefef55bb4af0fd7b05a19c9c5eaf61fb531868dd0c56c6ae212bc3407d7e9c0e02b64c7bf310e9745ca632ac42023b9e58aa38e6f62e69969347bdc46bf4f4137ef79", ['\x00', '\x00', '\x00']}, 0x506) fsmount(0xffffffffffffffff, 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000380)={{0x1, 0x1, 0x18, r1}, './file1\x00'}) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="240000001000010000000000000000000e00000005000000000000000880040019000d47f4fd73d9c1e973c101fcf605d214a6e3e2eec3beea29615d14888be3a69c50d017a9cafa9a39f50cb021df5f58edaab1be2fe2"], 0x24}}, 0x0) openat(r0, &(0x7f0000000340)='./file1\x00', 0x109840, 0x1c7) r5 = socket$netlink(0x10, 0x3, 0x0) sendfile(r4, r5, 0x0, 0x2) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r6, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2}) [ 1039.039726] ? kernel_text_address+0xf2/0x120 [ 1039.040946] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1039.042060] xas_store+0x8c/0x1c40 [ 1039.042814] __xa_store+0x164/0x2d0 [ 1039.043588] ? xa_delete_node+0x280/0x280 [ 1039.044461] ? trace_hardirqs_on+0x5b/0x180 [ 1039.045375] xa_store+0x31/0x50 [ 1039.046064] __io_uring_add_tctx_node+0x1cf/0x520 [ 1039.047071] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1039.048161] ? alloc_fd+0x2e7/0x670 [ 1039.048933] io_uring_setup+0x1fbb/0x2980 [ 1039.049819] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1039.050879] ? wait_for_completion_io+0x270/0x270 [ 1039.051915] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1039.053007] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1039.054101] do_syscall_64+0x33/0x40 [ 1039.054251] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1039.054886] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1039.054899] RIP: 0033:0x7f466af67b19 [ 1039.054918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1039.054929] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1039.064134] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1039.065694] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1039.067478] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1039.069188] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1039.070923] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:19:26 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x1400, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1051.752504] FAULT_INJECTION: forcing a failure. [ 1051.752504] name failslab, interval 1, probability 0, space 0, times 0 [ 1051.754699] FAULT_INJECTION: forcing a failure. [ 1051.754699] name failslab, interval 1, probability 0, space 0, times 0 [ 1051.754943] CPU: 1 PID: 7924 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1051.754960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1051.759715] Call Trace: [ 1051.760281] dump_stack+0x107/0x167 [ 1051.761076] should_fail.cold+0x5/0xa [ 1051.761887] ? xas_alloc+0x336/0x440 [ 1051.762668] should_failslab+0x5/0x20 [ 1051.763468] kmem_cache_alloc+0x5b/0x310 [ 1051.764337] xas_alloc+0x336/0x440 [ 1051.765090] xas_create+0x34a/0x10d0 [ 1051.765898] ? kernel_text_address+0xf2/0x120 [ 1051.766852] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1051.767960] xas_store+0x8c/0x1c40 [ 1051.768724] __xa_store+0x164/0x2d0 [ 1051.769499] ? xa_delete_node+0x280/0x280 [ 1051.770391] ? trace_hardirqs_on+0x5b/0x180 [ 1051.771313] xa_store+0x31/0x50 [ 1051.772012] __io_uring_add_tctx_node+0x1cf/0x520 [ 1051.773027] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1051.774133] ? alloc_fd+0x2e7/0x670 [ 1051.774911] io_uring_setup+0x1fbb/0x2980 [ 1051.775803] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1051.776869] ? wait_for_completion_io+0x270/0x270 [ 1051.777908] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1051.779012] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1051.780098] do_syscall_64+0x33/0x40 [ 1051.780882] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1051.781970] RIP: 0033:0x7f466af67b19 [ 1051.782756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1051.786652] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1051.788254] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1051.789797] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1051.791310] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1051.792816] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1051.794328] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1051.795863] CPU: 0 PID: 7929 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1051.796829] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1051.797995] Call Trace: [ 1051.798373] dump_stack+0x107/0x167 [ 1051.798881] should_fail.cold+0x5/0xa [ 1051.799416] ? __do_sys_memfd_create+0xfb/0x450 [ 1051.800066] should_failslab+0x5/0x20 [ 1051.800598] __kmalloc+0x72/0x390 [ 1051.801089] __do_sys_memfd_create+0xfb/0x450 [ 1051.801731] ? ksys_write+0x1a9/0x260 [ 1051.802261] ? memfd_file_seals_ptr+0x170/0x170 [ 1051.802914] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1051.803656] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1051.804377] do_syscall_64+0x33/0x40 08:19:39 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0x0, 0xa00}, 0x10044001) 08:19:39 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x8}}}}}}, 0x0) 08:19:39 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) r1 = open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) fcntl$addseals(r1, 0x409, 0x1) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1, {0x6}}, './file0\x00'}) r3 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs/binder-control\x00', 0x1802, 0x0) tee(r2, r3, 0x7, 0x2) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r6, 0x0, 0x0}, 0x0) openat(r6, &(0x7f0000000140)='./file0\x00', 0x2682, 0x30) 08:19:39 executing program 5: syz_mount_image$tmpfs(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$iso9660(&(0x7f0000006cc0), &(0x7f0000006d00)='./file0/file0\x00', 0x0, 0x0, &(0x7f0000006e80), 0x0, &(0x7f0000007000)=ANY=[@ANYBLOB="3d27d6a83904a546be7930303030303032775018013030303032"]) stat(&(0x7f0000000440)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r0, 0x0) mknod$loop(&(0x7f0000000100)='./file0/file0\x00', 0x1108, 0x1) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x6937, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000080)="cb72ff2badf9387f4f112602f6919ad3c93bf010ed718aaa35", 0x19, 0x80000000}], 0x44040, &(0x7f0000000180)={[{@iocharset={'iocharset', 0x3d, 'cp775'}}, {@cruft}], [{@euid_lt={'euid<', 0xee01}}, {@hash}, {@fowner_lt={'fowner<', 0xee00}}, {@dont_appraise}, {@uid_lt={'uid<', r0}}, {@subj_user}]}) 08:19:39 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 48) 08:19:39 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x2000, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:19:39 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 58) 08:19:39 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 1) [ 1051.804906] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1051.805807] RIP: 0033:0x7fb6c02f6b19 [ 1051.806331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1051.808904] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1051.810000] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 00007fb6c02f6b19 [ 1051.810993] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 00007fb6c03500fb [ 1051.811985] RBP: 0000000000000001 R08: 0000000000000400 R09: ffffffffffffffff [ 1051.812971] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000008100000 [ 1051.813961] R13: 0000000020000100 R14: 0000000000000800 R15: 00000000200001c0 [ 1051.822390] FAULT_INJECTION: forcing a failure. [ 1051.822390] name failslab, interval 1, probability 0, space 0, times 0 [ 1051.825081] CPU: 1 PID: 7932 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1051.826805] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1051.828902] Call Trace: [ 1051.829580] dump_stack+0x107/0x167 [ 1051.830520] should_fail.cold+0x5/0xa [ 1051.831485] ? io_uring_alloc_task_context+0x99/0x6a0 [ 1051.832793] should_failslab+0x5/0x20 [ 1051.833771] kmem_cache_alloc_trace+0x55/0x320 [ 1051.834929] io_uring_alloc_task_context+0x99/0x6a0 [ 1051.836196] ? io_import_iovec+0x1120/0x1120 [ 1051.837300] ? lock_downgrade+0x6d0/0x6d0 [ 1051.838345] ? do_raw_spin_lock+0x121/0x260 [ 1051.839421] ? rwlock_bug.part.0+0x90/0x90 [ 1051.840492] __io_uring_add_tctx_node+0x2c6/0x520 [ 1051.841720] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1051.843035] ? alloc_fd+0x2e7/0x670 [ 1051.843962] io_uring_setup+0x1fbb/0x2980 [ 1051.845024] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1051.846298] ? wait_for_completion_io+0x270/0x270 [ 1051.847530] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1051.848840] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1051.850139] do_syscall_64+0x33/0x40 [ 1051.851070] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1051.852351] RIP: 0033:0x7ffa83495b19 [ 1051.853283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1051.857981] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1051.859929] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1051.861735] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1051.863516] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1051.865299] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1051.867092] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:19:39 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 2) 08:19:39 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x3c00, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:19:39 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 59) 08:19:39 executing program 5: r0 = semget$private(0x0, 0x2, 0xc) semtimedop(r0, &(0x7f0000000000)=[{0x0, 0x7ff}, {0x0, 0x3, 0x1400}, {0x4, 0x40, 0x800}], 0x3, &(0x7f0000000140)) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000480)={&(0x7f00000011c0)=ANY=[@ANYBLOB="58010000", @ANYRES16=0x0, @ANYBLOB="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"/578], 0x158}, 0x1, 0x0, 0x0, 0x4008080}, 0x9c4) writev(r1, &(0x7f0000000280)=[{&(0x7f00000007c0)="08c08baab78868ce0e7b276e83f64d02059edc4edbfe6e3fa69a13e2f785ad479def81fc1b0af53339e4c20c1010f0af533e0da21eb9d24e17190a0835623360b0c7ca830876b5ab6125feb9f8a028ee216882a67207edeea9e4efd186ca6fccd105a6b7e3728c22381de76d9d9349643e51962339cdf65dd858e285724358a8aa0c3f60f8e1ee08373f274c348cc765c8412984cc215c231cea8e2296c404500b6a8c51203edaacdd3bfea635", 0xad}, {&(0x7f0000001a00)="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", 0x1d3}, {0x0}, {&(0x7f0000000a00)="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", 0x7bd}, {&(0x7f0000000700)}, {&(0x7f0000000240)="62b5b1705c148490a0c98b", 0xb}], 0x6) syz_io_uring_setup(0x46289, &(0x7f0000000180)={0x0, 0x3, 0x1, 0x8000000}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_IPV6_HOPOPTS(r4, 0x29, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="67070042a73efbc303d7c09600000000000036e24b37cac1e3d21bd5bdb1ea1f932202e2ab8b9be357e2a08e08b16635657c6d7910995531ef2bc907440370f5d8aab7dcb52877"], 0x40) semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000900)={&(0x7f0000000200)=@l2tp6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)="a63a85", 0x3}], 0x1}}, 0x0) [ 1051.906651] FAULT_INJECTION: forcing a failure. [ 1051.906651] name failslab, interval 1, probability 0, space 0, times 0 [ 1051.908256] CPU: 0 PID: 7940 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1051.909196] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1051.910356] Call Trace: [ 1051.910721] dump_stack+0x107/0x167 [ 1051.911222] should_fail.cold+0x5/0xa [ 1051.911749] ? create_object.isra.0+0x3a/0xa30 [ 1051.912379] should_failslab+0x5/0x20 [ 1051.912900] kmem_cache_alloc+0x5b/0x310 [ 1051.913465] create_object.isra.0+0x3a/0xa30 [ 1051.914079] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1051.914784] __kmalloc+0x16e/0x390 [ 1051.915278] __do_sys_memfd_create+0xfb/0x450 [ 1051.915896] ? ksys_write+0x1a9/0x260 [ 1051.916421] ? memfd_file_seals_ptr+0x170/0x170 [ 1051.917065] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1051.917790] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1051.918496] do_syscall_64+0x33/0x40 [ 1051.919015] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1051.919727] RIP: 0033:0x7fb6c02f6b19 [ 1051.920242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1051.922776] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1051.923827] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 00007fb6c02f6b19 [ 1051.924801] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 00007fb6c03500fb [ 1051.925780] RBP: 0000000000000001 R08: 0000000000000400 R09: ffffffffffffffff [ 1051.926754] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000008100000 [ 1051.927732] R13: 0000000020000100 R14: 0000000000000800 R15: 00000000200001c0 08:19:39 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x3c}}}}}}, 0x0) [ 1051.943496] FAULT_INJECTION: forcing a failure. [ 1051.943496] name failslab, interval 1, probability 0, space 0, times 0 [ 1051.945157] CPU: 0 PID: 7946 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1051.946112] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1051.947246] Call Trace: [ 1051.947608] dump_stack+0x107/0x167 [ 1051.948109] should_fail.cold+0x5/0xa [ 1051.948633] ? create_object.isra.0+0x3a/0xa30 [ 1051.949253] should_failslab+0x5/0x20 [ 1051.949781] kmem_cache_alloc+0x5b/0x310 [ 1051.950332] ? mark_held_locks+0x9e/0xe0 [ 1051.950892] create_object.isra.0+0x3a/0xa30 [ 1051.951492] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1051.952187] kmem_cache_alloc+0x159/0x310 [ 1051.952760] xas_alloc+0x336/0x440 [ 1051.953244] xas_create+0x34a/0x10d0 [ 1051.953758] loop0: detected capacity change from 0 to 2048 [ 1051.954526] ? kernel_text_address+0xf2/0x120 [ 1051.955129] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1051.955834] xas_store+0x8c/0x1c40 [ 1051.956327] __xa_store+0x164/0x2d0 [ 1051.956830] ? xa_delete_node+0x280/0x280 [ 1051.957400] ? trace_hardirqs_on+0x5b/0x180 [ 1051.957982] xa_store+0x31/0x50 [ 1051.958434] __io_uring_add_tctx_node+0x1cf/0x520 [ 1051.959093] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1051.959795] ? alloc_fd+0x2e7/0x670 [ 1051.960292] io_uring_setup+0x1fbb/0x2980 [ 1051.960860] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1051.961556] ? wait_for_completion_io+0x270/0x270 [ 1051.962217] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1051.962924] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1051.963613] do_syscall_64+0x33/0x40 [ 1051.964119] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1051.964805] RIP: 0033:0x7f466af67b19 [ 1051.965318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1051.967792] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1051.968823] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1051.969490] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) [ 1051.969795] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1051.969814] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1051.973816] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1051.974773] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:19:39 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x4000, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:19:39 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xff}}}}}}, 0x0) 08:19:39 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 49) [ 1052.074470] FAULT_INJECTION: forcing a failure. [ 1052.074470] name failslab, interval 1, probability 0, space 0, times 0 [ 1052.077240] CPU: 1 PID: 7957 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1052.078891] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1052.080879] Call Trace: [ 1052.081527] dump_stack+0x107/0x167 [ 1052.082405] should_fail.cold+0x5/0xa [ 1052.083332] ? create_object.isra.0+0x3a/0xa30 [ 1052.084423] should_failslab+0x5/0x20 [ 1052.085352] kmem_cache_alloc+0x5b/0x310 [ 1052.086329] create_object.isra.0+0x3a/0xa30 [ 1052.087392] kmemleak_alloc_percpu+0xa0/0x100 [ 1052.088476] pcpu_alloc+0x4e2/0x1240 [ 1052.089399] __percpu_counter_init+0x10d/0x2d0 [ 1052.090492] io_uring_alloc_task_context+0xcc/0x6a0 [ 1052.091686] ? io_import_iovec+0x1120/0x1120 [ 1052.092717] ? lock_downgrade+0x6d0/0x6d0 [ 1052.093710] ? do_raw_spin_lock+0x121/0x260 [ 1052.094740] ? rwlock_bug.part.0+0x90/0x90 [ 1052.095760] __io_uring_add_tctx_node+0x2c6/0x520 [ 1052.096898] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1052.098142] ? alloc_fd+0x2e7/0x670 [ 1052.099017] io_uring_setup+0x1fbb/0x2980 [ 1052.100000] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1052.101191] ? wait_for_completion_io+0x270/0x270 [ 1052.102364] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1052.103604] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1052.104830] do_syscall_64+0x33/0x40 [ 1052.105724] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1052.106942] RIP: 0033:0x7ffa83495b19 [ 1052.107827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1052.112209] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1052.113993] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1052.115643] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1052.117304] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1052.118961] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1052.120608] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:19:53 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 3) 08:19:53 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x6000, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:19:53 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x7, &(0x7f00000002c0)=0x4, 0x4) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e24, 0x400, @mcast1, 0x3c018000}, 0x1c) r1 = open$dir(0x0, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r2, 0x1, 0x0) r3 = dup2(r0, r2) r4 = syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r3, 0x8982, &(0x7f0000000280)) syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x8, 0x20010, r4, 0x0) recvfrom$inet6(r3, &(0x7f00000000c0)=""/64, 0x40, 0x40, &(0x7f0000000180)={0xa, 0x4e23, 0x3374efe1, @remote, 0x5}, 0x1c) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:19:53 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0x0, 0x4002}, 0x10044001) 08:19:53 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 60) 08:19:53 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:19:53 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 50) 08:19:53 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x104) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x12418, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x1000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x13, r1, 0x0) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2000003, 0x1f012, r2, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_REMOVE_BUFFERS, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r0, 0x0) [ 1066.530952] FAULT_INJECTION: forcing a failure. [ 1066.530952] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1066.532480] CPU: 1 PID: 7974 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1066.533330] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1066.534381] Call Trace: [ 1066.534718] dump_stack+0x107/0x167 [ 1066.535172] should_fail.cold+0x5/0xa [ 1066.535649] _copy_from_user+0x2e/0x1b0 [ 1066.536157] __do_sys_memfd_create+0x16d/0x450 [ 1066.536724] ? memfd_file_seals_ptr+0x170/0x170 [ 1066.537314] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1066.537983] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1066.538625] do_syscall_64+0x33/0x40 [ 1066.539091] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1066.539730] RIP: 0033:0x7fb6c02f6b19 [ 1066.540201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1066.542505] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1066.543456] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 00007fb6c02f6b19 [ 1066.544353] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 00007fb6c03500fb [ 1066.545243] RBP: 0000000000000001 R08: 0000000000000400 R09: ffffffffffffffff [ 1066.546138] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000008100000 [ 1066.547029] R13: 0000000020000100 R14: 0000000000000800 R15: 00000000200001c0 08:19:53 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0xf000, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1066.560467] FAULT_INJECTION: forcing a failure. [ 1066.560467] name failslab, interval 1, probability 0, space 0, times 0 [ 1066.561886] CPU: 1 PID: 7979 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1066.562736] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1066.563765] Call Trace: [ 1066.564082] dump_stack+0x107/0x167 [ 1066.564539] should_fail.cold+0x5/0xa [ 1066.565015] ? create_object.isra.0+0x3a/0xa30 [ 1066.565588] should_failslab+0x5/0x20 [ 1066.566064] kmem_cache_alloc+0x5b/0x310 [ 1066.566569] ? mark_held_locks+0x9e/0xe0 [ 1066.567080] create_object.isra.0+0x3a/0xa30 [ 1066.567618] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1066.568246] kmem_cache_alloc+0x159/0x310 [ 1066.568758] xas_alloc+0x336/0x440 [ 1066.569198] xas_create+0x34a/0x10d0 [ 1066.569667] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1066.570316] xas_store+0x8c/0x1c40 [ 1066.570761] __xa_store+0x164/0x2d0 [ 1066.571211] ? xa_delete_node+0x280/0x280 [ 1066.571726] ? trace_hardirqs_on+0x5b/0x180 [ 1066.572262] xa_store+0x31/0x50 [ 1066.572672] __io_uring_add_tctx_node+0x1cf/0x520 [ 1066.573265] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1066.573917] ? alloc_fd+0x2e7/0x670 [ 1066.574377] io_uring_setup+0x1fbb/0x2980 [ 1066.574893] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1066.575522] ? wait_for_completion_io+0x270/0x270 [ 1066.576134] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1066.576777] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1066.577411] do_syscall_64+0x33/0x40 [ 1066.577858] FAULT_INJECTION: forcing a failure. [ 1066.577858] name failslab, interval 1, probability 0, space 0, times 0 [ 1066.577877] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1066.577896] RIP: 0033:0x7f466af67b19 [ 1066.581428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1066.583693] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1066.584629] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1066.585511] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1066.586394] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1066.587265] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1066.588110] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1066.589013] CPU: 0 PID: 7983 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1066.590563] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1066.592398] Call Trace: [ 1066.592997] dump_stack+0x107/0x167 [ 1066.593835] should_fail.cold+0x5/0xa [ 1066.594685] ? io_wq_create+0xeb/0xc00 [ 1066.595537] should_failslab+0x5/0x20 [ 1066.596381] __kmalloc+0x72/0x390 [ 1066.597159] io_wq_create+0xeb/0xc00 [ 1066.598009] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1066.599151] ? io_import_iovec+0x1120/0x1120 [ 1066.600122] ? io_apoll_task_func+0x2d0/0x2d0 [ 1066.601109] ? __io_req_find_next+0x300/0x300 [ 1066.602107] ? do_raw_spin_lock+0x121/0x260 [ 1066.603074] ? rwlock_bug.part.0+0x90/0x90 [ 1066.604036] __io_uring_add_tctx_node+0x2c6/0x520 [ 1066.605131] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1066.606302] ? alloc_fd+0x2e7/0x670 [ 1066.607117] io_uring_setup+0x1fbb/0x2980 [ 1066.608049] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1066.609203] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1066.610369] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1066.611509] do_syscall_64+0x33/0x40 [ 1066.612341] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1066.613466] RIP: 0033:0x7ffa83495b19 [ 1066.614302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1066.618376] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1066.620099] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1066.621681] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1066.623220] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1066.624763] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1066.626323] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:19:54 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 4) 08:19:54 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={0x0, 0x4}, 0x5200c, 0x1, 0x0, 0x0, 0xfffffffffffffffd, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x242e2, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) writev(r1, &(0x7f0000000240)=[{&(0x7f0000000280)="c8", 0x1}], 0x1) perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2) madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0) [ 1066.646569] FAULT_INJECTION: forcing a failure. [ 1066.646569] name failslab, interval 1, probability 0, space 0, times 0 [ 1066.649144] CPU: 0 PID: 7989 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1066.650654] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1066.652489] Call Trace: [ 1066.653078] dump_stack+0x107/0x167 [ 1066.653894] should_fail.cold+0x5/0xa [ 1066.654723] ? shmem_alloc_inode+0x18/0x40 [ 1066.655639] should_failslab+0x5/0x20 [ 1066.656465] kmem_cache_alloc+0x5b/0x310 [ 1066.657359] ? shmem_destroy_inode+0x70/0x70 [ 1066.658333] shmem_alloc_inode+0x18/0x40 [ 1066.659215] ? shmem_destroy_inode+0x70/0x70 08:19:54 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 61) [ 1066.660175] alloc_inode+0x63/0x240 [ 1066.661091] new_inode+0x23/0x250 [ 1066.661866] shmem_get_inode+0x15e/0xbc0 [ 1066.662776] __shmem_file_setup+0xb8/0x320 [ 1066.663728] ? _copy_from_user+0xfb/0x1b0 [ 1066.664639] __do_sys_memfd_create+0x275/0x450 [ 1066.665701] ? memfd_file_seals_ptr+0x170/0x170 [ 1066.666753] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1066.667904] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1066.669039] do_syscall_64+0x33/0x40 [ 1066.669882] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1066.671021] RIP: 0033:0x7fb6c02f6b19 [ 1066.671849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1066.675923] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1066.677610] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 00007fb6c02f6b19 08:19:54 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 51) 08:19:54 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0xffff, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1066.679191] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 00007fb6c03500fb [ 1066.680790] RBP: 0000000000000001 R08: 0000000000000400 R09: ffffffffffffffff [ 1066.682355] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000008100000 [ 1066.683937] R13: 0000000020000100 R14: 0000000000000800 R15: 00000000200001c0 [ 1066.703279] FAULT_INJECTION: forcing a failure. [ 1066.703279] name failslab, interval 1, probability 0, space 0, times 0 [ 1066.704668] CPU: 1 PID: 7993 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1066.705481] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1066.706466] Call Trace: [ 1066.706777] dump_stack+0x107/0x167 [ 1066.707214] should_fail.cold+0x5/0xa [ 1066.707662] ? create_object.isra.0+0x3a/0xa30 [ 1066.708199] should_failslab+0x5/0x20 [ 1066.708640] kmem_cache_alloc+0x5b/0x310 [ 1066.709113] ? io_uring_alloc_task_context+0xf5/0x6a0 [ 1066.709730] create_object.isra.0+0x3a/0xa30 [ 1066.710242] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1066.710838] __kmalloc+0x16e/0x390 [ 1066.711259] io_wq_create+0xeb/0xc00 [ 1066.711700] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1066.712294] ? io_import_iovec+0x1120/0x1120 [ 1066.712803] ? io_apoll_task_func+0x2d0/0x2d0 [ 1066.713335] ? __io_req_find_next+0x300/0x300 [ 1066.713864] ? do_raw_spin_lock+0x121/0x260 [ 1066.714365] ? rwlock_bug.part.0+0x90/0x90 [ 1066.714860] __io_uring_add_tctx_node+0x2c6/0x520 [ 1066.715421] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1066.716034] ? alloc_fd+0x2e7/0x670 [ 1066.716462] io_uring_setup+0x1fbb/0x2980 [ 1066.716951] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1066.717546] ? wait_for_completion_io+0x270/0x270 [ 1066.718125] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1066.718771] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1066.719376] do_syscall_64+0x33/0x40 [ 1066.719802] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1066.720403] RIP: 0033:0x7ffa83495b19 [ 1066.720840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1066.723001] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1066.723893] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1066.724725] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1066.725570] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1066.726400] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1066.727234] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1066.731185] FAULT_INJECTION: forcing a failure. [ 1066.731185] name failslab, interval 1, probability 0, space 0, times 0 [ 1066.732525] CPU: 1 PID: 7994 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1066.733327] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1066.734286] Call Trace: [ 1066.734597] dump_stack+0x107/0x167 [ 1066.735016] should_fail.cold+0x5/0xa [ 1066.735468] ? create_object.isra.0+0x3a/0xa30 [ 1066.735992] should_failslab+0x5/0x20 [ 1066.736439] kmem_cache_alloc+0x5b/0x310 [ 1066.736904] ? mark_held_locks+0x9e/0xe0 [ 1066.737383] create_object.isra.0+0x3a/0xa30 [ 1066.737895] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1066.738490] kmem_cache_alloc+0x159/0x310 [ 1066.738985] xas_alloc+0x336/0x440 [ 1066.739411] xas_create+0x34a/0x10d0 [ 1066.739844] ? kernel_text_address+0xf2/0x120 [ 1066.740372] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1066.740993] xas_store+0x8c/0x1c40 [ 1066.741416] __xa_store+0x164/0x2d0 [ 1066.741851] ? xa_delete_node+0x280/0x280 [ 1066.742336] ? trace_hardirqs_on+0x5b/0x180 [ 1066.742847] xa_store+0x31/0x50 [ 1066.743228] __io_uring_add_tctx_node+0x1cf/0x520 [ 1066.743802] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1066.744405] ? alloc_fd+0x2e7/0x670 [ 1066.744842] io_uring_setup+0x1fbb/0x2980 [ 1066.745335] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1066.745926] ? wait_for_completion_io+0x270/0x270 [ 1066.746509] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1066.747125] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1066.747740] do_syscall_64+0x33/0x40 [ 1066.748169] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1066.748766] RIP: 0033:0x7f466af67b19 [ 1066.749194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1066.751361] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1066.752260] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1066.753100] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1066.753954] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1066.754785] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1066.755619] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:19:54 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 5) 08:19:54 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x3}}}}}}, 0x0) 08:19:54 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 52) 08:19:54 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 62) [ 1066.806832] FAULT_INJECTION: forcing a failure. [ 1066.806832] name failslab, interval 1, probability 0, space 0, times 0 [ 1066.808214] CPU: 1 PID: 8006 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1066.809021] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1066.810004] Call Trace: [ 1066.810316] dump_stack+0x107/0x167 [ 1066.810741] should_fail.cold+0x5/0xa [ 1066.811193] ? create_object.isra.0+0x3a/0xa30 [ 1066.811729] should_failslab+0x5/0x20 [ 1066.812183] kmem_cache_alloc+0x5b/0x310 [ 1066.812653] create_object.isra.0+0x3a/0xa30 [ 1066.813167] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1066.813766] kmem_cache_alloc+0x159/0x310 [ 1066.814259] ? shmem_destroy_inode+0x70/0x70 [ 1066.814778] shmem_alloc_inode+0x18/0x40 [ 1066.815245] ? shmem_destroy_inode+0x70/0x70 [ 1066.815760] alloc_inode+0x63/0x240 [ 1066.816180] new_inode+0x23/0x250 [ 1066.816592] shmem_get_inode+0x15e/0xbc0 [ 1066.817067] __shmem_file_setup+0xb8/0x320 [ 1066.817578] ? _copy_from_user+0xfb/0x1b0 [ 1066.818069] __do_sys_memfd_create+0x275/0x450 [ 1066.818606] ? memfd_file_seals_ptr+0x170/0x170 [ 1066.819170] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1066.819772] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1066.820386] do_syscall_64+0x33/0x40 [ 1066.820811] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1066.821418] RIP: 0033:0x7fb6c02f6b19 [ 1066.821859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1066.824035] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1066.824929] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 00007fb6c02f6b19 [ 1066.825769] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 00007fb6c03500fb [ 1066.826609] RBP: 0000000000000001 R08: 0000000000000400 R09: ffffffffffffffff [ 1066.827447] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000008100000 [ 1066.828281] R13: 0000000020000100 R14: 0000000000000800 R15: 00000000200001c0 [ 1066.833511] FAULT_INJECTION: forcing a failure. [ 1066.833511] name failslab, interval 1, probability 0, space 0, times 0 [ 1066.834875] CPU: 1 PID: 8007 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1066.835678] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1066.836653] Call Trace: [ 1066.836964] dump_stack+0x107/0x167 [ 1066.837391] should_fail.cold+0x5/0xa [ 1066.837850] ? io_wq_create+0x6ef/0xc00 [ 1066.838322] should_failslab+0x5/0x20 [ 1066.838766] kmem_cache_alloc_node_trace+0x59/0x340 [ 1066.839353] io_wq_create+0x6ef/0xc00 [ 1066.839805] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1066.840407] ? io_import_iovec+0x1120/0x1120 [ 1066.840921] ? io_apoll_task_func+0x2d0/0x2d0 [ 1066.841448] ? __io_req_find_next+0x300/0x300 [ 1066.841978] ? do_raw_spin_lock+0x121/0x260 [ 1066.842493] ? rwlock_bug.part.0+0x90/0x90 [ 1066.842992] __io_uring_add_tctx_node+0x2c6/0x520 [ 1066.843558] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1066.844175] ? alloc_fd+0x2e7/0x670 [ 1066.844615] io_uring_setup+0x1fbb/0x2980 [ 1066.845116] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1066.845724] ? wait_for_completion_io+0x270/0x270 [ 1066.846298] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1066.846914] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1066.847522] do_syscall_64+0x33/0x40 [ 1066.847959] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1066.848553] RIP: 0033:0x7ffa83495b19 [ 1066.848990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1066.851166] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1066.852061] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1066.852915] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1066.853772] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1066.854613] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1066.855450] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1066.863764] FAULT_INJECTION: forcing a failure. [ 1066.863764] name failslab, interval 1, probability 0, space 0, times 0 [ 1066.865101] CPU: 1 PID: 8012 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1066.865921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1066.866867] Call Trace: [ 1066.867179] dump_stack+0x107/0x167 [ 1066.867598] should_fail.cold+0x5/0xa [ 1066.868049] ? xas_alloc+0x336/0x440 [ 1066.868481] should_failslab+0x5/0x20 [ 1066.868930] kmem_cache_alloc+0x5b/0x310 [ 1066.869408] xas_alloc+0x336/0x440 [ 1066.869838] xas_create+0x34a/0x10d0 [ 1066.870279] ? kernel_text_address+0xf2/0x120 [ 1066.870804] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1066.871414] xas_store+0x8c/0x1c40 [ 1066.871839] __xa_store+0x164/0x2d0 [ 1066.872267] ? xa_delete_node+0x280/0x280 [ 1066.872757] ? trace_hardirqs_on+0x5b/0x180 [ 1066.873269] xa_store+0x31/0x50 [ 1066.873672] __io_uring_add_tctx_node+0x1cf/0x520 [ 1066.874238] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1066.874842] ? alloc_fd+0x2e7/0x670 [ 1066.875273] io_uring_setup+0x1fbb/0x2980 [ 1066.875757] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1066.876353] ? wait_for_completion_io+0x270/0x270 [ 1066.876928] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1066.877547] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1066.878159] do_syscall_64+0x33/0x40 [ 1066.878598] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1066.879196] RIP: 0033:0x7f466af67b19 [ 1066.879634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1066.881820] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1066.882714] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1066.883547] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1066.884390] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1066.885221] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1066.886074] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1066.891138] loop0: detected capacity change from 0 to 2048 [ 1066.903356] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:20:07 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 53) 08:20:07 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:20:07 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0x0, 0xa000000}, 0x10044001) 08:20:07 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/bus/input/devices\x00', 0x0, 0x0) bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e24, 0x400, @loopback, 0x6}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0xfffffffe, @remote}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) pipe(&(0x7f0000000140)) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000180), 0x6000, 0x0) sendmsg$DEVLINK_CMD_RELOAD(r2, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0xa8, 0x0, 0x100, 0x70bd28, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x4}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}]}, 0xa8}, 0x1, 0x0, 0x0, 0x4}, 0x2000) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:20:07 executing program 5: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/93, 0x5d}, {&(0x7f0000000140)=""/128, 0x80}, {&(0x7f0000000240)=""/75, 0x4b}], 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES16=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="c30000002900e1000000b5540000010000020200", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="20000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYBLOB="1c400fbc4b9a247b5851239e5ea48d4c472532f1be13294a6911c0869093783ff5b559ddcc48bc32e6dbcf4519ab9a8d100037b4a63ea8bf25e1d9268e2c107ff1d27d0a1bbac81d18972580202bfc219c5238dc8e74506c23224e689d879e17d7a1eb415076cf9c0e0b36b30aa65ee4195d9c55e99f672abd0ae96a7782b38a2d511969e2a271f74d7cc5d4149ff2d2bfdbc42a5db7a9ee70a3898981db6122d20ea80215c512e1fb77de0b703a8024c7233c1523899b36f7d7d32b45c9949b399a0d0016424b1c03918ec019b0b41654f6e51cca7b6f1dacc5", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x128}, 0x10020) sendmsg$FOU_CMD_DEL(r1, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x14, 0x0, 0x800, 0x70bd29, 0x25dfdbfd}, 0x14}}, 0x4000010) r2 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x1, &(0x7f00000002c0)=0x2, 0x4) fsmount(r2, 0x1, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), r0) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$int_in(r4, 0x5452, &(0x7f00000000c0)=0xfffffffffffffff8) sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r2, &(0x7f0000000640)={&(0x7f0000000540), 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x40, r3, 0x200, 0x70bd26, 0x25dfdbfe, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x2, 0x2d}}}}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x0, 0x6f}}, @NL80211_ATTR_WDEV={0xc, 0x99, {0xe34, 0x30}}]}, 0x40}, 0x1, 0x0, 0x0, 0x20004000}, 0x81) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000010000000000000002", 0x2d, 0x5}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x80, &(0x7f0000011300)) 08:20:07 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 63) 08:20:07 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 6) 08:20:07 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x8}}}}}}, 0x0) [ 1080.619808] FAULT_INJECTION: forcing a failure. [ 1080.619808] name failslab, interval 1, probability 0, space 0, times 0 [ 1080.622492] CPU: 0 PID: 8034 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1080.624060] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1080.625390] FAULT_INJECTION: forcing a failure. [ 1080.625390] name failslab, interval 1, probability 0, space 0, times 0 [ 1080.625971] Call Trace: [ 1080.625999] dump_stack+0x107/0x167 [ 1080.626028] should_fail.cold+0x5/0xa [ 1080.630909] ? security_inode_alloc+0x34/0x160 [ 1080.631976] should_failslab+0x5/0x20 [ 1080.632858] kmem_cache_alloc+0x5b/0x310 [ 1080.633816] security_inode_alloc+0x34/0x160 [ 1080.634841] inode_init_always+0xa4e/0xd10 [ 1080.635811] ? shmem_destroy_inode+0x70/0x70 [ 1080.636838] alloc_inode+0x84/0x240 [ 1080.637680] new_inode+0x23/0x250 [ 1080.638502] shmem_get_inode+0x15e/0xbc0 [ 1080.639452] __shmem_file_setup+0xb8/0x320 [ 1080.640431] ? _copy_from_user+0xfb/0x1b0 [ 1080.641403] __do_sys_memfd_create+0x275/0x450 [ 1080.642470] ? memfd_file_seals_ptr+0x170/0x170 [ 1080.643554] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1080.644784] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1080.646005] do_syscall_64+0x33/0x40 [ 1080.646880] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1080.648083] RIP: 0033:0x7fb6c02f6b19 [ 1080.648955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1080.653261] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1080.655051] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 00007fb6c02f6b19 [ 1080.656718] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 00007fb6c03500fb [ 1080.658402] RBP: 0000000000000001 R08: 0000000000000400 R09: ffffffffffffffff [ 1080.660084] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000008100000 [ 1080.661783] R13: 0000000020000100 R14: 0000000000000800 R15: 00000000200001c0 [ 1080.663507] CPU: 1 PID: 8033 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1080.665085] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1080.667010] Call Trace: [ 1080.667625] dump_stack+0x107/0x167 [ 1080.668479] should_fail.cold+0x5/0xa [ 1080.669374] ? create_object.isra.0+0x3a/0xa30 [ 1080.669890] FAULT_INJECTION: forcing a failure. [ 1080.669890] name failslab, interval 1, probability 0, space 0, times 0 [ 1080.670444] should_failslab+0x5/0x20 [ 1080.670476] kmem_cache_alloc+0x5b/0x310 [ 1080.674775] ? io_wq_create+0x114/0xc00 [ 1080.675690] create_object.isra.0+0x3a/0xa30 [ 1080.676694] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1080.677872] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1080.679040] io_wq_create+0x6ef/0xc00 [ 1080.679922] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1080.681083] ? io_import_iovec+0x1120/0x1120 [ 1080.682098] ? io_apoll_task_func+0x2d0/0x2d0 [ 1080.683123] ? __io_req_find_next+0x300/0x300 [ 1080.684150] ? do_raw_spin_lock+0x121/0x260 [ 1080.685141] ? rwlock_bug.part.0+0x90/0x90 [ 1080.686130] __io_uring_add_tctx_node+0x2c6/0x520 [ 1080.687237] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1080.688434] ? alloc_fd+0x2e7/0x670 [ 1080.689276] io_uring_setup+0x1fbb/0x2980 [ 1080.690240] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1080.691399] ? wait_for_completion_io+0x270/0x270 [ 1080.692524] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1080.693736] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1080.694908] do_syscall_64+0x33/0x40 [ 1080.695751] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1080.696914] RIP: 0033:0x7ffa83495b19 [ 1080.697765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1080.701944] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1080.703668] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1080.705285] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1080.706910] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1080.708523] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1080.710114] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1080.711749] CPU: 0 PID: 8036 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1080.713241] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1080.715037] Call Trace: [ 1080.715613] dump_stack+0x107/0x167 [ 1080.716403] should_fail.cold+0x5/0xa [ 1080.717220] ? create_object.isra.0+0x3a/0xa30 [ 1080.718206] should_failslab+0x5/0x20 [ 1080.719029] kmem_cache_alloc+0x5b/0x310 [ 1080.719909] ? mark_held_locks+0x9e/0xe0 [ 1080.720788] create_object.isra.0+0x3a/0xa30 [ 1080.721743] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1080.722850] kmem_cache_alloc+0x159/0x310 [ 1080.723756] xas_alloc+0x336/0x440 [ 1080.724525] xas_create+0x34a/0x10d0 [ 1080.725351] ? kernel_text_address+0xf2/0x120 [ 1080.726326] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1080.727470] xas_store+0x8c/0x1c40 [ 1080.728255] __xa_store+0x164/0x2d0 [ 1080.729054] ? xa_delete_node+0x280/0x280 [ 1080.729979] ? trace_hardirqs_on+0x5b/0x180 [ 1080.730924] xa_store+0x31/0x50 [ 1080.731648] __io_uring_add_tctx_node+0x1cf/0x520 [ 1080.732699] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1080.733850] ? alloc_fd+0x2e7/0x670 [ 1080.734661] io_uring_setup+0x1fbb/0x2980 [ 1080.735578] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1080.736682] ? wait_for_completion_io+0x270/0x270 [ 1080.737770] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1080.738924] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1080.740060] do_syscall_64+0x33/0x40 [ 1080.740877] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1080.742016] RIP: 0033:0x7f466af67b19 [ 1080.742833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1080.746895] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1080.748585] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1080.750182] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1080.751763] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1080.753350] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1080.754932] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:20:08 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x2, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:20:08 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/locks\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000000)=""/11, 0xb, 0x0) 08:20:08 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$inet6(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0xa, 0x4e23, 0x74, @dev={0xfe, 0x80, '\x00', 0x30}, 0x2}, 0x1c, &(0x7f0000000200)=[{&(0x7f0000000100)="ba5a3616a6ef99ce3fb15f3e18561aaadf7b399d8ea0ec0c7a5cbd466145f97556021cc3f501f2b394a4df1e8244bf7a9ef8b9ac12094a07fa30a1bcbafd9d2b8a0d647a0708c525c6638d7a8a45bbb34393f0f83563d864f4d87c090c39bd5fd933a2206fd5cb724b4730f64f5978d27dc880ff38b9844c65b4282e2bc63901e5671375bf5eff4e384da66c5bc5fd3eaa9a", 0x92}], 0x1}, 0x4000) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:20:08 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x3c}}}}}}, 0x0) 08:20:08 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x3, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:20:21 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x8, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:20:21 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x300}}}}}}, 0x0) 08:20:21 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 7) 08:20:21 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 64) 08:20:21 executing program 5: openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x313ac0, 0x0) 08:20:21 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 54) 08:20:21 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0x0, 0x40020000}, 0x10044001) [ 1094.431702] FAULT_INJECTION: forcing a failure. [ 1094.431702] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.434189] CPU: 1 PID: 8067 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1094.435687] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.437486] Call Trace: [ 1094.438076] dump_stack+0x107/0x167 [ 1094.438870] should_fail.cold+0x5/0xa [ 1094.439704] ? __io_uring_add_tctx_node+0x15c/0x520 [ 1094.440782] should_failslab+0x5/0x20 [ 1094.441608] kmem_cache_alloc_trace+0x55/0x320 [ 1094.442612] __io_uring_add_tctx_node+0x15c/0x520 [ 1094.443659] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1094.444786] ? alloc_fd+0x2e7/0x670 [ 1094.445580] io_uring_setup+0x1fbb/0x2980 [ 1094.446496] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1094.447594] ? wait_for_completion_io+0x270/0x270 [ 1094.448662] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.449805] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.450935] do_syscall_64+0x33/0x40 [ 1094.451762] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1094.452873] RIP: 0033:0x7ffa83495b19 [ 1094.453677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.457676] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1094.459346] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1094.459851] FAULT_INJECTION: forcing a failure. [ 1094.459851] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.460887] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1094.460900] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1094.460912] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1094.460923] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1094.471664] CPU: 0 PID: 8075 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1094.473375] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.475377] Call Trace: [ 1094.475968] dump_stack+0x107/0x167 [ 1094.476782] should_fail.cold+0x5/0xa [ 1094.477866] ? create_object.isra.0+0x3a/0xa30 [ 1094.478886] should_failslab+0x5/0x20 [ 1094.479733] kmem_cache_alloc+0x5b/0x310 [ 1094.480636] create_object.isra.0+0x3a/0xa30 [ 1094.481610] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1094.482875] kmem_cache_alloc+0x159/0x310 [ 1094.483796] security_inode_alloc+0x34/0x160 [ 1094.484767] inode_init_always+0xa4e/0xd10 [ 1094.485699] ? shmem_destroy_inode+0x70/0x70 [ 1094.486684] alloc_inode+0x84/0x240 [ 1094.487487] new_inode+0x23/0x250 [ 1094.488259] shmem_get_inode+0x15e/0xbc0 [ 1094.489164] __shmem_file_setup+0xb8/0x320 [ 1094.490107] ? _copy_from_user+0xfb/0x1b0 [ 1094.491023] __do_sys_memfd_create+0x275/0x450 [ 1094.492031] ? memfd_file_seals_ptr+0x170/0x170 [ 1094.493063] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.494231] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.495371] do_syscall_64+0x33/0x40 [ 1094.496192] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1094.497320] RIP: 0033:0x7fb6c02f6b19 [ 1094.498152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.502217] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1094.503896] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 00007fb6c02f6b19 [ 1094.505472] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 00007fb6c03500fb [ 1094.507060] RBP: 0000000000000001 R08: 0000000000000400 R09: ffffffffffffffff [ 1094.508638] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000008100000 [ 1094.510226] R13: 0000000020000100 R14: 0000000000000800 R15: 00000000200001c0 08:20:21 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$TIPC_NL_MON_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f0000000700)=ANY=[@ANYBLOB="a04556e314f7d5d559ae4e1b494535512e19fffbf35e910a6df24831a27b6f4e7409d594a3c9ccc05e2b16953084ddabf6d77534a5c0e51881a5082c853ceae1db6bbcceb6f9f73d47cb1297a3120422cf0ce15aa53581c7fb9862b82f8a3b61bc347c4b126fc572709067ce29ef0ea4d483b8a25a105516e2d4dd55154707c2d39d9eea916802c4717087ee3ae25ac73ee626c93625452ffbf0c7d38ccec8b63d805d09cb651f45d349462aebf8ff75a6352270c2b844e2fb96ee9f2abc3c6538cd11893c90a7d07410fd8c9f90f5fd69056b1eff7ca09d612b5da2326627d3d43e798b8800"/245, @ANYRES16=r1, @ANYBLOB="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"], 0x17c}, 0x1, 0x0, 0x0, 0x8000}, 0x10) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f0000000980)={0x2e0, r2, 0x200, 0x70bd25, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0x74, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x800}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x54, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0xfff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x58}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6000}, @TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x81}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x80}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x20}]}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x7ff}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_NODE={0x154, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x5}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3ff}, @TIPC_NLA_NODE_ID={0xf4, 0x3, "d568561aee4335baea29505707d742fc3ca2d954f3d01d6d0a92a0217be90cfb11235d85ed67170eb592af59c479e21973f9de5df7303e84acc028d12d3b1b36cd14a21ef3eb5e786f6c4a6b9e550a4d905f04384ac9f52a3651115958e4e25b86ba513a670380fb3a2ef00de465f432c7b97b1865ebf23737a397b05d51d515ac9efd3909e1aea92e49d376c34b1956339c55e281e0dcde6542bebfc9195b5538e171fb0227d71fd9ed2cb4c50632ca967ffca24ebfdc71e0f4a18bef78bc88598112d174c7cccbe81c48e37f16bbef673055452502fedbb252f8695d0c62527139b2a5645446f46b8c2994cc6c0b74"}, @TIPC_NLA_NODE_ID={0x3d, 0x3, "21bf9c10da3935536fb50f899ba49225578625d05b5dc0e5ba9ade104bb0e12d2a5b84204f958602c80ad0c870a10b3050f13de7ead0f099ff"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}]}, @TIPC_NLA_SOCK={0xa4, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5a1}, @TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}]}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3d2e1fac}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x32}]}, @TIPC_NLA_SOCK_CON={0x4}, @TIPC_NLA_SOCK_CON={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x1000}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3ff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8001}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}]}]}, @TIPC_NLA_NODE={0x4c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x46, 0x4, {'gcm(aes)\x00', 0x1e, "2a4d9db647dd1e147ea3da85d71f6cb6605e75bbd2323acb09b38351caab"}}]}]}, 0x2e0}, 0x1, 0x0, 0x0, 0x20048804}, 0x40024) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:20:21 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x11, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1094.523802] FAULT_INJECTION: forcing a failure. [ 1094.523802] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.526462] CPU: 0 PID: 8076 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1094.528022] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.529918] Call Trace: [ 1094.530527] dump_stack+0x107/0x167 [ 1094.531361] should_fail.cold+0x5/0xa [ 1094.532230] ? create_object.isra.0+0x3a/0xa30 [ 1094.533268] should_failslab+0x5/0x20 [ 1094.534146] kmem_cache_alloc+0x5b/0x310 [ 1094.535076] ? mark_held_locks+0x9e/0xe0 [ 1094.536004] create_object.isra.0+0x3a/0xa30 [ 1094.536998] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1094.538167] kmem_cache_alloc+0x159/0x310 [ 1094.539115] xas_alloc+0x336/0x440 [ 1094.539926] xas_create+0x34a/0x10d0 [ 1094.540782] ? queued_spin_lock_slowpath+0xcc/0x8c0 [ 1094.541930] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1094.543124] xas_store+0x8c/0x1c40 [ 1094.543949] __xa_store+0x164/0x2d0 [ 1094.544779] ? xa_delete_node+0x280/0x280 [ 1094.544873] loop0: detected capacity change from 0 to 2048 [ 1094.545725] ? trace_hardirqs_on+0x5b/0x180 [ 1094.545762] xa_store+0x31/0x50 [ 1094.548678] __io_uring_add_tctx_node+0x1cf/0x520 [ 1094.549777] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1094.550978] ? alloc_fd+0x2e7/0x670 [ 1094.551833] io_uring_setup+0x1fbb/0x2980 [ 1094.552770] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1094.553951] ? wait_for_completion_io+0x270/0x270 [ 1094.555076] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.556251] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.557434] do_syscall_64+0x33/0x40 [ 1094.558292] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1094.559455] RIP: 0033:0x7f466af67b19 [ 1094.560307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.564526] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1094.566182] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1094.567666] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1094.569162] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1094.569326] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) [ 1094.570666] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1094.570679] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:20:21 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 55) 08:20:21 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000040)={0x0, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2}}, {0x2, 0x0, @dev}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x4}) r1 = syz_open_dev$vcsn(&(0x7f0000000000), 0x37, 0x10000) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000000c0)={{{@in=@empty, @in=@dev}}, {{@in6=@remote}, 0x0, @in6}}, &(0x7f00000001c0)=0xe8) [ 1094.637931] FAULT_INJECTION: forcing a failure. [ 1094.637931] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.640475] CPU: 0 PID: 8092 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1094.641905] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.643680] Call Trace: [ 1094.644236] dump_stack+0x107/0x167 [ 1094.645018] should_fail.cold+0x5/0xa [ 1094.645814] ? create_object.isra.0+0x3a/0xa30 [ 1094.646780] should_failslab+0x5/0x20 [ 1094.647568] kmem_cache_alloc+0x5b/0x310 [ 1094.648440] create_object.isra.0+0x3a/0xa30 [ 1094.649376] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1094.650433] kmem_cache_alloc_trace+0x151/0x320 [ 1094.651439] __io_uring_add_tctx_node+0x15c/0x520 [ 1094.652458] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1094.653556] ? alloc_fd+0x2e7/0x670 [ 1094.654343] io_uring_setup+0x1fbb/0x2980 [ 1094.655241] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1094.656309] ? wait_for_completion_io+0x270/0x270 [ 1094.657356] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.658474] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.659565] do_syscall_64+0x33/0x40 [ 1094.660353] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1094.661434] RIP: 0033:0x7ffa83495b19 [ 1094.662226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.666135] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1094.667745] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1094.669259] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1094.670782] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1094.672300] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1094.673807] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:20:22 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x3c00}}}}}}, 0x0) 08:20:22 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x14, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:20:22 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005"], 0x24}}, 0x0) unshare(0x28020600) unshare(0x20060000) unshare(0x48020200) 08:20:22 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 56) [ 1094.789334] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 08:20:22 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 65) [ 1094.808777] FAULT_INJECTION: forcing a failure. [ 1094.808777] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.811349] CPU: 0 PID: 8103 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1094.812806] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.814593] Call Trace: [ 1094.815160] dump_stack+0x107/0x167 [ 1094.815935] should_fail.cold+0x5/0xa [ 1094.816749] ? xas_alloc+0x336/0x440 [ 1094.817541] should_failslab+0x5/0x20 [ 1094.818369] kmem_cache_alloc+0x5b/0x310 [ 1094.819241] ? stack_trace_consume_entry+0x160/0x160 [ 1094.820328] xas_alloc+0x336/0x440 [ 1094.821086] xas_create+0x34a/0x10d0 [ 1094.821886] ? kernel_text_address+0xf2/0x120 [ 1094.822854] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1094.823968] xas_store+0x8c/0x1c40 [ 1094.824732] __xa_store+0x164/0x2d0 [ 1094.825508] ? xa_delete_node+0x280/0x280 [ 1094.826402] ? trace_hardirqs_on+0x5b/0x180 [ 1094.827324] xa_store+0x31/0x50 [ 1094.828024] __io_uring_add_tctx_node+0x1cf/0x520 [ 1094.829049] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1094.830162] ? alloc_fd+0x2e7/0x670 [ 1094.830947] io_uring_setup+0x1fbb/0x2980 [ 1094.831836] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1094.832903] ? wait_for_completion_io+0x270/0x270 [ 1094.833952] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.835062] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.836154] do_syscall_64+0x33/0x40 [ 1094.836950] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1094.838046] RIP: 0033:0x7ffa83495b19 [ 1094.838834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.842770] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1094.844391] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1094.845907] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1094.847435] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1094.848950] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1094.850479] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1094.868434] FAULT_INJECTION: forcing a failure. [ 1094.868434] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.870866] CPU: 1 PID: 8106 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1094.872335] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.874129] Call Trace: [ 1094.874696] dump_stack+0x107/0x167 [ 1094.875471] should_fail.cold+0x5/0xa [ 1094.876284] ? create_object.isra.0+0x3a/0xa30 [ 1094.877252] should_failslab+0x5/0x20 [ 1094.878074] kmem_cache_alloc+0x5b/0x310 [ 1094.878932] ? mark_held_locks+0x9e/0xe0 [ 1094.879795] create_object.isra.0+0x3a/0xa30 [ 1094.880721] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1094.881800] kmem_cache_alloc+0x159/0x310 [ 1094.882699] xas_alloc+0x336/0x440 [ 1094.883460] xas_create+0x34a/0x10d0 [ 1094.884256] ? kernel_text_address+0xf2/0x120 [ 1094.885210] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1094.886351] xas_store+0x8c/0x1c40 [ 1094.887128] __xa_store+0x164/0x2d0 [ 1094.887902] ? xa_delete_node+0x280/0x280 [ 1094.888817] ? trace_hardirqs_on+0x5b/0x180 [ 1094.889743] xa_store+0x31/0x50 [ 1094.890462] __io_uring_add_tctx_node+0x1cf/0x520 [ 1094.891489] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1094.892595] ? alloc_fd+0x2e7/0x670 [ 1094.893376] io_uring_setup+0x1fbb/0x2980 [ 1094.894280] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1094.895356] ? wait_for_completion_io+0x270/0x270 [ 1094.896397] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.897508] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.898631] do_syscall_64+0x33/0x40 [ 1094.899428] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1094.900512] RIP: 0033:0x7f466af67b19 [ 1094.901303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.905236] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1094.906879] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1094.908390] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1094.909910] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1094.911435] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1094.912943] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1094.936090] FAULT_INJECTION: forcing a failure. [ 1094.936090] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.938685] CPU: 1 PID: 8109 Comm: syz-executor.0 Not tainted 5.10.246 #1 08:20:22 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x3c, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:20:22 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 8) 08:20:22 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0xffff}}}}}}, 0x0) [ 1094.940147] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.942191] Call Trace: [ 1094.942762] dump_stack+0x107/0x167 [ 1094.943539] should_fail.cold+0x5/0xa [ 1094.944349] ? __d_alloc+0x2a/0x990 [ 1094.945124] should_failslab+0x5/0x20 [ 1094.945944] kmem_cache_alloc+0x5b/0x310 [ 1094.946814] __d_alloc+0x2a/0x990 [ 1094.947556] d_alloc_pseudo+0x19/0x70 [ 1094.948371] alloc_file_pseudo+0xce/0x250 [ 1094.949251] ? alloc_file+0x5a0/0x5a0 [ 1094.950074] ? shmem_get_inode+0x55c/0xbc0 [ 1094.950979] __shmem_file_setup+0x144/0x320 [ 1094.951922] ? _copy_from_user+0xfb/0x1b0 [ 1094.952807] __do_sys_memfd_create+0x275/0x450 [ 1094.953786] ? memfd_file_seals_ptr+0x170/0x170 [ 1094.954791] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.955903] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.957000] do_syscall_64+0x33/0x40 [ 1094.957786] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1094.958888] RIP: 0033:0x7fb6c02f6b19 [ 1094.959710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.963629] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1094.965254] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 00007fb6c02f6b19 [ 1094.966778] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 00007fb6c03500fb [ 1094.968324] RBP: 0000000000000001 R08: 0000000000000400 R09: ffffffffffffffff [ 1094.969836] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000008100000 [ 1094.971364] R13: 0000000020000100 R14: 0000000000000800 R15: 00000000200001c0 [ 1095.016804] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 08:20:34 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 57) 08:20:34 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x5, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @private0, 0x2706}, 0x1c) 08:20:34 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1, 0x0, 0x0, 0xffffff7f}, 0x10044001) 08:20:34 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 66) 08:20:34 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:20:34 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x60, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:20:34 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 9) 08:20:34 executing program 5: r0 = syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) r4 = syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r7, 0x0, 0x0}, 0x0) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) syz_io_uring_submit(r8, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r9 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x100010, r0, 0x10000000) syz_io_uring_submit(r8, r9, &(0x7f0000000980)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x4, 0x0, 0xffff0000, 0x2, &(0x7f0000000940)="e7ea9d29767bdd6102569e7b05f05c4e8b4d98e83fba7dc5a8fd9209d602247764bd9d64480db134cd752fed09e7ae6ef6f70213", 0x3f, 0x0, 0x1, {0x1}}, 0x9) acct(&(0x7f00000009c0)='./file0\x00') vmsplice(r3, &(0x7f0000000880)=[{&(0x7f0000000140)="40ad616508d1f0f1b5ff3d8dbadd45d25a35917e651e783f4eb38eb464a952c68a6ae317ccc7c5ee5453bde900d4e245c8bc9560b0938df60fc2b94f0071e4c9068472f4ea2b56ff7dd51757c5da9b2f656b82a33ddd7c73f723472e9595f46f0681dfd15d5076aa7e2d0f3939132ae6f534ec04025d52597be1fb2ade60c602a6033594b16454c60978e104f451f7728149dbcb3a267def805b5efe791db4f33fbad80e7ca24c51f36a18774271690fd06010", 0xb3}, {&(0x7f0000000280)="b4bdad9ed3ece5bb08164c42ca41987355ea51688c31c83f8c01b2a9b32c50ab0dc0387e041c129b5a05c9673230e0f506fdb27c2039231e90c9ac1de3317f9f47cf7b79299dca22589e997dd7d8195e4c0002210368e690a71fa92b44f8bd2d230a9a2ae6836b753949fee5b0b648b790ba49b5590c4a6deeff34acc13c734c6981f6ae5d0714161d2e53c6421e3c80fe8f9d2e7922820a12aaa908dd6ca46a4dd7f6ae7321eea74e976a5367bc8cbc669fa8e4bb105dcd9a2a202b1da9d3474afd51738d5eb6", 0xc7}, {&(0x7f0000000200)="b69623356742476894347ff340d605cfeeda92e0ee3cd89f4aee", 0x1a}, {&(0x7f0000000380)="d14fe44c3fc488558772060d600c29a5a539e78da7e540c84706137e2615274eaa880f236cff0dddb9592bf5647468a6276c44435b6bf31c2a0d0dcfeb30aa83ce057e7fdab30bb5b590d5a8200b7652cdb3b813a4bbdb58f776fe806746988c5c5cd8bbf39d19c735fafb24adaf1b550b3f0b15207d5455bef638e6e49721c1667a52a3ff37cdbc249b3a96fc438c758eef3c511ca77c571fe45f1c0af376baa793bc9d324698", 0xa7}, {&(0x7f0000000440)="897fa56dd2817ffbc0434936a5fa91dc9543ca064a28cdbd52570a6ee63d945c03d7343c2eff3379a8ccfcd1ccdb05fbb453369920bab09424950443e97199369e500e5c8d3298fc80d74cf7d4c8f439572a4d848065249f0c5460cf7c0b443b5675614568b34200b54fcee30266d2fa6929548fa1bf9a1540696d7942913ef184418d604e3a79907d441071016a", 0x8e}, {&(0x7f0000000500)="0cf08f52c86c29124878f01d5770f11786b1ef25fb7a4186c85ba6ee3233a41131061f849306c0f273ecb2377da548696998de8909f56c2c38ccbcc0e07cf3a799f89994d75e228c4ee06115c8aba848a073165f604d672cfb572b8778cae5d4b89b185628cf94b8a3844d88725d1d97dc3c4416954a7140da8064c637a0e80a03a84338f5da1d943d1a224f034792deb74733eddad0ec677e9c022b13609ff62dbdb7a8a3387c778d7db31a846bbf446aac43e38da8afc8d15740b636da1a2c4dad1671a450c75047196b3355c783d685a370068a", 0xd5}, {&(0x7f0000000600)="1431cc73e6581c3205e883330f01d96b08b68b70bfcc71a34de565ec6e5ac4366b86174d8adb3b42f8ceeb1605f29447146845d844b297a7098ce3cf28cd3c17edda58df5930103b05", 0x49}, {&(0x7f0000000680)="f74b5e8dc68de3fb76a439b2713d30c42acdee4e9a582c7a7e84b8c68f7ec02d339105909937da997a3aa7e80c0d6040bc43a265e7b9d37e40d6b87833d11d992e66cbe707af63e13c099f8df4c4126b23db88a75d5f60a67fe85c9dfe22d4d073f1222d33779a2bfb319b0db7b2c4984435e533b5ba6f770dfa7f78c34e68f45454229067b569bf50af9b35f2714a2d369374ce9435", 0x96}, {&(0x7f0000000740)="69cbdc4f5d23fd8b21654cfa17ef99cfc56399d2ba8098f09f110a9a7ebe65c5325dc7a08ced99d348c9275383170a08425cf3664117826789a9", 0x3a}, {&(0x7f0000000780)="836675ba80c5d9e6051f9d027f593aaf7088e6c0798c50555c1eaf02736b940b3c0ecd7d09c2f58d0c49f4c8da9078bd5764239587859c4a903ed9f800ae5ba98f49ce700d620601def05e3f0e57bb139abeb96f09fa54f0ccfba6c40f49a00a3945c98d10b4d89b5f29ace556eaded8d62bef31ed3e2a23f719146fec9442ad9e9514e01ad1941349a672e4cdfb931097de4bc852c536dcabdec6e01d5bfaf0387aa8eed9350550479bf766c1331316d03722b64220ecd9adc941bb801ee7923ce28a358354d00bc772fdcb4b1852e2bd6d685800a7199374b8", 0xda}], 0xa, 0x8) r10 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0x600, 0x0) ioctl$TIOCMBIS(r10, 0x5416, &(0x7f0000000100)=0xffff) syz_mount_image$ext4(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$cgroup2(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)={[{@memory_localevents}]}) [ 1107.425907] FAULT_INJECTION: forcing a failure. [ 1107.425907] name failslab, interval 1, probability 0, space 0, times 0 [ 1107.428386] CPU: 0 PID: 8131 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1107.428803] Process accounting resumed [ 1107.429835] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1107.429842] Call Trace: [ 1107.429869] dump_stack+0x107/0x167 [ 1107.429891] should_fail.cold+0x5/0xa [ 1107.434259] ? create_object.isra.0+0x3a/0xa30 [ 1107.435235] should_failslab+0x5/0x20 [ 1107.436050] kmem_cache_alloc+0x5b/0x310 [ 1107.436923] create_object.isra.0+0x3a/0xa30 [ 1107.437858] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1107.438963] kmem_cache_alloc+0x159/0x310 [ 1107.439855] __d_alloc+0x2a/0x990 [ 1107.440599] d_alloc_pseudo+0x19/0x70 [ 1107.441412] alloc_file_pseudo+0xce/0x250 [ 1107.442210] Process accounting resumed [ 1107.442300] ? alloc_file+0x5a0/0x5a0 [ 1107.442325] ? shmem_get_inode+0x55c/0xbc0 [ 1107.444695] __shmem_file_setup+0x144/0x320 [ 1107.445730] ? _copy_from_user+0xfb/0x1b0 [ 1107.446737] __do_sys_memfd_create+0x275/0x450 [ 1107.447835] ? memfd_file_seals_ptr+0x170/0x170 [ 1107.448961] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1107.450232] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1107.451477] do_syscall_64+0x33/0x40 [ 1107.452377] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1107.453609] RIP: 0033:0x7fb6c02f6b19 08:20:34 executing program 5: openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r2, 0x0, 0x0}, 0x0) syz_io_uring_setup(0xdf9, &(0x7f0000000080)={0x0, 0x80a4, 0x10, 0x2, 0xc3, 0x0, r2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000180)) syz_genetlink_get_family_id$tipc(0x0, r2) [ 1107.454517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1107.459096] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1107.460936] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 00007fb6c02f6b19 [ 1107.462685] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 00007fb6c03500fb [ 1107.464403] RBP: 0000000000000001 R08: 0000000000000400 R09: ffffffffffffffff [ 1107.466118] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000008100000 [ 1107.467827] R13: 0000000020000100 R14: 0000000000000800 R15: 00000000200001c0 08:20:34 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0xf0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1107.472484] FAULT_INJECTION: forcing a failure. [ 1107.472484] name failslab, interval 1, probability 0, space 0, times 0 [ 1107.475297] CPU: 0 PID: 8133 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1107.476931] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1107.478916] Call Trace: [ 1107.479552] dump_stack+0x107/0x167 [ 1107.480415] should_fail.cold+0x5/0xa [ 1107.481326] ? xas_alloc+0x336/0x440 [ 1107.482210] should_failslab+0x5/0x20 [ 1107.483111] kmem_cache_alloc+0x5b/0x310 [ 1107.484083] xas_alloc+0x336/0x440 [ 1107.484911] xas_create+0x34a/0x10d0 [ 1107.485806] ? kernel_text_address+0xf2/0x120 [ 1107.486863] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1107.488118] xas_store+0x8c/0x1c40 [ 1107.488979] __xa_store+0x164/0x2d0 [ 1107.489847] ? xa_delete_node+0x280/0x280 [ 1107.490844] ? trace_hardirqs_on+0x5b/0x180 [ 1107.491877] xa_store+0x31/0x50 [ 1107.492673] __io_uring_add_tctx_node+0x1cf/0x520 [ 1107.493810] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1107.495059] ? alloc_fd+0x2e7/0x670 [ 1107.495944] io_uring_setup+0x1fbb/0x2980 [ 1107.496938] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1107.498146] ? wait_for_completion_io+0x270/0x270 [ 1107.499316] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 08:20:34 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x300, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1107.500565] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1107.501921] do_syscall_64+0x33/0x40 [ 1107.502808] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1107.504012] RIP: 0033:0x7f466af67b19 [ 1107.504874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1107.509269] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1107.511075] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1107.512745] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1107.514433] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1107.516108] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1107.517785] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:20:34 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) io_setup(0x5, &(0x7f0000000000)=0x0) openat(r0, &(0x7f0000000300)='./file0\x00', 0x400300, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) io_submit(r1, 0x1, &(0x7f0000000800)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r2, 0x0, 0x800000}]) io_uring_enter(r2, 0x6003, 0x22a8, 0x3, &(0x7f0000000080), 0x8) socket$nl_generic(0x10, 0x3, 0x10) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000600)=ANY=[@ANYBLOB="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"]) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x0, &(0x7f00000001c0)={0x0, {{0xa, 0x0, 0x0, @loopback}}, {{0xa, 0x0, 0x0, @mcast1}}}, 0x108) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000000)="eb", 0x1}], 0x1, &(0x7f0000000840)=ANY=[@ANYBLOB="1400e8ff00000000000000000000000089b3e3067e704ded964091da531762c22ecc287501df6e5f797b8b0a2dfe1e0ec27660d6d3f56c8dfd9edca0b28719af02a824cdb910d4f944479eb50401da61fc1d25711e0327b486f529bef5b8837433162e", @ANYRES32], 0x18}, 0x0) r5 = dup(r4) perf_event_open(&(0x7f0000001d80)={0x1, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380), 0x1}, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6b}, 0x0, 0x7fdfffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(r5, 0x1, 0x10, &(0x7f0000000200)=0xbe7, 0x4) recvmmsg(r5, &(0x7f0000007940)=[{{0x0, 0x0, 0x0}}], 0x500, 0x20000022, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000900)={0x27c, 0x28, 0x200, 0x70bd27, 0x25dfdbfb, {0x6}, [@typed={0x6, 0x76, 0x0, 0x0, @str='z\x00'}, @nested={0x194, 0x64, 0x0, 0x1, [@generic="c7760306e2793cf2a08eba9f85e9e6f279073dcd30833d468c8732a493a7d9aafca916e0be4641ab47c97989a0de7465b309d547b0dbd24bf32e18666dde3211ac231cebe8f135f168aa758ee4ff2c55d55e4724cb699ccd8f2fc8204bcf7c601e953ead588d78e9487ba827d2ccf470ab6027f47f6740e222c1c50cd79581c7106d26c51d3287d8f472f5216907ebe21e082c1191ea801e80247a8de1771c4ca7f2e87c8ddb7280edaf56c82dd4038a1fe298515e11fb1d2262de6b761f04d2a7389237802141e774bff7fb", @typed={0x8, 0x2b, 0x0, 0x0, @fd}, @generic="ec4150903bfc3def58b934f499a1b8f1bed9104c573973a6dd7644956f9b890a1bfeb2c608d72e90b402e7173f97a0febc73757669b721345a153e31b05097beaf4b89339a58d8fe8690605c469af05ecbb739fa304dd771ff65f3594238d9616f3dfccb1edc6072e2f1a978b168bd01dbc5e109e0821a83ca0e8878b30cd565d20c4cd589f5d1b5348b5d2b8e7e1394a559213025377e2634abdfe9ffeca333a31c114d63c986e505027704ba24fc03b0eae1b7aec17b452eb991e7"]}, @nested={0xca, 0x82, 0x0, 0x1, [@typed={0x8, 0x6e, 0x0, 0x0, @uid}, @typed={0x8, 0x91, 0x0, 0x0, @u32=0xff}, @typed={0x5, 0x91, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x76, 0x0, 0x0, @ipv4=@private=0xa010100}, @generic="7842cc2474080ead2e090eb348e7207df366f8b4e76091eb0b2d98df772aec0f7c01b0ae69a97812c1eab3f4ed021b5a593485c6f8c3da78e1df2f4be2c79301f526e3be98e39d401374e7bf3eefefa56f6dbbb4dd2c31638954ca24fbd64fef73ebc13b3dffa7fce5672f7782ad2bfb13385341d15a9a121d9c14da679619c1871c3da23828cd0ad06c13d14a53c524fcb95d17cc57baf2864609d06cbb94d11e0b73e35f47"]}]}, 0x27c}, 0x1, 0x0, 0x0, 0x4080}, 0x4000) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000001c0)={'ip6erspan0\x00', &(0x7f00000004c0)=ANY=[@ANYBLOB="da658a7b10eef8909a970df75a5e91cc72d0d4271bdd29d98060bfb6f533df144bf64b8e139e7820360b4aabb022cc29ba5bc9e9d4ae1363db9a4509cbc3cc10ca342f30f36732b11ec21fe412557150e38fe3224e1b7c05aaaef8b046ff8d06f4165d0f10a5502421f365fd6488b1f5a037bd08677ba4094d72fcbdeefafe797b019e27367af343aae5378d11da5669b37721b94dc3dabf78541c231b1d4eacb6456f4a1f72c79d869f71396e51c6cc20919ac248b2eed349b7272ec5009b93a04623103bdda7b52398fa127dfb2d830c3fe3ab5f7ff8af257f1619c5f225084946390cb9ab59d1389ab567f64150842a786e077684921a"]}) [ 1107.534450] FAULT_INJECTION: forcing a failure. [ 1107.534450] name failslab, interval 1, probability 0, space 0, times 0 [ 1107.537093] CPU: 0 PID: 8148 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1107.538678] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1107.540584] Call Trace: [ 1107.541188] dump_stack+0x107/0x167 [ 1107.542034] should_fail.cold+0x5/0xa [ 1107.542930] ? create_object.isra.0+0x3a/0xa30 [ 1107.544003] should_failslab+0x5/0x20 [ 1107.544889] kmem_cache_alloc+0x5b/0x310 [ 1107.545849] create_object.isra.0+0x3a/0xa30 [ 1107.546887] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1107.548076] kmem_cache_alloc+0x159/0x310 [ 1107.549063] xas_alloc+0x336/0x440 [ 1107.549896] xas_create+0x34a/0x10d0 [ 1107.550786] ? kernel_text_address+0xf2/0x120 [ 1107.551831] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1107.553046] xas_store+0x8c/0x1c40 [ 1107.553882] __xa_store+0x164/0x2d0 [ 1107.554714] ? xa_delete_node+0x280/0x280 [ 1107.555682] ? trace_hardirqs_on+0x5b/0x180 [ 1107.556684] xa_store+0x31/0x50 [ 1107.557454] __io_uring_add_tctx_node+0x1cf/0x520 [ 1107.558583] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1107.559767] ? alloc_fd+0x2e7/0x670 [ 1107.560624] io_uring_setup+0x1fbb/0x2980 [ 1107.561588] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1107.562823] ? wait_for_completion_io+0x270/0x270 [ 1107.563959] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 08:20:34 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x1100, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1107.565170] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1107.566523] do_syscall_64+0x33/0x40 [ 1107.567385] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1107.568568] RIP: 0033:0x7ffa83495b19 [ 1107.569427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1107.573683] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1107.575431] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1107.577043] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1107.578668] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1107.580293] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1107.581937] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1107.587998] loop0: detected capacity change from 0 to 2048 08:20:34 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x1400, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1107.601260] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:20:34 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x3}}}}}}, 0x0) 08:20:34 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 10) [ 1107.657106] FAULT_INJECTION: forcing a failure. [ 1107.657106] name failslab, interval 1, probability 0, space 0, times 0 [ 1107.658515] CPU: 1 PID: 8165 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1107.659332] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1107.660313] Call Trace: [ 1107.660626] dump_stack+0x107/0x167 [ 1107.661050] should_fail.cold+0x5/0xa [ 1107.661491] ? __alloc_file+0x21/0x320 [ 1107.661942] should_failslab+0x5/0x20 [ 1107.662396] kmem_cache_alloc+0x5b/0x310 [ 1107.662887] __alloc_file+0x21/0x320 [ 1107.663320] alloc_empty_file+0x6d/0x170 [ 1107.663792] alloc_file+0x5e/0x5a0 [ 1107.664207] alloc_file_pseudo+0x16a/0x250 [ 1107.664702] ? alloc_file+0x5a0/0x5a0 [ 1107.665158] ? shmem_get_inode+0x55c/0xbc0 [ 1107.665658] __shmem_file_setup+0x144/0x320 [ 1107.666165] ? _copy_from_user+0xfb/0x1b0 [ 1107.666673] __do_sys_memfd_create+0x275/0x450 [ 1107.667220] ? memfd_file_seals_ptr+0x170/0x170 [ 1107.667783] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1107.668400] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1107.669016] do_syscall_64+0x33/0x40 [ 1107.669451] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1107.670052] RIP: 0033:0x7fb6c02f6b19 [ 1107.670512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1107.672664] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1107.673560] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 00007fb6c02f6b19 [ 1107.674393] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 00007fb6c03500fb [ 1107.675219] RBP: 0000000000000001 R08: 0000000000000400 R09: ffffffffffffffff [ 1107.676038] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000008100000 [ 1107.676888] R13: 0000000020000100 R14: 0000000000000800 R15: 00000000200001c0 08:20:35 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 67) 08:20:35 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x8}}}}}}, 0x0) 08:20:35 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 58) 08:20:35 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x2000, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:20:35 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 11) 08:20:35 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044008) 08:20:35 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000000c0)="16ce01f224d59f9763a760842bdda37070305bbb5be2fe5047ceb1c81bd102ca4bdd4bf63139f0cfc21188d0d2bafc7507e489eb10554cef525c5dc46da1fc001da2583386d6aaddead9b5d3b13ed9bef8e55ec92c189a715f2ba8cc81c7567e2d834a2fb6e885ec4968a37bcb6cb6ae34a4d28544470b4adad5ca98a3238d6ce1f754db3cc92125a46271515d51bc8f9eeca41df5a4cb30477ad1b9f2a2a409a575b3ded0b4d6a45d89421875c81699313f8c9d5dd1", 0xb6}], 0x1, &(0x7f0000000700)=[@dstopts={{0x68, 0x29, 0x37, {0x658cb906930f4bb2, 0x9, '\x00', [@pad1, @ra={0x5, 0x2, 0xfe10}, @calipso={0x7, 0x40, {0x2, 0xe, 0x4, 0x100, [0x5, 0x9, 0xfffffffffffffffd, 0x20, 0x200, 0x4, 0x5]}}, @pad1]}}}, @rthdrdstopts={{0xb8, 0x29, 0x37, {0x62, 0x13, '\x00', [@jumbo={0xc2, 0x4, 0x8}, @enc_lim={0x4, 0x1, 0x5}, @generic={0x1f, 0x75, "4db3a87fef5bf68707b37e76ba74620e45875956ad0800a2ef361a172fd535ad18e174202b43fc5358aebd896d0f2a2a915641339e637dfded236959d520e6bd608b6ba890df2bc276c93630727943ca6b4eecbcc01e5f8a232374dba9ad85360f28f4b1e35491fdc5d13caf4a36bcf3b3218499cf"}, @calipso={0x7, 0x18, {0x3, 0x4, 0x8, 0x52, [0x803, 0x100]}}]}}}, @dstopts_2292={{0x168, 0x29, 0x4, {0x4, 0x29, '\x00', [@enc_lim={0x4, 0x1, 0x6}, @ra={0x5, 0x2, 0x8}, @calipso={0x7, 0x50, {0x1, 0x12, 0x3, 0x6, [0x20, 0x20, 0x7fffffff, 0x5, 0x800, 0x8, 0x4f08000000, 0x7, 0xb5]}}, @generic={0x2, 0xe7, "231cb41428680596381e0d5f7616cacffa65ed008866f421ea1decaf80abf52d70c60e2c457f80483843f12efcda2b3a91a335f057cfd782b81dab904b35b5090059d541fead6b3ff73ba4a12ae06c929e938e822fb18218fab3fd8f66b3a339375ac745bc5df7ee1309150a0966e639668c2ed426c8bc96ba6e883a318ded6e5227a0debf26deea0639b3274bfa3ad920383646113fa374e1f79423b13891f819a827a6d7a3ce0fe1cd3e8ee574161667f8e0694392e93e2380f86c651e12e5c4a9b22feb14cfbd4f0825b52887de544b341952bdabe6337122faab5158ab077e42ef8868cdb3"}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @pad1]}}}, @dstopts_2292={{0xa0, 0x29, 0x4, {0x88, 0x11, '\x00', [@generic={0x7, 0x6d, "0b4ad4edaf9ff5811c51cc839321c2264f2f58ce45270c3b26b0ba12e5ae58f8d6f424d46daa987e7e26f6a9ef199678be0f63f9623bad4232119a61de7e516f045404d3d76b17fa13f3740a8640a681ad8bf1e0a0724589bab57403513c6a0cd54956c398ebac5a065a921d2d"}, @hao={0xc9, 0x10, @mcast1}, @ra={0x5, 0x2, 0x5}, @enc_lim={0x4, 0x1, 0x2}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x9}}, @dstopts_2292={{0x100, 0x29, 0x4, {0x67, 0x1c, '\x00', [@calipso={0x7, 0x28, {0x0, 0x8, 0x5, 0x200, [0x9, 0xaa7, 0x2, 0x9]}}, @jumbo={0xc2, 0x4, 0x400}, @pad1, @enc_lim={0x4, 0x1, 0x5}, @generic={0x0, 0x8e, "e507620f769fc0f90004aeaa4789e03caad5927ea6fe42df83908893ee8e712ee83e140880a0a39a227bfac48e9f81f00c06df307f032633363c2ccffbfa9f43e7798cd4cb3c07d8dd2aaf839c439db358dff1932199f6e79c8166df540395545b66070827cf39ec2afe65ce6dcf34265aae3f4ab05ade22ef1392318592cac5a1371de356683350a96cf1b09185"}, @jumbo={0xc2, 0x4, 0x4}, @hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @private=0xa010100}}, @enc_lim={0x4, 0x1, 0x4}]}}}, @dstopts={{0x20, 0x29, 0x37, {0x3a, 0x0, '\x00', [@ra={0x5, 0x2, 0x4000}]}}}, @rthdrdstopts={{0x68, 0x29, 0x37, {0x2c, 0x9, '\x00', [@calipso={0x7, 0x48, {0x3, 0x10, 0x3, 0x6, [0x1, 0x40000000, 0x0, 0x9, 0x9, 0x9, 0x9, 0x10000]}}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}}}], 0x4c8}, 0x404c014) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) [ 1108.422247] FAULT_INJECTION: forcing a failure. [ 1108.422247] name failslab, interval 1, probability 0, space 0, times 0 [ 1108.424793] CPU: 0 PID: 8182 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1108.426332] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1108.428187] Call Trace: [ 1108.428782] dump_stack+0x107/0x167 [ 1108.429596] should_fail.cold+0x5/0xa [ 1108.430458] ? create_object.isra.0+0x3a/0xa30 [ 1108.431479] should_failslab+0x5/0x20 [ 1108.431588] FAULT_INJECTION: forcing a failure. [ 1108.431588] name failslab, interval 1, probability 0, space 0, times 0 [ 1108.432321] kmem_cache_alloc+0x5b/0x310 [ 1108.432346] create_object.isra.0+0x3a/0xa30 [ 1108.432371] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1108.437849] kmem_cache_alloc+0x159/0x310 [ 1108.438794] __alloc_file+0x21/0x320 [ 1108.439630] alloc_empty_file+0x6d/0x170 [ 1108.440537] alloc_file+0x5e/0x5a0 [ 1108.441333] alloc_file_pseudo+0x16a/0x250 [ 1108.442286] ? alloc_file+0x5a0/0x5a0 [ 1108.443134] ? shmem_get_inode+0x55c/0xbc0 [ 1108.444086] __shmem_file_setup+0x144/0x320 [ 1108.445050] ? _copy_from_user+0xfb/0x1b0 [ 1108.445978] __do_sys_memfd_create+0x275/0x450 [ 1108.447007] ? memfd_file_seals_ptr+0x170/0x170 [ 1108.448051] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1108.449224] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1108.450389] do_syscall_64+0x33/0x40 [ 1108.451220] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1108.452363] RIP: 0033:0x7fb6c02f6b19 [ 1108.453194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1108.457242] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1108.458912] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 00007fb6c02f6b19 [ 1108.460513] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 00007fb6c03500fb [ 1108.462113] RBP: 0000000000000001 R08: 0000000000000400 R09: ffffffffffffffff [ 1108.463709] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000008100000 [ 1108.465308] R13: 0000000020000100 R14: 0000000000000800 R15: 00000000200001c0 [ 1108.466941] CPU: 1 PID: 8184 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1108.468475] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1108.470317] Call Trace: [ 1108.470896] dump_stack+0x107/0x167 [ 1108.471697] should_fail.cold+0x5/0xa [ 1108.472551] ? create_object.isra.0+0x3a/0xa30 [ 1108.473573] should_failslab+0x5/0x20 [ 1108.474441] kmem_cache_alloc+0x5b/0x310 [ 1108.475347] ? mark_held_locks+0x9e/0xe0 [ 1108.476257] create_object.isra.0+0x3a/0xa30 [ 1108.477241] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1108.478376] kmem_cache_alloc+0x159/0x310 [ 1108.479296] xas_alloc+0x336/0x440 [ 1108.480078] xas_create+0x34a/0x10d0 [ 1108.480905] ? kernel_text_address+0xf2/0x120 [ 1108.481888] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1108.483055] xas_store+0x8c/0x1c40 [ 1108.483854] __xa_store+0x164/0x2d0 [ 1108.484657] ? xa_delete_node+0x280/0x280 [ 1108.485572] ? trace_hardirqs_on+0x5b/0x180 [ 1108.486532] xa_store+0x31/0x50 [ 1108.487277] __io_uring_add_tctx_node+0x1cf/0x520 [ 1108.488351] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1108.489513] ? alloc_fd+0x2e7/0x670 [ 1108.490346] io_uring_setup+0x1fbb/0x2980 [ 1108.491280] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1108.492407] ? wait_for_completion_io+0x270/0x270 [ 1108.493506] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1108.494681] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1108.495822] do_syscall_64+0x33/0x40 [ 1108.496637] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1108.497767] RIP: 0033:0x7f466af67b19 [ 1108.498596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1108.502678] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1108.504384] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1108.505982] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1108.507581] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1108.509177] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1108.510775] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1108.531414] FAULT_INJECTION: forcing a failure. [ 1108.531414] name failslab, interval 1, probability 0, space 0, times 0 [ 1108.533953] CPU: 1 PID: 8188 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1108.535495] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1108.537359] Call Trace: [ 1108.537953] dump_stack+0x107/0x167 [ 1108.538779] should_fail.cold+0x5/0xa [ 1108.539633] ? xas_alloc+0x336/0x440 [ 1108.540466] should_failslab+0x5/0x20 [ 1108.541318] kmem_cache_alloc+0x5b/0x310 [ 1108.542235] xas_alloc+0x336/0x440 [ 1108.543032] xas_create+0x34a/0x10d0 [ 1108.543879] ? kernel_text_address+0xf2/0x120 [ 1108.544886] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1108.546059] xas_store+0x8c/0x1c40 [ 1108.546853] __xa_store+0x164/0x2d0 [ 1108.547650] ? xa_delete_node+0x280/0x280 [ 1108.548563] ? trace_hardirqs_on+0x5b/0x180 [ 1108.549518] xa_store+0x31/0x50 [ 1108.550269] __io_uring_add_tctx_node+0x1cf/0x520 [ 1108.551335] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1108.552480] ? alloc_fd+0x2e7/0x670 [ 1108.553303] io_uring_setup+0x1fbb/0x2980 [ 1108.554252] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1108.555381] ? wait_for_completion_io+0x270/0x270 [ 1108.556482] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1108.557648] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1108.558804] do_syscall_64+0x33/0x40 [ 1108.559634] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1108.560780] RIP: 0033:0x7ffa83495b19 [ 1108.561606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1108.565682] RSP: 002b:00007ffa809ea108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1108.567394] RAX: ffffffffffffffda RBX: 00007ffa835a9020 RCX: 00007ffa83495b19 [ 1108.568990] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1108.570581] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1108.572156] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1108.573735] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:20:35 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x3c}}}}}}, 0x0) 08:20:35 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) r1 = open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000180)="cfb61e9f1171337394ee84234491dcb702eb6b6019e6ccab3102453e1ca078c508d5", 0x18}], 0x1}, 0x10048055) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x200, 0x0) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0x8}}, './file0\x00'}) r4 = openat(r3, 0x0, 0x0, 0x10) fsmount(r4, 0x1, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$BTRFS_IOC_RM_DEV(r4, 0x5000940b, &(0x7f0000000700)={{r1}, "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"}) 08:20:35 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x3c00, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:20:36 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x300}}}}}}, 0x0) [ 1108.770374] loop0: detected capacity change from 0 to 2048 [ 1108.776721] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:20:52 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x4e60, 0x0, @empty, 0x7fff}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:20:52 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x5, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @private0, 0x2706}, 0x1c) 08:20:52 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 12) 08:20:52 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 68) 08:20:52 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x3c00}}}}}}, 0x0) 08:20:52 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) [ 1124.937699] FAULT_INJECTION: forcing a failure. [ 1124.937699] name failslab, interval 1, probability 0, space 0, times 0 [ 1124.939443] FAULT_INJECTION: forcing a failure. [ 1124.939443] name failslab, interval 1, probability 0, space 0, times 0 [ 1124.940155] CPU: 1 PID: 8224 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1124.944186] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1124.945995] Call Trace: [ 1124.946579] dump_stack+0x107/0x167 [ 1124.947373] should_fail.cold+0x5/0xa [ 1124.948204] ? security_file_alloc+0x34/0x170 [ 1124.949174] should_failslab+0x5/0x20 [ 1124.950001] kmem_cache_alloc+0x5b/0x310 [ 1124.950889] security_file_alloc+0x34/0x170 [ 1124.951831] __alloc_file+0xb7/0x320 [ 1124.952632] alloc_empty_file+0x6d/0x170 [ 1124.953493] alloc_file+0x5e/0x5a0 [ 1124.954247] alloc_file_pseudo+0x16a/0x250 [ 1124.955150] ? alloc_file+0x5a0/0x5a0 [ 1124.955958] ? shmem_get_inode+0x55c/0xbc0 [ 1124.956875] __shmem_file_setup+0x144/0x320 [ 1124.957785] ? _copy_from_user+0xfb/0x1b0 [ 1124.958675] __do_sys_memfd_create+0x275/0x450 [ 1124.959639] ? memfd_file_seals_ptr+0x170/0x170 [ 1124.960633] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1124.961740] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1124.962848] do_syscall_64+0x33/0x40 [ 1124.963641] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1124.964728] RIP: 0033:0x7fb6c02f6b19 [ 1124.965534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1124.969533] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1124.971162] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 00007fb6c02f6b19 [ 1124.972706] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 00007fb6c03500fb [ 1124.974255] RBP: 0000000000000001 R08: 0000000000000400 R09: ffffffffffffffff [ 1124.975818] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000008100000 [ 1124.977327] R13: 0000000020000100 R14: 0000000000000800 R15: 00000000200001c0 [ 1124.978886] CPU: 0 PID: 8220 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1124.980647] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1124.982547] Call Trace: [ 1124.983148] dump_stack+0x107/0x167 [ 1124.983970] should_fail.cold+0x5/0xa [ 1124.984832] ? xas_alloc+0x336/0x440 [ 1124.985669] should_failslab+0x5/0x20 [ 1124.986540] kmem_cache_alloc+0x5b/0x310 [ 1124.987459] xas_alloc+0x336/0x440 [ 1124.988263] xas_create+0x34a/0x10d0 [ 1124.989114] ? kernel_text_address+0xf2/0x120 [ 1124.990124] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1124.991316] xas_store+0x8c/0x1c40 [ 1124.992134] __xa_store+0x164/0x2d0 [ 1124.992960] ? xa_delete_node+0x280/0x280 [ 1124.993903] ? trace_hardirqs_on+0x5b/0x180 [ 1124.994897] xa_store+0x31/0x50 [ 1124.995642] __io_uring_add_tctx_node+0x1cf/0x520 [ 1124.996733] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1124.997914] ? alloc_fd+0x2e7/0x670 [ 1124.998765] io_uring_setup+0x1fbb/0x2980 [ 1124.999713] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1125.000855] ? wait_for_completion_io+0x270/0x270 [ 1125.001965] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1125.003152] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1125.004313] do_syscall_64+0x33/0x40 [ 1125.005151] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1125.006303] RIP: 0033:0x7f466af67b19 [ 1125.007153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1125.011302] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1125.013023] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1125.014661] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1125.016263] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1125.017864] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1125.019476] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 sendmmsg$inet6(r0, &(0x7f00000049c0)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x6, @dev={0xfe, 0x80, '\x00', 0x33}, 0x80000000}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000100)="0458bbf82b84848944c18f19c4e180efdc2f10315ace56344e5a1e6eee9b7aad8a45e74980d567331fd58777264b1257f85631b1048e0962651878c7a1e779b5b6c7a3f470ccbfd2e54b771f15114a2f83a15bfc7cbb5f9dd203ce8900aac305129e596876bb6eaf5ea6ba2109b2fec65150ea52b74dc646862bf96f6fa08d18d8dc40af4de0310ddf8acb39b032ef772130dede6d0fa8bbfb81779820891d927b489478dab10883963221791e5c881e88c0813c0c041d", 0xb7}, {&(0x7f0000000200)="d982df6758c774974bc4505f", 0xc}], 0x2, &(0x7f0000000280)=[@tclass={{0x14, 0x29, 0x43, 0x80d0}}, @hoplimit={{0x14, 0x29, 0x34, 0xe2}}], 0x30}}, {{&(0x7f00000002c0)={0xa, 0x4e22, 0x8, @remote, 0x7}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000300)="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", 0xfa}, {&(0x7f0000000400)="97d1cee647b39a1cb2fc0e8226e4df4bf7538dc0a378b3dbaa8f99fa7f81b5a2656b4e47e053de5ead1014d338506bf1078fd59f2805bbef47dc0d397d6f2d22a438062e0f3a732634b79cfa7120cc9323adc3eb142fb466e8047052fbe55abf3a66aff805a5c87b4a25a7f6ee5759c670df2067541268176f2aef195527d7310f14251892ae4efd94cf1877e326c26e7b710edf1e286d7d93a47e98b96940eccfb8294b3840bb80566aa9ba896cd1adefe271c7c96526a7425bdd430c0835f4d4dc5215e591f94c38f7a783459dbe2853a70f6a0a5f01d5d69c88416624acd5a714124e954f3f", 0xe7}, {&(0x7f0000000700)="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", 0x1000}, {&(0x7f0000000580)="63aafe1b1de6cddb8018c0d6096f4aa8a90a929e63bcc48d64001f489f7b4db632b7f102db1aefbb5325913baa6eb752b0bab97dfc8a0843c76fde7bf0cf23a93e37ffc94a4119f7dd253e679be4d57f2f2600f2a24610e39d9a18b7ac8fb40fe0561d716133e89562913d41bdaa762da970d32ce21885a7f596b0b0cbbdbe5ab1bea5c6c8b06e91e33df392e995c0140b3e53e03033c5fbcc5235d6f7d68261afab957cbd209d3384de658303", 0xad}], 0x4, &(0x7f0000000640)=[@tclass={{0x14, 0x29, 0x43, 0x1f}}, @tclass={{0x14, 0x29, 0x43, 0x7fff}}], 0x30}}, {{&(0x7f0000000680)={0xa, 0x4e20, 0x8c34, @remote, 0x4}, 0x1c, &(0x7f0000002b80)=[{&(0x7f0000002740)="fe148523abc0e189ff84a81be32f6403b6631c2b6c06c5015e4f1b9e147c6e02e72c8ffbf901", 0x26}, {&(0x7f0000002780)="7e7519fc24c5c6cb74c1e02a8fbda50f3572e2d8b523e01c205c01a51d1e0cf6d6b38e4e68cda39bb8a3063d2d43a4e47984ddfe54b35baada40aaff2096dea501c4abf2a218e0d7a394038a9c4b052e5852ae21ed188bae12fd0588de29edac2d61e43633b444e8ebb59928e4796c5baed8ab480238f957e055d3cf20820d7b8ea1f4e6d6a59a4acb5cd113288d3bd4c6191d72228a0fbed5a186db0524296b729e3b08c9f8d32fe3ecc58af8c9667986d1836e94f4be", 0xb7}, {&(0x7f0000002840)="4bbefa0525a853539ca1830d21b55b40a2dae14c29483a2186d44109202696485da0", 0x22}, {&(0x7f0000002880)="73fbf008766c1862dca6a7bd5af00247627896ea59d02109451d9fbadb3e2c08e5c5c7215961f84edc1ae54f32a1392a0a8dd8941acc9e80c58b8d4b94cebcd1475fff53c212e987d9893e758f4c7eafd5c28da1a23b5870c5c9751711804eff659deb9d4815b92fe7b183a667ee1458246bace9afade306f336c94266359a662315262d2f39aeee941d5ca5af9370c75168f1ef493752fce363396ccbdfd67b48769e94ff", 0xa5}, {&(0x7f0000002940)="a3c598a8848adaff090696e4bc55b4218b1aef060f4a28578616e011fb9861f2aba2ab20b5010517ccb28281d9a2e1b07fbe97fba5e1153ac7ac6f66e500d1367cd85c50f42fce3208c1d9fa913734beec731a9b54998713f2f9a9b26a11359c0abc565c69de1570d6a7c0ebd4c8a1ee59b32908", 0x74}, {&(0x7f00000029c0)="7f058316ca6f3735a40da49ab41cc2d66399dd636e693aa3d9263e7829ae6ab7cefc383208b26d0597bc6daec3bb6eca31b4067575486b38e89c5face93570d67d347ddd70d1063e0fd3e2f4e11ed782ac4f803bff1ab617a15c77ac7ca74d9bcbd79985a80e7573ae7ab517f3d123daaa9c95f7fee3521aca0ff11f02c2cd9f679e04f73f57", 0x86}, {&(0x7f0000002a80)="b5876a76990e84baf5cd539de8b2c83e4fe47098c81a697f00ceb18987d4368cc4201d7aa25a5056b0d8c401fe13230f05a8a833fedfefb1442e97b9b58ee7ca9c3558c0e01e4d71e9a058b7691ef92917d1ac2c71763c4ac1a9b5bfd137d27e8949442dc3e2d45bda0b161bd5f521f371ab4232618d0881e274e3c9b5cd9cd0d24578b300366cff06d606845e64f5638b2fef58af21e87fb7ec7904f2775b583467e1530bfb9400091ebe0649bc8e2c2d05cb4f854b143d2ca50eebe260cd158e431c07da38b839f6ca683641f310842d739cd01f4ae0677216a294601304f4bb41c7de1ee078a559af2e9f74ac", 0xee}], 0x7, &(0x7f0000002c00)=[@pktinfo={{0x24, 0x29, 0x32, {@private1}}}, @tclass={{0x14, 0x29, 0x43, 0x6}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x100}}, @rthdrdstopts={{0xf0, 0x29, 0x37, {0x33, 0x1a, '\x00', [@enc_lim={0x4, 0x1, 0x40}, @generic={0x81, 0xd2, "8ad786dc738debacb861366ada2ac38e6283af3dc1736cd605f33aac02b72d624d58c66fa6401a361de0f0088acb2ed5a1239fb69a95e788345724fd929defaf7930b64b754650588e711585595d99794f5377ec395a71ba1c12b336e8cc951ccbf83367a5d43465f6bd6b977e1c8f6a411d94167134ac753deb85309a723ce780e3877d54f04191e70b3c263548cc4f0236ec920f86f9b2d029187e5998e98461342d9abbeae5ed91e3b4844f27c8b74c8a0d60b8bebc0c94d76e77981d28c727b892f6ae7945d5850ccf04ec2b33346a76"}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x8}}, @rthdr_2292={{0x98, 0x29, 0x39, {0x3c, 0x10, 0x1, 0xa1, 0x0, [@remote, @empty, @private1={0xfc, 0x1, '\x00', 0x1}, @private0={0xfc, 0x0, '\x00', 0x1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private2, @empty, @private1={0xfc, 0x1, '\x00', 0x1}]}}}], 0x1f8}}, {{&(0x7f0000002e00)={0xa, 0x4e22, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c, &(0x7f0000002ec0)=[{&(0x7f0000002e40)="127675f8cbf64052984b3a3124718f633a251d0aed3ce1815f48424b1fcb761502e115454b121d7db6f3f1aec743ea3236bb1b25d645ee753e50cad72219e902cb1eac4b53", 0x45}], 0x1, &(0x7f0000002f00)}}, {{&(0x7f0000002f40)={0xa, 0x4e24, 0x9, @private2, 0xfe}, 0x1c, &(0x7f00000045c0)=[{&(0x7f0000002f80)="c619c1eee99210cda61f3a72cb432cb6c2c2351c9d5fc8b646b15055216d406b4dc07a5fbe94c291f33b64db234d181fd6da7a766665bfda77832b5d219215877672ded7b8939c92029d9ba771b7723851062ec9ec4e3769f492f35f43b9700811d5d85fb37b5b3dde6bb13eecce1e7c2c0832e106740c27409857bf", 0x7c}, {&(0x7f0000003000)="7a6d129dc701fa5510c972cce3535ee08743c19cacf0faf11ee5b51f48cb5f0ffbb350a3dbff70ebacf125806bad6bf21442213f0ec96fced6d8c0ec9e2bb30b36ce1ebeadb722cd63187f2076d5abdf3aa32f703bafc03829f6c8288e7250c29617397e63332020ac0fb4d61e90eff20bcad9d6786ee30a5d51a49c1b4861bd18ca3ed00a186d2868653e9c6c3e38e064f4b2531b60a4af2281dc080708e80f24ea2a670a5003568522de2f6ce48baf5e006331ae0c33d2ae1623d6d6170bcdfba6532e6ab7f74dca179db9742970944b73098165d16a64c6aa81f73490f519a665ecc218aed9df1b1e78e11b28fb", 0xef}, {&(0x7f0000003100)="718d961bc01032ac5603ce67b3f5d70f22b6ac26db", 0x15}, {&(0x7f0000003140)="458582f233ea65c444c112a58db2361d44b67f8a3c2a9ca1cf8145d56e0c23442f6a959ccd96ab1ad90e54cd060d634dabe4dbee5977af66bbb59d785b4f5328a2042ac6c7023d5bf0c709d52877933ac2987655b02d13e12d16cf431394226f4b3f3a37bfb4d2bc7d0fc3a8469695a4daab1670293b2c3cee4a66dba90927673ee07e9ca8aaff64ea09461f1a4f3daeb150bae9f52bd213bcf53d4e9660ca485821f67c4638dafc0d43510d1c2102d0754149bdccb5d19ae2ea8d84116079b8947c881aff1fc0566a1b4404ae47050e2542780539ec5b6435f76bf7e1380ae5e5f3c277bcacdb689a086078779026cc6ecd0288686752", 0xf7}, {&(0x7f0000003240)="4c2bde52036e1031271b7fd2ccb28a991c12e5b6709c22a2a61407ba60d7a21b7aa64120b5d4b9ec2737fc747ba2d0996d930cd800b5388eae4f0cd5a881f338c2d02844ebcffee9d0aa0dd6a3b8999cbb11848390ec7f6103aab542704ff9b8c8032b38400607a5ecd4363771d47dd907c935327ad78f940b9946ba68225f580f3394f287ba24465881633d7d4e7cfc13d6a97fe1e854dc0c32a7df791e2298c169ec7e67bdce272665c92fce0183f7a5fd87c0569371e694463fdd50137a7076712dc830b7a693d139afd880ab715b59", 0xd1}, {&(0x7f0000003340)="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", 0x1000}, {&(0x7f0000004340)="88b690fc088595af497baaaedbcbaaaa8c30186877f7ca7f7be1cdd6c35c8c8f4ccd87a1163e6617b7def6a248daf9debd1cc52d74e61d595cf6154ee640b41d73a2dc8d9a45efc18898", 0x4a}, {&(0x7f00000043c0)="2053b7b1fc3f1cd466ee4157e1c45e6414be6442b0830a537d1ab411dcfe0d7d6e1e999dae2ff360e92afc431a418c99a16ac17a1d9a9a", 0x37}, {&(0x7f0000004400)="d5c1bed4a7e986c30e8e00c12a3442523e151510f8dc251714fdf7217a14247de1531733189304ccbe8d2d5b1f88a8d596afe891dbc6a5285b5602ded6332670e2e5b736d34758544f8873445969c3c6db063cae184706cfd381e73637c53f95eaa473c01bc659f2e246983ecafa1a64629f6693235af51b194d344b9bc722aee59c785235d5b2cb4d7588200f3584668b2a27df89e5789c105cbdfd3433dfe6c3441fd6d8a27bc1c6eff0388a33051d89b2b4a5a258838eb333fe114250b6e7265bd1ef", 0xc4}, {&(0x7f0000004500)="7906149e883eaa2875597e9a8c9fd45d9e1534d7a29b2b623f32033cf653f6962b93ed41971730818b81137c09280920687eed8f9edd5d3fc5f3ced3aa62bf694a95be83a14b695141126ac507335120a3aa6e033d69be08a9dff782c05fd6e9090a3c5858fa8ff5400bfdd581016af4c4e5a0de9483e55a1e154ece5bc394f364ae63fde185675c8935247cc5549a6fb0090000009799c21402f6c817962ff8f5930f41bb44645a273e473d43c742791b17d0d59522a0806d7726b5", 0xbc}], 0xa, &(0x7f0000004680)=[@dstopts_2292={{0xe8, 0x29, 0x4, {0x0, 0x19, '\x00', [@calipso={0x7, 0x20, {0x2, 0x6, 0x2c, 0x6, [0x9, 0x0, 0xfff]}}, @generic={0x5, 0xa5, "9e84c2880fcf82ef38d7c788843413456a840bcc5ac26c3aec6fe3bff4d6100f1150c773c70602bca49a90c33fd8bfd52948676b7f082a664c3f1993f6e2ba13d013b9b08326776175e2ae569799435f0a1f520302ff259bb2bd12c47b99225f60e4a4c45669dcf41ea0040af6f4d9b8f1a8a52491217004e8fbcbe9aea12dcbcd68a06c175fd1a5c31650539cb67cd1c2f21e4cb21d82084e09afb786bfd80da63afd9f4b"}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x3f}}, @pktinfo={{0x24, 0x29, 0x32, {@mcast1}}}, @hopopts={{0x90, 0x29, 0x36, {0x37, 0xe, '\x00', [@jumbo={0xc2, 0x4, 0x58e}, @jumbo={0xc2, 0x4, 0x5}, @generic={0xf7, 0x2d, "adc997af5ea297cc17c166b1aafe30ccb1aee43d51d61dfa6f7824d99e8397ec9dac9edad1a7dedfc6f2198062"}, @enc_lim={0x4, 0x1, 0x1a}, @calipso={0x7, 0x18, {0x3, 0x4, 0x9, 0x81, [0x9, 0x18]}}, @jumbo, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0xa}}, @pad1, @enc_lim={0x4, 0x1, 0x4}]}}}, @hopopts={{0x30, 0x29, 0x36, {0x5dc0f415e07c699a, 0x2, '\x00', [@hao={0xc9, 0x10, @mcast1}]}}}, @dstopts={{0xf0, 0x29, 0x37, {0x33, 0x1a, '\x00', [@generic={0x3f, 0xa9, "b635714916679aff15b373204bf705ad77d591b53224acf50dc9aca2f4f44fc4eb613d5c7d7b7c5c4b2d8050737344917c03c2c65547a784262d29e0a46ac1215f3797aa4d133cda46d2df1dcaf8daeafc3eb5310a12a62c66ee7def0a6ecc29dc48099d89f4e4e9d7ded0aacd069d88ef41c4e74f06b958ec8ae153de4f4a5de5e6f6c7986d4e1e3a5eccb56d7a312dc3e7bfbcff43fc98f372f295fc7b7abf4837115ab901d52aa9"}, @padn={0x1, 0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}}, @ra={0x5, 0x2, 0x71}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x2}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x514}}], 0x308}}], 0x5, 0x4044040) setsockopt$inet6_MRT6_DEL_MFC(r0, 0x29, 0xcd, &(0x7f0000004b00)={{0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}}, {0xa, 0x4e21, 0x80000001, @empty, 0x5}, 0x2, [0x800, 0x900d, 0x1000, 0xbc, 0x7, 0x0, 0x1, 0x1ff]}, 0x5c) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000002f00)=0x2, 0x4) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:20:52 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x4000, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:20:52 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 59) [ 1125.028296] FAULT_INJECTION: forcing a failure. [ 1125.028296] name failslab, interval 1, probability 0, space 0, times 0 [ 1125.030853] CPU: 0 PID: 8221 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1125.032399] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1125.034282] Call Trace: [ 1125.034891] dump_stack+0x107/0x167 [ 1125.035717] should_fail.cold+0x5/0xa [ 1125.036595] ? create_object.isra.0+0x3a/0xa30 [ 1125.037636] should_failslab+0x5/0x20 [ 1125.038509] kmem_cache_alloc+0x5b/0x310 [ 1125.039427] ? mark_held_locks+0x9e/0xe0 [ 1125.040354] create_object.isra.0+0x3a/0xa30 [ 1125.041340] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1125.042500] kmem_cache_alloc+0x159/0x310 [ 1125.043449] xas_alloc+0x336/0x440 [ 1125.044260] xas_create+0x34a/0x10d0 [ 1125.045105] ? kernel_text_address+0xf2/0x120 [ 1125.046125] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1125.047322] xas_store+0x8c/0x1c40 [ 1125.048138] __xa_store+0x164/0x2d0 [ 1125.048957] ? xa_delete_node+0x280/0x280 [ 1125.049901] ? trace_hardirqs_on+0x5b/0x180 [ 1125.050892] xa_store+0x31/0x50 [ 1125.051641] __io_uring_add_tctx_node+0x1cf/0x520 [ 1125.052731] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1125.053908] ? alloc_fd+0x2e7/0x670 [ 1125.054772] io_uring_setup+0x1fbb/0x2980 [ 1125.055744] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1125.056904] ? wait_for_completion_io+0x270/0x270 [ 1125.058039] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1125.059260] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1125.060453] do_syscall_64+0x33/0x40 [ 1125.061298] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1125.062489] RIP: 0033:0x7ffa83495b19 08:20:52 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x6000, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:20:52 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 13) [ 1125.063345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1125.067678] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1125.069437] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1125.071090] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1125.072710] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1125.074356] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1125.074712] FAULT_INJECTION: forcing a failure. [ 1125.074712] name failslab, interval 1, probability 0, space 0, times 0 [ 1125.075993] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1125.080479] CPU: 1 PID: 8229 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1125.081960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1125.083779] Call Trace: [ 1125.084359] dump_stack+0x107/0x167 [ 1125.085141] should_fail.cold+0x5/0xa [ 1125.085963] ? create_object.isra.0+0x3a/0xa30 [ 1125.086952] should_failslab+0x5/0x20 [ 1125.087767] kmem_cache_alloc+0x5b/0x310 [ 1125.088651] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1125.089818] create_object.isra.0+0x3a/0xa30 [ 1125.090761] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1125.091847] kmem_cache_alloc+0x159/0x310 [ 1125.092731] security_file_alloc+0x34/0x170 [ 1125.093646] __alloc_file+0xb7/0x320 [ 1125.094444] alloc_empty_file+0x6d/0x170 [ 1125.095305] alloc_file+0x5e/0x5a0 [ 1125.096067] alloc_file_pseudo+0x16a/0x250 [ 1125.096969] ? alloc_file+0x5a0/0x5a0 [ 1125.097782] ? shmem_get_inode+0x55c/0xbc0 [ 1125.098697] __shmem_file_setup+0x144/0x320 [ 1125.099616] ? _copy_from_user+0xfb/0x1b0 [ 1125.100491] __do_sys_memfd_create+0x275/0x450 [ 1125.101460] ? memfd_file_seals_ptr+0x170/0x170 [ 1125.102459] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1125.103562] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1125.104653] do_syscall_64+0x33/0x40 [ 1125.105454] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1125.106554] RIP: 0033:0x7fb6c02f6b19 [ 1125.107346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1125.111271] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1125.112886] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 00007fb6c02f6b19 [ 1125.114413] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 00007fb6c03500fb [ 1125.115941] RBP: 0000000000000001 R08: 0000000000000400 R09: ffffffffffffffff [ 1125.117453] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000008100000 [ 1125.118989] R13: 0000000020000100 R14: 0000000000000800 R15: 00000000200001c0 [ 1125.150296] loop0: detected capacity change from 0 to 2048 [ 1125.166139] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:21:06 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f00000000c0)=0x80, 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000000c0)}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:21:06 executing program 5: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x6000, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:21:06 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xffff}}}}}}, 0x0) 08:21:06 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 60) 08:21:06 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 69) 08:21:06 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0xf000, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:21:06 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 14) 08:21:06 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback, 0x10000}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000001840)={'ip6gre0\x00', &(0x7f00000017c0)={'ip6tnl0\x00', 0x0, 0x4, 0x4, 0x8, 0x1ff, 0x18, @dev={0xfe, 0x80, '\x00', 0x20}, @dev={0xfe, 0x80, '\x00', 0x1e}, 0x8, 0x8, 0x1, 0xffff}}) sendmmsg$inet6(r1, &(0x7f0000003100)=[{{&(0x7f0000000380)={0xa, 0x4e21, 0x6, @private2, 0x1}, 0x1c, &(0x7f0000001740)=[{&(0x7f00000003c0)="cff6ba13747d4b69f4aa88e563dd454100e5333750727a4e51fba76a7ae68eb72e633e031fdf1096679958c90d449e7effebf7d5c77350d0e8b74615d25af945bdfacb9ef0d2735f3ea08d9e5c905e131c3567cb9f3f63c8bf1607365f619f411304d4a3bfe6b4b46f4d8b232475d0b1d2c9934cf95d1d3898e00a8c848655e5f0f3082942108fccd2f542f5a2c19528370ce04ccb31cabac2be4d7e8c45c8", 0x9f}, {&(0x7f0000000480)="4dd54ba4a758a51e12", 0x9}, {&(0x7f00000004c0)="c92ec18459e97ebad00c2b6ee7a22573ce21d4b9d979f9f713ac07795dccf9269726471ca3b6a2330d52f6131b3f654f165bb1148ada676aec7b07108678d8a25783188a64d3038f1dc7885a753ad5168cc5518a3f23df8468e02f60696583049020db22e67b1e9e38e57ebb309a97f1109302848b7180eba326b456c01f008d1c90dd64a9480a084366eb527a1a95fac9739eb82d39345d54e3e83a8f252e214202565deb87a683bfa7ecb88e22ed5f0545fc008f2203f0718773d38624c11ce75f0e1830522ee12c4a0f8f898e143282c030212c78c851ad07dc4c8584ef5098c611d5f3e1bc09a3af", 0xea}, {&(0x7f0000000700)="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", 0x1000}, {&(0x7f00000005c0)="9b8c3fc58af9dc6e7a0fe00a659b87a416784a827ad5238e3ed37d478ace520b620edafd9b147b16614349bc66989b547746ba11a63df298f962cefde219f0cbc96c78470c3058106b8bbca67da8a2032742a0a2c9da2aa7cadf3e994b830836e977d6bc6a6f7383b69b609e545774b7566b6fe345de37f8dc2dcd8d39a92ebe1285e5084ac578b834eeda50bc9c9f17b413d813d195b61f2f5e3e06e08b2a93c8d5957edc72ba03d52ea9d206399a03915f5640536322e68ca8abb3296e550ae20f", 0xc2}, {&(0x7f0000001700)="d6e6fb6694dc3cacbad3a59635718f9ef04139484c445ba63ba186338007d7079b", 0x21}], 0x6, &(0x7f0000001880)=[@pktinfo={{0x24, 0x29, 0x32, {@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', r2}}}, @dstopts={{0x90, 0x29, 0x37, {0x16, 0xe, '\x00', [@generic={0x5, 0x6a, "6e262afc9ac90011d25ac76c906d2a575c40dd199212585655b9ba8cc9952b3198b5a192606fc9558af2463072e43b8515cb45fd0f668c9b3ce316058ecbb067ad9c0d9c8c72f63a631fee81726bb2d3f4b6e3651eda34588e19673886a2f29ff76725d6614b174d04d3"}, @ra={0x5, 0x2, 0x5}, @enc_lim={0x4, 0x1, 0x7}]}}}, @hopopts_2292={{0x168, 0x29, 0x36, {0x0, 0x29, '\x00', [@generic={0x9, 0xe3, "3b7a115dff02e08af23a5b38e79134fb9fe04dff6ac7decb4c34be578649cea4905b61b3190f7cad51c8ddc0cb14714fe0010986f906e9e63d27e2b135a9d7edd8044246a6b3852bcf7d367a48e815a68731ff17c0c7257b850a859bbbe090f700d1dd0655abbd0e1e292c23aa8c395957e32269c79159cdbd171c536e0b3a78e736c5f4131466efa952a84946d9521c663420c3ad5e9a8cf6894998d26b21e87e2d99fd6dce043c069fb8ba6f6b33e81c2fc1d4b899cd44cc875f52e659150164a802e013839d28acccbd49610f6b0a7ea562c103d098368da2c4c23f807289e2c67c"}, @enc_lim={0x4, 0x1, 0x4}, @jumbo={0xc2, 0x4, 0x2a1c}, @calipso={0x7, 0x40, {0x3, 0xe, 0x0, 0x8, [0x6, 0x8, 0x0, 0x2a, 0x2, 0x1, 0x1ff]}}, @ra={0x5, 0x2, 0x1ff}, @jumbo={0xc2, 0x4, 0x80}, @calipso={0x7, 0x10, {0x0, 0x2, 0x0, 0x1000, [0x1]}}]}}}, @hoplimit_2292={{0x14}}, @hoplimit={{0x14, 0x29, 0x34, 0x1}}, @flowinfo={{0x14, 0x29, 0xb, 0x1}}], 0x268}}, {{0x0, 0x0, &(0x7f0000001c00)=[{&(0x7f0000001b00)="e1dcc552524205a4aef638b419764cbee40725ec9d3c72633ad5b39416b95d87373d3de6243373a6b329a007b7db11f45f", 0x31}, {&(0x7f0000001b40)="423eaaf8cbcd57e12dd4d507103dcfddf8c2ac90b905322245e59be756c7a85b923e2d96188cbe5b85c104473d9d540192ff24048f644c2b536b365522a91072424c6f9781500d4fdbba372c6f8b0c05d47fb7341ccb3c29a3b7fa20021d99049c3a1cd2f1395d839f2d92654f0a68052eec3ade407dac1ca40c4cb2f3a27dbfa320f61a44023dc196", 0x89}], 0x2}}, {{&(0x7f0000001c40)={0xa, 0x4e23, 0x400, @dev={0xfe, 0x80, '\x00', 0x3f}, 0x401}, 0x1c, &(0x7f0000001c80)}}, {{&(0x7f0000001cc0)={0xa, 0x4e24, 0x8, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xc0000000}, 0x1c, &(0x7f0000001e40)=[{&(0x7f0000001d00)="0527a3594f0a4051bba8de4bc316d86532a041706c8cc185e9d7cdd207b2acb548fff08c73b783045df379299ba88c1ee72eba6dad9c0fdd2e9a8d479e37fda38d848551ac51f9265f634e1df026e3560ff7da6d58df80b82dcb8056c8e7bfa92d70458341d59adc84b1e5afd476f7ace5b568eb96e93109436fbea5605c22f8a9074183ace740b7a183037d06c2a872", 0x90}, {&(0x7f0000001dc0)="6493b65833b2ec50cc8c2406183235378aa0f576642257e702d082f38534f0c1f3780ec178a4045e320b09a3e167a601099de22ae98d54520e0c2ab0dfd08fd422dc", 0x42}], 0x2, &(0x7f0000001e80)=[@dstopts_2292={{0x60, 0x29, 0x4, {0x3b, 0x8, '\x00', [@calipso={0x7, 0x40, {0x3, 0xe, 0x1, 0x3ff, [0x200, 0x7ff, 0x3, 0x6, 0x71983e9c, 0x9, 0x7]}}]}}}, @rthdr={{0x48, 0x29, 0x39, {0x2c, 0x6, 0x0, 0x7, 0x0, [@dev={0xfe, 0x80, '\x00', 0x22}, @private2={0xfc, 0x2, '\x00', 0x1}, @empty]}}}, @dstopts_2292={{0xf8, 0x29, 0x4, {0x3b, 0x1b, '\x00', [@generic={0x1, 0xc6, "4a7e7863cc25f3c214e9e7d1ae070ad245ccc3952ff9b5783699149c886391939a2e7989645eedd35de69fd37f58f56ab195e2381cec115d1be0595b1b1436f0e9e554641eb52be5643754ff0c5103c96d8b778b14bad59fa035e685fc6ac5d99e184dd4a794357f995660cb50165e51fb25279f249f2584868459f45057c43914e4db5980dc1c7ce62dd73d825aab3205a4c481c19a192f855f87c3f0ee19b0374bf73a4ce8c24276586dae154d3dbdc4e619c677f621ef98ca09532a1db18fe33311734c6a"}, @calipso={0x7, 0x10, {0x3, 0x2, 0x6, 0x1000, [0xffffffffffffffc0]}}, @pad1]}}}], 0x1a0}}, {{0x0, 0x0, &(0x7f0000003040)=[{&(0x7f0000002040)="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", 0x1000}], 0x1, &(0x7f0000003080)=[@hoplimit={{0x14, 0x29, 0x34, 0x3}}, @dontfrag={{0x14, 0x29, 0x3e, 0x4}}, @hopopts={{0x28, 0x29, 0x36, {0x0, 0x1, '\x00', [@padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0xd17b}]}}}], 0x58}}], 0x5, 0x8080) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$inet6(r3, &(0x7f0000000340)={&(0x7f0000000100)={0xa, 0x4e24, 0xc311, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x4}, 0x1c, &(0x7f0000000300)=[{&(0x7f0000000140)="a8422b9bc22c4594b82daf57e26b8e2bcc388e508b8ded16298e6007b6a3412081f846f258192a00d2f947a8bbde9df9494a6909900b467dd8888a013c52f0c1", 0x40}, {&(0x7f0000000200)="9914c78612b28d334ec184a53e489b30ab6505c477951335012536450a06e8645554eae0c1cbed85d51fb942415f95e0921852d8de184fe808109ff1bc0793ec348c79ee944f0375e6e9e35aba37503123ab136f1c8bbd86c0cd042b7e8a2245955b1f3c03f00d0def7e4e62e47b5850eaa4b3a57a63cb11712be4ffd993c793201bd9750fbdfb3c2c4a8ae9e4a9ab2f461bd01498b118cbcaed38fa3432ced1aa4f030b13e90633dbe5638206eebe2c6c8c8ba5162077397fd3", 0xba}], 0x2, &(0x7f00000002c0)=[@dontfrag={{0x14, 0x29, 0x3e, 0x2}}], 0x18}, 0xd0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0xffffff69, &(0x7f00000000c0)=[{&(0x7f00000001c0)="a2", 0x1}], 0x1}, 0x1000c894) [ 1139.112308] FAULT_INJECTION: forcing a failure. [ 1139.112308] name failslab, interval 1, probability 0, space 0, times 0 [ 1139.113717] CPU: 0 PID: 8244 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1139.114561] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1139.115581] Call Trace: [ 1139.115909] dump_stack+0x107/0x167 [ 1139.116366] should_fail.cold+0x5/0xa [ 1139.116835] ? create_object.isra.0+0x3a/0xa30 [ 1139.117407] should_failslab+0x5/0x20 [ 1139.117883] kmem_cache_alloc+0x5b/0x310 [ 1139.118389] ? mark_held_locks+0x9e/0xe0 [ 1139.118902] create_object.isra.0+0x3a/0xa30 [ 1139.119445] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1139.120073] kmem_cache_alloc+0x159/0x310 [ 1139.120588] xas_alloc+0x336/0x440 [ 1139.121031] xas_create+0x34a/0x10d0 [ 1139.121501] ? kernel_text_address+0xf2/0x120 [ 1139.122060] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1139.122715] xas_store+0x8c/0x1c40 [ 1139.123164] __xa_store+0x164/0x2d0 [ 1139.123617] ? xa_delete_node+0x280/0x280 [ 1139.124133] ? trace_hardirqs_on+0x5b/0x180 [ 1139.124668] xa_store+0x31/0x50 [ 1139.125078] __io_uring_add_tctx_node+0x1cf/0x520 [ 1139.125671] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1139.126322] ? alloc_fd+0x2e7/0x670 [ 1139.126789] io_uring_setup+0x1fbb/0x2980 [ 1139.127308] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1139.127932] ? wait_for_completion_io+0x270/0x270 [ 1139.128543] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1139.129190] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1139.129828] do_syscall_64+0x33/0x40 [ 1139.130286] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1139.130930] RIP: 0033:0x7f466af67b19 [ 1139.131388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1139.133643] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1139.134590] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1139.135464] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1139.136341] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1139.137219] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1139.138093] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1139.143222] FAULT_INJECTION: forcing a failure. [ 1139.143222] name failslab, interval 1, probability 0, space 0, times 0 [ 1139.145692] CPU: 1 PID: 8249 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1139.147180] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1139.148950] Call Trace: [ 1139.149544] dump_stack+0x107/0x167 [ 1139.150335] should_fail.cold+0x5/0xa [ 1139.151179] ? xas_alloc+0x336/0x440 [ 1139.151977] should_failslab+0x5/0x20 [ 1139.152819] kmem_cache_alloc+0x5b/0x310 [ 1139.153701] xas_alloc+0x336/0x440 [ 1139.154474] xas_create+0x34a/0x10d0 [ 1139.155322] ? kernel_text_address+0xf2/0x120 [ 1139.156295] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1139.157433] xas_store+0x8c/0x1c40 [ 1139.158267] __xa_store+0x164/0x2d0 [ 1139.159269] ? xa_delete_node+0x280/0x280 [ 1139.160367] ? trace_hardirqs_on+0x5b/0x180 [ 1139.161484] xa_store+0x31/0x50 [ 1139.162337] __io_uring_add_tctx_node+0x1cf/0x520 [ 1139.163594] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1139.164933] ? alloc_fd+0x2e7/0x670 [ 1139.165910] io_uring_setup+0x1fbb/0x2980 [ 1139.166877] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1139.167115] FAULT_INJECTION: forcing a failure. [ 1139.167115] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1139.168154] ? wait_for_completion_io+0x270/0x270 [ 1139.168201] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1139.171878] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1139.173006] do_syscall_64+0x33/0x40 [ 1139.173807] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1139.174924] RIP: 0033:0x7ffa83495b19 [ 1139.175728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1139.179723] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1139.181366] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1139.182904] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1139.184442] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1139.185960] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1139.187533] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1139.189214] CPU: 0 PID: 8260 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1139.190040] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1139.191049] Call Trace: [ 1139.191375] dump_stack+0x107/0x167 [ 1139.191814] should_fail.cold+0x5/0xa [ 1139.192273] __alloc_pages_nodemask+0x182/0x600 [ 1139.192829] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1139.193552] ? lock_downgrade+0x6d0/0x6d0 [ 1139.194046] ? lock_acquire+0x197/0x470 [ 1139.194535] alloc_pages_vma+0xbb/0x410 [ 1139.195018] shmem_alloc_page+0x10f/0x1e0 [ 1139.195515] ? shmem_init_inode+0x20/0x20 [ 1139.196022] ? percpu_counter_add_batch+0x8b/0x140 [ 1139.196610] ? __vm_enough_memory+0x184/0x360 [ 1139.197149] shmem_getpage_gfp.constprop.0+0x512/0x1920 [ 1139.197802] ? shmem_unuse_inode+0xf60/0xf60 [ 1139.198333] ? timestamp_truncate+0x1e6/0x2f0 [ 1139.198878] ? iov_iter_fault_in_readable+0x9a/0x410 [ 1139.199485] shmem_write_begin+0xf7/0x1d0 [ 1139.199986] generic_perform_write+0x20a/0x4f0 [ 1139.200535] ? page_cache_prev_miss+0x310/0x310 [ 1139.201092] ? evict_inodes+0x470/0x470 [ 1139.201567] ? generic_write_checks+0x2ad/0x390 [ 1139.202127] __generic_file_write_iter+0x39d/0x5d0 [ 1139.202720] generic_file_write_iter+0xdb/0x230 [ 1139.203272] ? iov_iter_init+0x3c/0x130 [ 1139.203750] new_sync_write+0x42c/0x660 [ 1139.204224] ? new_sync_read+0x6f0/0x6f0 [ 1139.204703] ? __x64_sys_pwrite64+0x201/0x260 [ 1139.205239] ? lock_release+0x680/0x680 [ 1139.205712] ? selinux_file_permission+0x92/0x520 [ 1139.206292] ? security_file_permission+0xb1/0xe0 [ 1139.206872] vfs_write+0x7c0/0xb10 [ 1139.207298] __x64_sys_pwrite64+0x201/0x260 [ 1139.207807] ? ksys_pwrite64+0x1b0/0x1b0 [ 1139.208292] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1139.208910] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1139.209518] do_syscall_64+0x33/0x40 [ 1139.209963] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1139.210579] RIP: 0033:0x7fb6c02a9ab7 [ 1139.211020] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 1139.213191] RSP: 002b:00007fb6bd86bf20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 1139.214119] RAX: ffffffffffffffda RBX: 00007fb6c0340970 RCX: 00007fb6c02a9ab7 [ 1139.215011] RDX: 000000000000003a RSI: 0000000020010000 RDI: 0000000000000004 [ 1139.215886] RBP: 0000000000000001 R08: 0000000000000000 R09: ffffffffffffffff [ 1139.216765] R10: 0000000000000400 R11: 0000000000000293 R12: 0000000000000004 [ 1139.217634] R13: 0000000000000004 R14: 0000000020000040 R15: 0000000000000000 [ 1139.287277] loop0: detected capacity change from 0 to 2048 [ 1139.291376] EXT4-fs (loop0): VFS: Can't find ext4 filesystem 08:21:20 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 15) 08:21:20 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 61) 08:21:20 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r1 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) r2 = fsmount(r1, 0x1, 0x0) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000000c0)='syzkaller0\x00', 0x10) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000440)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x28a9e564}}, './file0\x00'}) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) r3 = socket$netlink(0x10, 0x3, 0x2) sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000200)={0x22c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0xa8, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x1db}]}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3639}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4b2}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xd43}, @TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xa3c}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x200}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffffcaec}]}, @TIPC_NLA_SOCK_ADDR={0x8}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1}]}, @TIPC_NLA_MEDIA={0x9c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8f77}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xeb}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8b}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfa51}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xb44e}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xff}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}]}]}, @TIPC_NLA_NET={0x38, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}, @TIPC_NLA_NET_ADDR={0x8}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xfffffffffffffff7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xe450}]}, @TIPC_NLA_MEDIA={0x90, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_MTU={0x8}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x20}]}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6720}]}]}, 0x22c}, 0x1, 0x0, 0x0, 0x4044040}, 0x8804) 08:21:20 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0xffff, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:21:20 executing program 5: syz_open_procfs$userns(0x0, &(0x7f0000000100)) r0 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x200000, 0x2, 0xb}, 0x18) fstat(r0, &(0x7f0000000080)) [ 1153.330750] FAULT_INJECTION: forcing a failure. [ 1153.330750] name failslab, interval 1, probability 0, space 0, times 0 [ 1153.333782] CPU: 0 PID: 8274 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1153.335555] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1153.337697] Call Trace: [ 1153.338378] dump_stack+0x107/0x167 [ 1153.339316] should_fail.cold+0x5/0xa 08:21:20 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f0000000680)={&(0x7f00000000c0)={0xa, 0x4e20, 0x400, @private2, 0x2}, 0x1c, &(0x7f0000000700)=[{&(0x7f0000000240)="675ad118b837f4c92cd5646ee6c35ba4df74edd663c16f8e67626a1e4d0a41c104ec4049b27753337639cad6e3df02db59572b57f5baa6c2054b6628c8b593a954c7744a419e59022f49ccb6a1ebe5dd35ac399898", 0x55}, {&(0x7f0000000180)="13d0eeed5e3959a585edc1fb99aaadc2d97f1fd5dcbfde8c7d0a7e5808b403c54871", 0x22}, {&(0x7f00000002c0)="927067ed4a694130b285293c6e65794e5d4e3caf9986f330855bac63defe23a0acb7db06847b51e66b0f72c7890bffdad0be079ba0a2bcac6a42f995142a7cb7bfbc457197a65cdfd977b1beae1c91ecde1e2ae78af0a92539d075996f13c041c171793719822a49e2538540b11ccd2f9a426540456db25f0798bfbcc14ef42abbabac6fc7903ec615e473b66d9a316acc10ec2fec81ed4528b7f5bc8b4dedc2fe0f6b8f00c278e849a421abe81e6425b12fb6a7722b489141743466766d6deb382f4eb227c9c0e86bcb59ade953f4a9e4677700c9b3e7f3a04b508207538e6c87f8db9913791f474db2f3b666c9061a76", 0xf1}, {&(0x7f00000003c0)="1d699f93fa4ee90c540e99546799f2434fa31cfc08312e452d49fc2f98da020038b8867f8cc7aae3417429c202d902cbc6b68ef0a33621badfd1151f4e0bfe13b6fce7f629a832863cc15766fcc3743f340e0422830e0482f54217307a04ba236ff2b2bf946b77bfc747ae1632db209822f46d1b02fb944fd75a1394f0515ee52ab558fe263b28c2895d248947077aec1957211d7e81", 0x96}, {&(0x7f0000000480)}, {&(0x7f00000004c0)="cf14fb9ea1d3b8759b7dd42e4c6e0dd245296c1fdec9a7614ff87a07abc764659688c8c387a9a5e4b24756435b5f08b8f3f47608255d4b4ce6549541cad4c95d5aed06bbb9a88b0def9a104345238d754939ced2d1e26b1ee8697825e6763a51c72bd74f87e9dce1b7db1a56218517105c370176d7661b16e7", 0x79}, {&(0x7f0000000580)="d62af2785642f2496ea798d6a3ca3779ab5612b1c3412ec97582fa25d98ff6f3b0f8", 0x22}, {&(0x7f00000005c0)="df0eae045e4eab9fc64af1a8cd2f4e78f391ecd5b29591a3eb81b1a5119e164588407fbe8c17b82648577655d134a9a0e2f2048db1226545bda7e52440960c646f8bba1e1524f276af5e724dfafbbf4bcb57e2607b9cc30d9802b2ce8937f4484fa31a8ed6038b5f7716b7187c29373514869245feb392ec4c3b824add5bebf16f11f61087eee132c592e91b6c0825d710bfe245b2f2873737880860288ea3fb5835bc76d8bc52", 0xa7}], 0x8}, 0x50) r1 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r1, 0x1, 0x0) r2 = syz_io_uring_setup(0x804ebb, &(0x7f0000000780)={0x0, 0x1b9b, 0x10, 0x0, 0x3c7}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) copy_file_range(r2, &(0x7f0000000140)=0x8, r1, &(0x7f0000000100)=0x1ae, 0x5, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:21:20 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) syz_emit_ethernet(0x22, &(0x7f0000000000)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x27}, @val={@void, {0x8100, 0x0, 0x0, 0x1}}, {@can={0xc, {{0x0, 0x1, 0x1, 0x1}, 0x6, 0x1, 0x0, 0x0, "46f913748a2a9c78"}}}}, &(0x7f0000000040)={0x1, 0x4, [0x758, 0xa0b, 0xa98, 0xde5]}) 08:21:20 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 70) [ 1153.340291] ? create_object.isra.0+0x3a/0xa30 [ 1153.341615] should_failslab+0x5/0x20 [ 1153.342581] kmem_cache_alloc+0x5b/0x310 [ 1153.343622] ? mark_held_locks+0x9e/0xe0 [ 1153.344664] create_object.isra.0+0x3a/0xa30 [ 1153.345787] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1153.347089] kmem_cache_alloc+0x159/0x310 [ 1153.348160] xas_alloc+0x336/0x440 [ 1153.349080] xas_create+0x34a/0x10d0 [ 1153.350045] ? kernel_text_address+0xf2/0x120 [ 1153.351208] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1153.352548] xas_store+0x8c/0x1c40 [ 1153.353478] __xa_store+0x164/0x2d0 [ 1153.354414] ? xa_delete_node+0x280/0x280 [ 1153.355007] FAULT_INJECTION: forcing a failure. [ 1153.355007] name failslab, interval 1, probability 0, space 0, times 0 [ 1153.355494] ? trace_hardirqs_on+0x5b/0x180 [ 1153.358956] xa_store+0x31/0x50 [ 1153.359798] __io_uring_add_tctx_node+0x1cf/0x520 [ 1153.361020] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1153.362351] ? alloc_fd+0x2e7/0x670 [ 1153.363302] io_uring_setup+0x1fbb/0x2980 [ 1153.364375] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1153.365668] ? wait_for_completion_io+0x270/0x270 [ 1153.366930] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1153.368258] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1153.369570] do_syscall_64+0x33/0x40 [ 1153.370515] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1153.371803] RIP: 0033:0x7ffa83495b19 [ 1153.372588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1153.376496] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1153.378115] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1153.379627] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1153.381148] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1153.382663] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1153.384193] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1153.385752] CPU: 1 PID: 8280 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1153.387337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1153.389117] Call Trace: [ 1153.389695] dump_stack+0x107/0x167 [ 1153.390479] should_fail.cold+0x5/0xa [ 1153.391315] ? xas_alloc+0x336/0x440 [ 1153.392106] should_failslab+0x5/0x20 [ 1153.392922] kmem_cache_alloc+0x5b/0x310 [ 1153.393795] xas_alloc+0x336/0x440 [ 1153.394533] xas_create+0x34a/0x10d0 [ 1153.395343] ? kernel_text_address+0xf2/0x120 [ 1153.396301] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1153.397423] xas_store+0x8c/0x1c40 [ 1153.397725] FAULT_INJECTION: forcing a failure. [ 1153.397725] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1153.398181] __xa_store+0x164/0x2d0 [ 1153.398214] ? xa_delete_node+0x280/0x280 [ 1153.402214] ? trace_hardirqs_on+0x5b/0x180 [ 1153.403149] xa_store+0x31/0x50 [ 1153.403848] __io_uring_add_tctx_node+0x1cf/0x520 [ 1153.404888] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1153.405979] ? alloc_fd+0x2e7/0x670 [ 1153.406766] io_uring_setup+0x1fbb/0x2980 [ 1153.407715] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1153.408788] ? wait_for_completion_io+0x270/0x270 [ 1153.409813] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1153.410935] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1153.411983] do_syscall_64+0x33/0x40 [ 1153.412777] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1153.413827] RIP: 0033:0x7f466af67b19 [ 1153.414619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1153.418383] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1153.419956] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1153.421410] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1153.422914] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1153.424371] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1153.425838] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1153.427375] CPU: 0 PID: 8284 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1153.428826] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1153.430565] Call Trace: [ 1153.431134] dump_stack+0x107/0x167 [ 1153.431906] should_fail.cold+0x5/0xa [ 1153.432703] ? timestamp_truncate+0x1e6/0x2f0 [ 1153.433653] iov_iter_copy_from_user_atomic+0x49b/0xdb0 [ 1153.434792] ? shmem_write_begin+0xf7/0x1d0 [ 1153.435706] ? shmem_write_begin+0x100/0x1d0 [ 1153.436646] generic_perform_write+0x279/0x4f0 [ 1153.437619] ? page_cache_prev_miss+0x310/0x310 [ 1153.438611] ? evict_inodes+0x470/0x470 [ 1153.439455] ? generic_write_checks+0x2ad/0x390 [ 1153.440449] __generic_file_write_iter+0x39d/0x5d0 [ 1153.441487] generic_file_write_iter+0xdb/0x230 [ 1153.442472] ? iov_iter_init+0x3c/0x130 [ 1153.443321] new_sync_write+0x42c/0x660 [ 1153.444160] ? new_sync_read+0x6f0/0x6f0 [ 1153.445009] ? __x64_sys_pwrite64+0x201/0x260 [ 1153.445955] ? lock_release+0x680/0x680 [ 1153.446801] ? selinux_file_permission+0x92/0x520 [ 1153.447817] ? security_file_permission+0xb1/0xe0 [ 1153.448840] vfs_write+0x7c0/0xb10 [ 1153.449595] __x64_sys_pwrite64+0x201/0x260 [ 1153.450501] ? ksys_pwrite64+0x1b0/0x1b0 [ 1153.451365] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1153.452464] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1153.453551] do_syscall_64+0x33/0x40 [ 1153.454350] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1153.455440] RIP: 0033:0x7fb6c02a9ab7 [ 1153.456233] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 1153.460351] RSP: 002b:00007fb6bd86bf20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 1153.461967] RAX: ffffffffffffffda RBX: 00007fb6c0340970 RCX: 00007fb6c02a9ab7 [ 1153.463499] RDX: 000000000000003a RSI: 0000000020010000 RDI: 0000000000000004 [ 1153.465013] RBP: 0000000000000001 R08: 0000000000000000 R09: ffffffffffffffff [ 1153.466523] R10: 0000000000000400 R11: 0000000000000293 R12: 0000000000000004 [ 1153.468034] R13: 0000000000000004 R14: 0000000020000040 R15: 0000000000000000 08:21:20 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000240)={0xfffffffffffffa68, 0x0, '\x00', 0x1, &(0x7f00000001c0)}) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000000c0)="1bff4fabe9b32451aa3350212a90450f6f2df1163d64565db63a0b2345c0f519fd95c70b8d2a0603b9a1a9c3b003b718ec6c89895e28ee5f37725c769aa1defb5df06759b0d9d85689f2a68ea57e46faeabf37a43ed550d898b20b7a7dc57f89b997a4dcf69ed8f9ccfed00586ee8ad132b8b526b9671e9dbdb9acf739db3b957b5d1a171ce2ba9b93be625c14d66fd59f4d4cc9d3e37364b91851897e2f3ece7346d46aa3d9a48d017bb7074b02bdc8cbb03b43862ad2c814d818d441f557dd79b01c731db0133a5d", 0xc9}, {&(0x7f0000000700)="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", 0x1000}], 0x2}, 0x10044001) 08:21:20 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0xa, 0x4e24, 0x9, @ipv4={'\x00', '\xff\xff', @loopback}, 0x54e5}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000100)="5859d2c06ed6b4fda76379da1d5d71e22613d8fcb71e1c74c807547ccf25e4157d574f2dc978fd8d266ac89b878053c7cec00de582d4d1523af7cb94", 0x3c}, {&(0x7f0000000200)="06702ba7b5e1c29434237c5b54f4493322fb4524aa3e9cf9c06caba272aca7f4031d3ec593e69498a778b70a1edc695c482f79e598744d3fa3c56530facc55b1b48f6f2e8209f13c087aff6fbea59feee250c184103eda5f5f968f0c6d6c03604b9731ce2eac67be0a4447e926c773360c472a66029e8344a8a5386c29585f96cd2db1ae5acca0178e5a1da5bc749583c5d596d43b66e88f4ea462cb26bd4cebe0b990e4917020c14fee3e8671c464570fb5be6547ae94035d5917e171bc", 0xbe}], 0x2, &(0x7f00000002c0)=[@dstopts={{0x70, 0x29, 0x37, {0x1, 0xb, '\x00', [@jumbo={0xc2, 0x4, 0x81}, @jumbo={0xc2, 0x4, 0x4}, @hao={0xc9, 0x10, @local}, @calipso={0x7, 0x20, {0x3, 0x6, 0x4, 0x7, [0x40, 0xfffffffffffffffe, 0x1]}}, @ra={0x5, 0x2, 0x3ff}, @ra={0x5, 0x2, 0x7}, @jumbo={0xc2, 0x4, 0x20}, @pad1, @enc_lim={0x4, 0x1, 0x80}, @ra={0x5, 0x2, 0x3}]}}}, @hopopts_2292={{0x58, 0x29, 0x36, {0x11, 0x7, '\x00', [@pad1, @calipso={0x7, 0x20, {0x1, 0x6, 0x6, 0x3, [0x40, 0xc5e, 0x2]}}, @padn={0x1, 0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @jumbo, @pad1]}}}, @rthdr={{0x38, 0x29, 0x39, {0x73, 0x4, 0x0, 0x3c, 0x0, [@private1, @remote]}}}, @dstopts={{0x20, 0x29, 0x37, {0x0, 0x0, '\x00', [@pad1, @padn={0x1, 0x1, [0x0]}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0xa45}}], 0x138}, 0x40880) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) r1 = open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r1, 0x8010671f, &(0x7f00000004c0)={&(0x7f0000000400)=""/189, 0xbd}) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) ioctl$PTP_EXTTS_REQUEST2(0xffffffffffffffff, 0x40103d0b, &(0x7f0000000500)={0x1}) 08:21:20 executing program 5: fdatasync(0xffffffffffffffff) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r2, 0x0, 0x0}, 0x0) r3 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) openat(r3, &(0x7f0000000100)='./file0\x00', 0x1, 0x1ad) fsmount(r3, 0x1, 0x0) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r6, 0x0, 0x0}, 0x0) r7 = syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0) io_uring_enter(r7, 0x58ab, 0x0, 0x0, 0x0, 0x0) poll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x5010}, {0xffffffffffffffff, 0x441}, {r2, 0x8000}, {r3, 0x51}, {0xffffffffffffffff, 0x8}, {r6, 0x80}, {0xffffffffffffffff, 0x3280}, {0xffffffffffffffff, 0x30c}, {r7, 0x68b}], 0x9, 0x8) socket$inet6_udp(0xa, 0x2, 0x0) r8 = socket$netlink(0x10, 0x3, 0x2) r9 = fcntl$dupfd(r8, 0x0, r8) sendmsg$nl_generic(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x20, 0x18, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x4, 0x16, 0x0, 0x0, @binary}]}, 0x20}}, 0x0) [ 1153.577569] loop0: detected capacity change from 0 to 2048 [ 1153.585550] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:21:20 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:21:20 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) getsockopt$inet6_tcp_int(r0, 0x6, 0x6, &(0x7f00000000c0), &(0x7f0000000100)=0x4) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) setsockopt$sock_int(r1, 0x1, 0xb, &(0x7f0000000080)=0x4000, 0x4) socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:21:20 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 71) 08:21:21 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 16) 08:21:20 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 62) 08:21:21 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty, 0x6}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) acct(&(0x7f00000000c0)='./file0\x00') sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) readv(r0, &(0x7f0000000200)=[{&(0x7f0000000100)=""/115, 0x73}, {&(0x7f0000000180)=""/63, 0x3f}], 0x2) [ 1153.674598] FAULT_INJECTION: forcing a failure. [ 1153.674598] name failslab, interval 1, probability 0, space 0, times 0 [ 1153.677125] CPU: 0 PID: 8304 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1153.678535] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1153.680314] Call Trace: [ 1153.680878] dump_stack+0x107/0x167 [ 1153.681650] should_fail.cold+0x5/0xa [ 1153.682456] ? create_object.isra.0+0x3a/0xa30 [ 1153.683419] should_failslab+0x5/0x20 [ 1153.684209] kmem_cache_alloc+0x5b/0x310 [ 1153.685071] ? mark_held_locks+0x9e/0xe0 [ 1153.685930] create_object.isra.0+0x3a/0xa30 [ 1153.686864] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1153.687944] kmem_cache_alloc+0x159/0x310 [ 1153.688826] xas_alloc+0x336/0x440 [ 1153.689578] xas_create+0x34a/0x10d0 [ 1153.690377] ? kernel_text_address+0xf2/0x120 [ 1153.691334] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1153.692456] xas_store+0x8c/0x1c40 [ 1153.693219] __xa_store+0x164/0x2d0 [ 1153.694002] ? xa_delete_node+0x280/0x280 [ 1153.694891] ? trace_hardirqs_on+0x5b/0x180 [ 1153.695815] xa_store+0x31/0x50 [ 1153.696518] __io_uring_add_tctx_node+0x1cf/0x520 [ 1153.697551] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1153.698654] ? alloc_fd+0x2e7/0x670 [ 1153.699453] io_uring_setup+0x1fbb/0x2980 [ 1153.700350] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1153.701432] ? wait_for_completion_io+0x270/0x270 [ 1153.702490] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1153.703616] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1153.704725] do_syscall_64+0x33/0x40 [ 1153.705520] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1153.706614] RIP: 0033:0x7f466af67b19 [ 1153.707447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1153.707662] FAULT_INJECTION: forcing a failure. [ 1153.707662] name failslab, interval 1, probability 0, space 0, times 0 [ 1153.711395] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1153.711417] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1153.711429] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1153.711441] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1153.711463] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1153.721503] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1153.723068] CPU: 1 PID: 8308 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1153.724542] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1153.726320] Call Trace: [ 1153.726896] dump_stack+0x107/0x167 [ 1153.727675] should_fail.cold+0x5/0xa [ 1153.728485] ? getname_flags.part.0+0x50/0x4f0 [ 1153.729464] should_failslab+0x5/0x20 [ 1153.730274] kmem_cache_alloc+0x5b/0x310 [ 1153.731150] ? new_sync_write+0x499/0x660 [ 1153.732039] getname_flags.part.0+0x50/0x4f0 [ 1153.732978] getname+0x8e/0xd0 [ 1153.733664] do_sys_openat2+0xf9/0x4d0 [ 1153.734480] ? build_open_flags+0x6f0/0x6f0 [ 1153.735416] ? rcu_read_lock_any_held+0x75/0xa0 08:21:21 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x2, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1153.736376] __x64_sys_openat+0x13f/0x1f0 [ 1153.737367] ? __ia32_sys_open+0x1c0/0x1c0 [ 1153.738297] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1153.739422] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1153.740513] do_syscall_64+0x33/0x40 [ 1153.741301] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1153.742383] RIP: 0033:0x7fb6c02a9a04 [ 1153.743211] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1153.747141] RSP: 002b:00007fb6bd86bed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1153.748769] RAX: ffffffffffffffda RBX: 00007fb6c0340970 RCX: 00007fb6c02a9a04 [ 1153.750291] RDX: 0000000000000002 RSI: 00007fb6bd86c000 RDI: 00000000ffffff9c [ 1153.751817] RBP: 00007fb6bd86c000 R08: 0000000000000000 R09: ffffffffffffffff [ 1153.753337] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1153.754857] R13: 0000000000000004 R14: 0000000020000058 R15: 0000000000000001 [ 1153.773776] FAULT_INJECTION: forcing a failure. [ 1153.773776] name failslab, interval 1, probability 0, space 0, times 0 [ 1153.776202] CPU: 0 PID: 8312 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1153.777658] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1153.779439] Call Trace: [ 1153.780018] dump_stack+0x107/0x167 [ 1153.780790] should_fail.cold+0x5/0xa [ 1153.781606] ? xas_alloc+0x336/0x440 [ 1153.782403] should_failslab+0x5/0x20 [ 1153.783229] kmem_cache_alloc+0x5b/0x310 [ 1153.784104] xas_alloc+0x336/0x440 [ 1153.784879] xas_create+0x34a/0x10d0 [ 1153.785682] ? kernel_text_address+0xf2/0x120 [ 1153.786652] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1153.787786] xas_store+0x8c/0x1c40 [ 1153.788554] __xa_store+0x164/0x2d0 [ 1153.789335] ? xa_delete_node+0x280/0x280 [ 1153.790232] ? trace_hardirqs_on+0x5b/0x180 [ 1153.791167] xa_store+0x31/0x50 [ 1153.791875] __io_uring_add_tctx_node+0x1cf/0x520 [ 1153.792925] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1153.794043] ? alloc_fd+0x2e7/0x670 [ 1153.794837] io_uring_setup+0x1fbb/0x2980 [ 1153.795731] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1153.796804] ? wait_for_completion_io+0x270/0x270 [ 1153.797854] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1153.798977] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1153.800084] do_syscall_64+0x33/0x40 [ 1153.800870] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1153.801946] RIP: 0033:0x7ffa83495b19 [ 1153.802750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1153.806675] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1153.808310] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1153.809827] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1153.811350] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1153.812871] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1153.814394] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:21:21 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f00000000c0), 0x4) bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14) connect$802154_dgram(r0, &(0x7f0000000080), 0x14) sendmmsg$sock(r0, &(0x7f00000021c0)=[{{0x0, 0x2303, 0x0}}], 0x324, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000180)={0x2, 0x2, 0x485, 0x0, 0xffffffffffffffff}) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x301000, 0x0) ioctl$BLKFLSBUF(0xffffffffffffffff, 0x1261, 0x0) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r1, 0x0, 0x240041c0) r2 = memfd_create(&(0x7f0000000340)='%\x0e\xa0\xa3)\xc2\xe47\xb3\xec\xf8\xb7\xdfv\xf6K\x11\x83k\xc8\xd7\xcb\xdfd\xba(\x0fP3\x9a\xa8\xbc\xd446J\x00\x85\xff\x00\x00\x00\x00\x00\x00', 0x4) r3 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r3, 0x1, 0x0) setsockopt$WPAN_WANTACK(r3, 0x0, 0x0, &(0x7f0000000040)=0x1, 0x4) readv(0xffffffffffffffff, &(0x7f0000000100), 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000140)={{0x1, 0x1, 0x18, r2, {0x8}}, './file1\x00'}) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xa001, 0x0) 08:21:21 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) pipe2(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001700), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_TSINFO_GET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x2c, r3, 0x1, 0x0, 0x0, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0x2c}}, 0x0) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) bind$packet(r4, &(0x7f0000000040)={0x11, 0x9, r6, 0x1, 0x8, 0x6, @random="1900de9961ac"}, 0x14) r7 = socket$packet(0x11, 0x3, 0x300) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) bind$packet(r7, &(0x7f0000000040)={0x11, 0x9, r9, 0x1, 0x8, 0x6, @random="1900de9961ac"}, 0x14) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f0000000700)={0x13fc, r3, 0x8, 0x70bd2b, 0x25dfdbfe, {}, [@ETHTOOL_A_PRIVFLAGS_HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x100, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x44}, @ETHTOOL_A_BITSET_VALUE={0x3d, 0x4, "36fc2739daa1c675eb0b14fa98881409e94a1ca6ee2cacc9a58e1c075b7f05b38c8e544ee3ac1718a0f80d16fb87c9e5851ab9be49c1e0a59e"}, @ETHTOOL_A_BITSET_VALUE={0xaa, 0x4, "f59758c094e701451cf59af6ad66378c3d48301b63506c4cf3dbf5baf3c7f423512900ffbd6b266105ac3652cd24d6bb259743029269fecb87f650d8f28e64cc57179e01115690d767e81035684ca6bf01e6640f768ba51509537e0b35961b2005d29cc430e193690cee038041eb8c1d8396da0867f0271fc4a460723277c0e9151e1428955545f8d2d2fac393f5614f23371fe4e26be948d8ec34b52828afe0608e8df069ac"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x2000000}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x120c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xc539}, @ETHTOOL_A_BITSET_MASK={0x78, 0x5, "c1525f5c4ab1f334b000c156b2168b255bdde7029c39a4ada8d0991c7e1de5aa28f6522a8d0aba77b2554c292d6473206fd9ddeb4b3dae1129409d5346ce75eb3e329c380930dd5508633fc805627a15d02b2c6bed48fb95c90d60124dc2f95c9d9210a74e2ea93c3fdc9a628bc13cec81a62f74"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0xeb, 0x4, "081127d712c555e42c6d2a43c2bc9788f786e90a60d8cd6be43d1bc6ec5940ed1c2b8b8d9f5fe8ab92b79c0eb8117e8be6d24d0b19a99eabce1d34c1c647bbafe9bc05da98fe4cce93ed40e5a4e6744f66f844da31f67005d58c35be6117f5d969f39799c33f52f31ded27f785f977fa2bec0a40af0817d679559de95ede590cd36d0ac4f64ce95b0abc67987d130e57b4247b6778f7dc9f42b8880267a5909a80924649f5bfe364f89b5fa44bbb308dab18f25fae90808803d6b0a9ec9a6a90124bdd8d7d1a797c70065d6bd2816a1351309c1969ccd76621e525c5f30251e4e0e6b44f3ffa8b"}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "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"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x8c, 0x3, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ',\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xffffffff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfff}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '^\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xff}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\\[^]\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, ':\'\xe9[\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x47e9e96e7bd0a890}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}]}]}, 0x13fc}, 0x1, 0x0, 0x0, 0x81}, 0x40000) 08:21:21 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x3, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:21:21 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 17) 08:21:21 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 72) 08:21:21 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) r1 = open$dir(0x0, 0x0, 0x0) openat(r1, &(0x7f0000000080)='./file0\x00', 0x600, 0x20) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) [ 1153.930149] FAULT_INJECTION: forcing a failure. [ 1153.930149] name failslab, interval 1, probability 0, space 0, times 0 [ 1153.932573] CPU: 0 PID: 8328 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1153.934009] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1153.935774] Call Trace: [ 1153.936341] dump_stack+0x107/0x167 [ 1153.937118] should_fail.cold+0x5/0xa [ 1153.937941] ? create_object.isra.0+0x3a/0xa30 [ 1153.938916] should_failslab+0x5/0x20 [ 1153.939388] FAULT_INJECTION: forcing a failure. [ 1153.939388] name failslab, interval 1, probability 0, space 0, times 0 [ 1153.939722] kmem_cache_alloc+0x5b/0x310 [ 1153.939750] ? __generic_file_write_iter+0x1a4/0x5d0 [ 1153.944002] create_object.isra.0+0x3a/0xa30 [ 1153.944933] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1153.946012] kmem_cache_alloc+0x159/0x310 [ 1153.946908] ? new_sync_write+0x499/0x660 [ 1153.947798] getname_flags.part.0+0x50/0x4f0 [ 1153.948741] getname+0x8e/0xd0 [ 1153.949431] do_sys_openat2+0xf9/0x4d0 [ 1153.950260] ? build_open_flags+0x6f0/0x6f0 [ 1153.951201] ? rcu_read_lock_any_held+0x75/0xa0 [ 1153.952190] __x64_sys_openat+0x13f/0x1f0 [ 1153.953073] ? __ia32_sys_open+0x1c0/0x1c0 [ 1153.953982] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1153.955103] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1153.956194] do_syscall_64+0x33/0x40 [ 1153.956983] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1153.958062] RIP: 0033:0x7fb6c02a9a04 [ 1153.958860] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1153.962751] RSP: 002b:00007fb6bd86bed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1153.964357] RAX: ffffffffffffffda RBX: 00007fb6c0340970 RCX: 00007fb6c02a9a04 [ 1153.965863] RDX: 0000000000000002 RSI: 00007fb6bd86c000 RDI: 00000000ffffff9c [ 1153.967397] RBP: 00007fb6bd86c000 R08: 0000000000000000 R09: ffffffffffffffff [ 1153.968905] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1153.970414] R13: 0000000000000004 R14: 0000000020000058 R15: 0000000000000001 [ 1153.971958] CPU: 1 PID: 8329 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1153.973433] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1153.975218] Call Trace: [ 1153.975784] dump_stack+0x107/0x167 [ 1153.976560] should_fail.cold+0x5/0xa [ 1153.977373] ? xas_alloc+0x336/0x440 [ 1153.978173] should_failslab+0x5/0x20 [ 1153.978995] kmem_cache_alloc+0x5b/0x310 [ 1153.979865] xas_alloc+0x336/0x440 [ 1153.980624] xas_create+0x34a/0x10d0 [ 1153.981395] ? kernel_text_address+0xf2/0x120 [ 1153.982349] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1153.983426] xas_store+0x8c/0x1c40 [ 1153.984187] __xa_store+0x164/0x2d0 [ 1153.984944] ? xa_delete_node+0x280/0x280 [ 1153.985823] ? trace_hardirqs_on+0x5b/0x180 [ 1153.986725] xa_store+0x31/0x50 [ 1153.987414] __io_uring_add_tctx_node+0x1cf/0x520 [ 1153.988438] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1153.989544] ? alloc_fd+0x2e7/0x670 [ 1153.990331] io_uring_setup+0x1fbb/0x2980 [ 1153.991233] ? __do_sys_io_uring_enter+0x1890/0x1890 08:21:21 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x8, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1153.992282] ? wait_for_completion_io+0x270/0x270 [ 1153.993568] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1153.994686] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1153.995799] do_syscall_64+0x33/0x40 [ 1153.996585] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1153.997673] RIP: 0033:0x7f466af67b19 [ 1153.998463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1154.002363] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1154.003988] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1154.005498] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1154.007042] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1154.008561] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1154.010059] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1154.150882] loop0: detected capacity change from 0 to 2048 [ 1154.159063] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:21:33 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 63) 08:21:33 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 18) 08:21:33 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 73) 08:21:33 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000700)={0x28, 0x2c, 0x1, 0x0, 0x0, {}, [@typed={0x14, 0x74, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, 0x28}}, 0x0) socket$netlink(0x10, 0x3, 0x1) [ 1166.385394] FAULT_INJECTION: forcing a failure. [ 1166.385394] name failslab, interval 1, probability 0, space 0, times 0 [ 1166.388353] CPU: 1 PID: 8346 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1166.390121] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1166.392266] Call Trace: [ 1166.392947] dump_stack+0x107/0x167 [ 1166.393535] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1166.393883] should_fail.cold+0x5/0xa [ 1166.393918] ? create_object.isra.0+0x3a/0xa30 [ 1166.397825] should_failslab+0x5/0x20 [ 1166.398806] kmem_cache_alloc+0x5b/0x310 [ 1166.399855] ? mark_held_locks+0x9e/0xe0 [ 1166.400899] create_object.isra.0+0x3a/0xa30 [ 1166.402029] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1166.403360] kmem_cache_alloc+0x159/0x310 [ 1166.404415] xas_alloc+0x336/0x440 [ 1166.405326] xas_create+0x34a/0x10d0 08:21:33 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x10, &(0x7f00000000c0)=0x7bb, 0x4) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:21:33 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvfrom$inet6(r0, &(0x7f0000000280)=""/213, 0xd5, 0x40012001, &(0x7f0000000240)={0xa, 0x4e24, 0x7, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000000c0)="acc3274bd481aded950a77ca9ab93108a3193d1e0f5e3e2d22df87c8f2fefa09", 0x20}], 0x1}, 0x10004061) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:21:33 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x11, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1166.406295] ? kernel_text_address+0xf2/0x120 08:21:33 executing program 6: sendmsg$FOU_CMD_DEL(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)={0x68, 0x0, 0x4, 0x70bd2b, 0x25dfdbfe, {}, [@FOU_ATTR_PEER_V6={0x14, 0x9, @dev={0xfe, 0x80, '\x00', 0xc}}, @FOU_ATTR_IPPROTO={0x5, 0x3, 0x89}, @FOU_ATTR_TYPE={0x5}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @loopback}, @FOU_ATTR_PEER_V4={0x8, 0x8, @loopback}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_AF={0x5}]}, 0x68}, 0x1, 0x0, 0x0, 0xc000}, 0x40001) syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1166.407672] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1166.409122] xas_store+0x8c/0x1c40 [ 1166.410065] __xa_store+0x164/0x2d0 [ 1166.411027] ? xa_delete_node+0x280/0x280 [ 1166.412112] ? trace_hardirqs_on+0x5b/0x180 [ 1166.413223] xa_store+0x31/0x50 [ 1166.414074] __io_uring_add_tctx_node+0x1cf/0x520 [ 1166.415350] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1166.416687] ? alloc_fd+0x2e7/0x670 [ 1166.417634] io_uring_setup+0x1fbb/0x2980 [ 1166.418703] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1166.420029] ? wait_for_completion_io+0x270/0x270 [ 1166.421289] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1166.422655] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1166.423999] do_syscall_64+0x33/0x40 [ 1166.424954] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1166.426263] RIP: 0033:0x7ffa83495b19 [ 1166.427225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1166.431972] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1166.433925] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1166.435762] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1166.437592] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1166.439438] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1166.441245] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1166.467681] FAULT_INJECTION: forcing a failure. [ 1166.467681] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1166.470385] CPU: 1 PID: 8356 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1166.471953] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1166.473843] Call Trace: [ 1166.474456] dump_stack+0x107/0x167 [ 1166.475299] should_fail.cold+0x5/0xa [ 1166.476175] strncpy_from_user+0x34/0x470 [ 1166.477126] getname_flags.part.0+0x95/0x4f0 [ 1166.478141] getname+0x8e/0xd0 [ 1166.478883] do_sys_openat2+0xf9/0x4d0 [ 1166.479803] ? build_open_flags+0x6f0/0x6f0 [ 1166.480791] ? rcu_read_lock_any_held+0x75/0xa0 [ 1166.481879] __x64_sys_openat+0x13f/0x1f0 [ 1166.482818] ? __ia32_sys_open+0x1c0/0x1c0 [ 1166.483814] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1166.485011] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1166.486207] do_syscall_64+0x33/0x40 [ 1166.487077] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1166.488264] RIP: 0033:0x7fb6c02a9a04 [ 1166.489129] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1166.493364] RSP: 002b:00007fb6bd86bed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1166.495138] RAX: ffffffffffffffda RBX: 00007fb6c0340970 RCX: 00007fb6c02a9a04 [ 1166.496797] RDX: 0000000000000002 RSI: 00007fb6bd86c000 RDI: 00000000ffffff9c 08:21:33 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x14, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1166.498456] RBP: 00007fb6bd86c000 R08: 0000000000000000 R09: ffffffffffffffff [ 1166.500245] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1166.501888] R13: 0000000000000004 R14: 0000000020000058 R15: 0000000000000001 [ 1166.505151] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1166.518507] FAULT_INJECTION: forcing a failure. [ 1166.518507] name failslab, interval 1, probability 0, space 0, times 0 [ 1166.521073] CPU: 1 PID: 8363 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1166.522626] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1166.524516] Call Trace: [ 1166.525116] dump_stack+0x107/0x167 [ 1166.525948] should_fail.cold+0x5/0xa [ 1166.526815] ? create_object.isra.0+0x3a/0xa30 [ 1166.527878] should_failslab+0x5/0x20 [ 1166.528745] kmem_cache_alloc+0x5b/0x310 [ 1166.529669] ? mark_held_locks+0x9e/0xe0 [ 1166.530602] create_object.isra.0+0x3a/0xa30 [ 1166.531606] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1166.532770] kmem_cache_alloc+0x159/0x310 [ 1166.533723] xas_alloc+0x336/0x440 [ 1166.534543] xas_create+0x34a/0x10d0 [ 1166.535409] ? kernel_text_address+0xf2/0x120 [ 1166.536431] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1166.537626] xas_store+0x8c/0x1c40 [ 1166.538451] __xa_store+0x164/0x2d0 [ 1166.539292] ? xa_delete_node+0x280/0x280 [ 1166.540246] ? trace_hardirqs_on+0x5b/0x180 [ 1166.541235] xa_store+0x31/0x50 [ 1166.541986] __io_uring_add_tctx_node+0x1cf/0x520 [ 1166.543095] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1166.544291] ? alloc_fd+0x2e7/0x670 [ 1166.545139] io_uring_setup+0x1fbb/0x2980 [ 1166.546089] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1166.547243] ? wait_for_completion_io+0x270/0x270 [ 1166.548345] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1166.549539] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1166.550725] do_syscall_64+0x33/0x40 [ 1166.551587] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1166.552759] RIP: 0033:0x7f466af67b19 [ 1166.553605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1166.557809] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1166.559542] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1166.561175] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1166.562799] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1166.564429] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1166.566055] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:21:48 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 74) 08:21:48 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 19) [ 1180.905050] FAULT_INJECTION: forcing a failure. [ 1180.905050] name failslab, interval 1, probability 0, space 0, times 0 [ 1180.907489] CPU: 1 PID: 8378 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1180.908941] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1180.910698] Call Trace: [ 1180.911266] dump_stack+0x107/0x167 [ 1180.912039] should_fail.cold+0x5/0xa [ 1180.912849] ? __alloc_file+0x21/0x320 [ 1180.913673] should_failslab+0x5/0x20 [ 1180.914478] kmem_cache_alloc+0x5b/0x310 [ 1180.915352] __alloc_file+0x21/0x320 [ 1180.916143] alloc_empty_file+0x6d/0x170 [ 1180.917009] path_openat+0xe6/0x2770 [ 1180.917800] ? __lock_acquire+0x1657/0x5b00 [ 1180.918722] ? path_lookupat+0x860/0x860 [ 1180.919591] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1180.920698] ? lock_acquire+0x197/0x470 [ 1180.921533] ? find_held_lock+0x2c/0x110 08:21:48 executing program 7: getsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x65, &(0x7f00000000c0), &(0x7f0000000100)=0x4) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:21:48 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x3c, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:21:48 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @mcast2}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:21:48 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) syz_emit_ethernet(0x2f, &(0x7f0000000040)={@local, @broadcast, @void, {@llc={0x4, {@llc={0xe, 0xd4, "b0", "2a33267e5b1edbff47f4592014dc5f6fa263bb85eea28d3a07bcdb8106fb"}}}}}, &(0x7f0000000100)={0x1, 0x4, [0xe44, 0xfbe, 0x3ad, 0x7a5]}) syz_emit_ethernet(0xdb, &(0x7f00000001c0)={@broadcast, @random="228fe2684f3d", @val={@void, {0x8100, 0x7, 0x0, 0x3}}, {@generic={0xa01, "727cf50439fcd8e067aab3097a0c9b6f2fd12a9d8829e7d01be8b7f3327a1629ec6af4d0815d7db7752f953ec4279e512b214e30816e6b2ca040802d0376503f4751f1a6b3d65545b0b335a5253947f0a4c347616e20c8ecc03f443941326107a977bb85a2eb52c1e6d175a1bd320eea142b1af5d78ad250ff9e5c9313bf41a776d1700a89cb1eddbdd6568c5fbcee210aefeef5768415bfbed97a9ebb3654048f413c40d3eefc042e7218ad9509519609e2d548033f4930ce77c7484993b12e394652d54d0e211cbb"}}}, &(0x7f0000000000)={0x1, 0x1, [0x2b4, 0x911, 0x209, 0xed0]}) 08:21:48 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 64) 08:21:48 executing program 5: r0 = syz_io_uring_setup(0x5e85, &(0x7f0000000180), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff}, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/fscaps', 0x0, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r6, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x2, 0x0, 0xffffffffffffffff, 0x0}, 0x48001) io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0) fcntl$dupfd(r4, 0x406, r3) r7 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000440)=0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0) dup3(r7, r7, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0) r10 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r7, 0x8000000) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r10, r9, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3, 0x0, @fd=r7, 0x0, 0x0, 0x0, 0x1, 0x1, {0x2, r11}}, 0x80000001) syz_io_uring_submit(r6, r2, &(0x7f0000000280)=@IORING_OP_STATX={0x15, 0x4, 0x0, r5, &(0x7f00000004c0), &(0x7f0000000240)='./file0\x00', 0x2, 0x0, 0x0, {0x0, r11}}, 0x3) [ 1180.922541] do_filp_open+0x190/0x3e0 [ 1180.923526] ? may_open_dev+0xf0/0xf0 [ 1180.924339] ? alloc_fd+0x2e7/0x670 [ 1180.925110] ? lock_downgrade+0x6d0/0x6d0 [ 1180.925976] ? do_raw_spin_lock+0x121/0x260 [ 1180.926026] FAULT_INJECTION: forcing a failure. [ 1180.926026] name failslab, interval 1, probability 0, space 0, times 0 [ 1180.926890] ? rwlock_bug.part.0+0x90/0x90 [ 1180.930103] ? _raw_spin_unlock+0x1a/0x30 [ 1180.930970] ? alloc_fd+0x2e7/0x670 [ 1180.931761] do_sys_openat2+0x171/0x4d0 [ 1180.932599] ? build_open_flags+0x6f0/0x6f0 [ 1180.933514] ? rcu_read_lock_any_held+0x75/0xa0 [ 1180.934496] __x64_sys_openat+0x13f/0x1f0 [ 1180.935380] ? __ia32_sys_open+0x1c0/0x1c0 [ 1180.936278] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1180.937377] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1180.938462] do_syscall_64+0x33/0x40 [ 1180.939256] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1180.940337] RIP: 0033:0x7fb6c02a9a04 [ 1180.941120] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1180.945011] RSP: 002b:00007fb6bd86bed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1180.946644] RAX: ffffffffffffffda RBX: 00007fb6c0340970 RCX: 00007fb6c02a9a04 [ 1180.948158] RDX: 0000000000000002 RSI: 00007fb6bd86c000 RDI: 00000000ffffff9c [ 1180.949663] RBP: 00007fb6bd86c000 R08: 0000000000000000 R09: ffffffffffffffff [ 1180.951177] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1180.952678] R13: 0000000000000004 R14: 0000000020000058 R15: 0000000000000001 [ 1180.954218] CPU: 0 PID: 8384 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1180.955686] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1180.957442] Call Trace: [ 1180.958005] dump_stack+0x107/0x167 [ 1180.958789] should_fail.cold+0x5/0xa [ 1180.959613] ? xas_alloc+0x336/0x440 [ 1180.960402] should_failslab+0x5/0x20 [ 1180.961208] kmem_cache_alloc+0x5b/0x310 [ 1180.962071] xas_alloc+0x336/0x440 [ 1180.962833] xas_create+0x34a/0x10d0 [ 1180.963637] ? kernel_text_address+0xf2/0x120 [ 1180.964592] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1180.965705] xas_store+0x8c/0x1c40 [ 1180.966042] FAULT_INJECTION: forcing a failure. [ 1180.966042] name failslab, interval 1, probability 0, space 0, times 0 [ 1180.966473] __xa_store+0x164/0x2d0 [ 1180.969549] ? xa_delete_node+0x280/0x280 [ 1180.970434] ? trace_hardirqs_on+0x5b/0x180 [ 1180.971388] xa_store+0x31/0x50 [ 1180.972094] __io_uring_add_tctx_node+0x1cf/0x520 [ 1180.973117] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1180.974220] ? alloc_fd+0x2e7/0x670 [ 1180.975001] io_uring_setup+0x1fbb/0x2980 [ 1180.975898] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1180.976960] ? wait_for_completion_io+0x270/0x270 [ 1180.978008] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1180.979118] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1180.980210] do_syscall_64+0x33/0x40 [ 1180.980995] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1180.982078] RIP: 0033:0x7f466af67b19 [ 1180.982860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1180.986765] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1180.988381] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1180.989888] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1180.991405] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1180.992908] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1180.994417] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1180.995956] CPU: 1 PID: 8387 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1180.997412] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1180.999172] Call Trace: [ 1180.999736] dump_stack+0x107/0x167 [ 1181.000512] should_fail.cold+0x5/0xa [ 1181.001313] ? xas_alloc+0x336/0x440 [ 1181.002106] should_failslab+0x5/0x20 [ 1181.002913] kmem_cache_alloc+0x5b/0x310 [ 1181.003785] xas_alloc+0x336/0x440 [ 1181.004532] xas_create+0x34a/0x10d0 [ 1181.005320] ? kernel_text_address+0xf2/0x120 [ 1181.006265] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1181.007379] xas_store+0x8c/0x1c40 [ 1181.008141] __xa_store+0x164/0x2d0 [ 1181.008911] ? xa_delete_node+0x280/0x280 [ 1181.009789] ? trace_hardirqs_on+0x5b/0x180 [ 1181.010713] xa_store+0x31/0x50 [ 1181.011421] __io_uring_add_tctx_node+0x1cf/0x520 [ 1181.012439] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1181.013548] ? alloc_fd+0x2e7/0x670 [ 1181.014335] io_uring_setup+0x1fbb/0x2980 [ 1181.015235] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1181.016310] ? wait_for_completion_io+0x270/0x270 [ 1181.017344] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1181.018449] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1181.019553] do_syscall_64+0x33/0x40 [ 1181.020347] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1181.021430] RIP: 0033:0x7ffa83495b19 [ 1181.022218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1181.026122] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1181.027755] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1181.029268] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1181.030773] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1181.032284] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1181.033786] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:21:48 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x60, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:21:48 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x400, @private0}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r1 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r1, 0x1, 0x0) setsockopt$inet6_opts(r1, 0x29, 0x37, &(0x7f0000000100)=@hopopts={0x5c, 0x7, '\x00', [@hao={0xc9, 0x10, @rand_addr=' \x01\x00'}, @enc_lim={0x4, 0x1, 0x57}, @pad1, @calipso={0x7, 0x20, {0x1, 0x6, 0x6, 0x4, [0x401, 0x80000001, 0x20]}}]}, 0x48) 08:21:48 executing program 6: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) ioctl$BTRFS_IOC_LOGICAL_INO_V2(r0, 0xc038943b, &(0x7f0000000240)={0x9, 0x20, '\x00', 0x1, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0]}) syz_emit_ethernet(0x46, &(0x7f0000000000)={@local, @dev, @void, {@ipv4={0x800, @icmp={{0xc, 0x4, 0x1, 0xf, 0x38, 0x64, 0x0, 0xf7, 0x1, 0x0, @rand_addr=0x64010100, @rand_addr=0x64010102, {[@timestamp={0x44, 0x18, 0x46, 0x0, 0x9, [0x8000, 0x101, 0x7f, 0x9, 0x8]}, @rr={0x7, 0x3, 0xe3}]}}, @address_request={0x11, 0x0, 0x0, 0x8}}}}}, 0x0) syz_emit_ethernet(0xf7, &(0x7f0000000080)={@multicast, @remote, @val={@void, {0x8100, 0x5, 0x0, 0x4}}, {@llc_tr={0x11, {@llc={0x30, 0x1, 'r', "49fcad7b585956eeff05cc7aa5fb8d5dde84b32425d8a6145990c5c44b30fcd59b7a4065875b6a5ecd64c7fdf93a6aefd460e09ee43c17b7dc69f7ea791b69fb611182446462f575f92ba9d4b18a42e0bc3e9854a71b7554405e645eee2fc7589a8af079ed3ed67eadfa4776dcad333731768e7347fa604ba215b6c8187029e2bafcfbb78ea7a79dbf8c4e20e44b6313bcd9332d978f63ee3b473a8325a1215e407a52b0bcddd0880761fa18a6a3ce702f8a5abded71fd699b98b99fdb818accf41f4ba02c0cd0403419061b795e0a3089e0e3d300aacafcec9ec7201d1514cc54fc"}}}}}, &(0x7f0000000180)={0x0, 0x4, [0xce6, 0xf75, 0x90c, 0xff4]}) 08:21:48 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e24, 0x1, @remote, 0x8}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) r1 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000100)=0x1) open$dir(0x0, 0x0, 0x0) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r4, 0x0, 0x0}, 0x0) sendmsg$inet(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000180)="88a2d1f4e469f352fee5351a5ecf3f86e4ed80", 0x13}, {&(0x7f0000000200)="72ccd129cc9962e49b17ce064738f2a2d4659405bbfe972b8127d344987846f1ec615ea4b4f46cccd40a9298482fb84b8f638b609d70a57d0736154ed2f3e6f2ccc17bbaebb09251c4bdd6a3cf2de602cf3db9e900ba7e42ba786dedb15b03d91d91c727ddcdb9c7f4f66baa0f1da367ec046980abad24f865bef07cf2ac1208529578a2760c5517dbacab74a737a7f503bb8dc001e54cad1d7724a37afa92f07b9126733b1ab884b0c2c21a161fd04d09dd5033e165d814739fbf82c3caf486d5442d25fac44747750631b4b9811c0979afb48bf0c101d3adcbd73d4a68273ee8b961c3505d96fc679b8232d7a7884fdea165c00e", 0xf5}, {&(0x7f0000000300)="3062cf5f4b26953f371005e62f7e4aa67fcb969db253deb5fb65cc438ad11f4c1531091282484e9541ac0a644c49087e622c4e699ecf27e1674bc2669fa1572c1bc505a4626d6740f61714acbe9fe8ac6d96841c6023ccbab7a6d2d828515a4664a8d1d3d2f54794384b30f9705e82f7119d3127e3", 0x75}, {&(0x7f0000000380)="2f99e610d28cbc80e404e90d4a95d2f3a7ef410e9c5da8fd14110652a6a1b16256fa718dac2beb23779f24b90462ea64df6e77ad65c6a39b0889f69258cf0df9", 0x40}, {&(0x7f00000003c0)='{', 0x1}, {&(0x7f0000000400)="d0aba4bb7226cd5d7bb01168bf5d48610cced7761e394b1ba7298873bec9fc633b455e48cbf2410adf0fb0081309533a3cf08a85ffb74307d17375f33c310485ea120baa75e508b50636c790a3322c0997c325dc178352ef979cfd6540a241d6b8601927f5", 0x65}, {&(0x7f0000000580)="8f93b12b523c367322e20c269a57e41299d57280386c22e1d9b7f5dbd6228d22d1e4817b51026fabc93fa467d79946d75b92f5fd4ac71c6e27325184050f81183e8789cf9f728b35f55d33ae190bc5971bfacd51ecf70889031ee4e1caa029bbeaa28e3e9b053e58918a769d313c03e161573350df7f41dab0332960d9458d937e24d1b55c3e3e7dafe14d42f4e6ea64baa198587768e4095d147576a7ed5ba82a8b5844de488dbd5ac7174eca8fc9354a801a91136d8240c6cbbf5368ca4b546e3da22ae9ca1f143ee7f1d3ef039a370d9a9c", 0xd3}, {&(0x7f0000000700)="560158b3142dfffa4934836399e92f57ea8836add426c095b556bee487fa71080a417d3683a79fe178d9c5dbc9235f05e9894cbe92cee07746ce4d3f483d1b133d0a20edba4971037f22fb523636d095031f49753a27b37eabdc017349428a130fe4dc2b0f04b2fe2f860f6c98db2cc811c3edf2c9ef3758ee3614a453cd5a7092d84b27674630625a5bd8c804329d35ff87ec2f6d4e7f99c70b223564f5de3c5d6a7456901bff9fa443d8796cdf0e7e67ee4846b846c0fc11474b24f7aadead9884e257b32115e92e7e9d06d292c8d6eadb1afa469d5a72ec9cd8c47169166b050ea25eb024986061bddc39c2282e70157f54d8d111fa0a7b", 0xf9}, {&(0x7f0000000480)="ae2fd715b5428bdd0caad751eefe167c124ad6d09cf20ae1a9a686cf0743c5a06415bd25bcba34da68474c8df33107d04c4657b96a160f54aca1e1ebfd1f024d4f87ed5c6824ceaa065dc0218126ddfd475b476e4e79faab73b901b50a519571467368d41aed31541f", 0x69}, {&(0x7f0000000800)="33b113c803ed74b61ca6a80108278805edc6230cd1d87d6e9eca230719be1afc2c7ecac5cfa60990e3b4ba574e019d1574f4304b483d9ec017d93fe20b44710cbc99efa4b0b6f84ee826aa19be67b54677ffd6cd76b7a62bec8e219acbbe55411550ced5f4961d69e38de21506cc2cda8049796b57be89d160eefaffdb103d842dd63e66030c6f55c4969818fce2609c41c3150f8aa1a7704bc5b37e38aa56879ef9d27c1e0a6d15926524d9200091c1b6a8a0afd48ab2bad9f90680", 0xbc}], 0xa, &(0x7f0000000980)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @rand_addr=0x64010102, @remote}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_ttl={{0x14, 0x0, 0x2, 0x7}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x80}}, @ip_ttl={{0x14, 0x0, 0x2, 0xec54}}, @ip_retopts={{0x2c, 0x0, 0x7, {[@generic={0x83, 0x4, 'zm'}, @lsrr={0x83, 0x7, 0x86, [@empty]}, @generic={0x88, 0x11, "519a067adf46c313f2959ac274f67e"}]}}}], 0xb0}, 0x5) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:21:48 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) syz_emit_ethernet(0x5a, &(0x7f0000000000)={@broadcast, @remote, @val={@void, {0x8100, 0x3}}, {@canfd={0xd, {{0x2, 0x0, 0x0, 0x1}, 0xd, 0x0, 0x0, 0x0, "6c5fd2cab64995ea0763a2903a18ab3dd11fa695e6d99d8252e7cb8ad0a6b172783f221873c26e7140eac61ddd221d4fea2baeda012d9db368860b4f55a7b0d9"}}}}, &(0x7f0000000100)={0x1, 0x2, [0x120, 0x34c, 0xcc5, 0xa2d]}) syz_emit_ethernet(0x80, &(0x7f0000000140)={@remote, @multicast, @void, {@llc_tr={0x11, {@llc={0xfc, 0xf0, "03", "92d37ec1671c83902d23125329d6b501844126266deb0233c6c1356c965fd9ee40837f9b0c8b5f5dd785d728789188a63754506b31343050e04609c1bd3e1ac1ede7f3ca480aeb46960e2be8650c62d489c4b6f943a882273e0762c339b26fb58579853cd87efd0fe7e9e4010bac1f"}}}}}, &(0x7f00000001c0)={0x1, 0x1, [0xb7e, 0x15c, 0xe33, 0xda1]}) mlock2(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0) 08:21:48 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0xff, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:21:48 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:21:48 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 20) [ 1181.271166] FAULT_INJECTION: forcing a failure. [ 1181.271166] name failslab, interval 1, probability 0, space 0, times 0 [ 1181.273577] CPU: 0 PID: 8421 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1181.275014] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1181.276773] Call Trace: [ 1181.277342] dump_stack+0x107/0x167 [ 1181.278108] should_fail.cold+0x5/0xa [ 1181.278910] ? __alloc_file+0x21/0x320 [ 1181.279742] should_failslab+0x5/0x20 [ 1181.280545] kmem_cache_alloc+0x5b/0x310 [ 1181.281398] __alloc_file+0x21/0x320 [ 1181.282179] alloc_empty_file+0x6d/0x170 [ 1181.283030] path_openat+0xe6/0x2770 [ 1181.283830] ? __lock_acquire+0x1657/0x5b00 [ 1181.284742] ? path_lookupat+0x860/0x860 [ 1181.285595] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1181.286695] ? lock_acquire+0x197/0x470 [ 1181.287539] ? find_held_lock+0x2c/0x110 [ 1181.288403] do_filp_open+0x190/0x3e0 [ 1181.289199] ? may_open_dev+0xf0/0xf0 [ 1181.289999] ? alloc_fd+0x2e7/0x670 [ 1181.290764] ? lock_downgrade+0x6d0/0x6d0 [ 1181.291647] ? do_raw_spin_lock+0x121/0x260 [ 1181.292548] ? rwlock_bug.part.0+0x90/0x90 [ 1181.293454] ? _raw_spin_unlock+0x1a/0x30 [ 1181.294328] ? alloc_fd+0x2e7/0x670 [ 1181.295120] do_sys_openat2+0x171/0x4d0 [ 1181.295973] ? build_open_flags+0x6f0/0x6f0 [ 1181.296895] ? rcu_read_lock_any_held+0x75/0xa0 [ 1181.297886] __x64_sys_openat+0x13f/0x1f0 [ 1181.298764] ? __ia32_sys_open+0x1c0/0x1c0 [ 1181.299675] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1181.300796] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1181.301881] do_syscall_64+0x33/0x40 [ 1181.302674] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1181.303763] RIP: 0033:0x7fb6c02a9a04 [ 1181.304556] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1181.308486] RSP: 002b:00007fb6bd86bed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1181.310092] RAX: ffffffffffffffda RBX: 00007fb6c0340970 RCX: 00007fb6c02a9a04 [ 1181.311611] RDX: 0000000000000002 RSI: 00007fb6bd86c000 RDI: 00000000ffffff9c [ 1181.313109] RBP: 00007fb6bd86c000 R08: 0000000000000000 R09: ffffffffffffffff [ 1181.314612] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1181.316134] R13: 0000000000000004 R14: 0000000020000058 R15: 0000000000000001 08:22:00 executing program 5: ftruncate(0xffffffffffffffff, 0x0) statx(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x400, 0x800, &(0x7f0000000980)) lstat(&(0x7f0000000780)='./file1\x00', &(0x7f00000007c0)) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000004c0)={{{@in, @in6=@mcast2}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, &(0x7f0000000040)=0xe8) io_cancel(0x0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x3, 0x35f7, 0xffffffffffffffff, &(0x7f0000000280)="1491149fe66b5d7095f91dffd89023eaa6ef0e501ba63599b761651300c946b9139133b909423cc45c82f44c6a55815a49a8b1455952a82b3d97b5fdaff4704bb46248cbb32d83b5b1b0217289053d0a62c464d127e4e60cf7f6bb49527a0cf6121d2b0de255a37e391573aac06fa798d1c882c0573a6b8bdd47d33ea6ab48ad30e329828c5bf06ef51c3b61299ec7ec4b99433bc83f8d1c7b6d05ef76006cee07dd5a4581bb53421a323604f372656a25c45369", 0xb4, 0x7}, &(0x7f0000000380)) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x20002, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) close(r1) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, 0x0) dup(r0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r2, 0x4c00, 0x0) ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f0000000040)={0x0, {}, 0x0, {}, 0x0, 0x14, 0x0, 0x0, "9d1ac25c64b02d4a18264506c92984a6e84a77b5ce77a2ea76519bfd3e643adf85f79fb000e953ef7008d52f94af2d1013daf9d5d04f5ff427a04b05abddfe57", "0dcdbee4005c3040c7605513cab5ffcdada2a48f90a15548b5b17c73f63656dd"}) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$KDGETKEYCODE(0xffffffffffffffff, 0x4b4c, &(0x7f00000005c0)={0x400, 0x1}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000180)=ANY=[@ANYBLOB="51ba18000000000c261f022acaa4fdfef55b3df66d6f4d88", @ANYRES32=r3, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file1\x00']) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="b8cb00124000000000465ced27a5260500000000000000009f8d27bfef119ca38179ec3c2d1d8ea072"], 0x14}}, 0x0) perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x9, 0x85089, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x6, 0x0, 0x0, 0x0, 0x800000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}}, 0x20040000) 08:22:00 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) syz_emit_ethernet(0xbe, &(0x7f0000000100)={@remote, @local, @void, {@ipv6={0x86dd, @generic={0x2, 0x6, "78836f", 0x88, 0x21, 0xff, @rand_addr=' \x01\x00', @private1, {[@fragment={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x66}, @fragment={0x2f, 0x0, 0x3f, 0x1, 0x0, 0x5, 0x67}, @dstopts={0x89, 0x3, '\x00', [@pad1, @hao={0xc9, 0x10, @mcast2}, @enc_lim, @enc_lim={0x4, 0x1, 0x9}]}, @hopopts={0x71, 0x3, '\x00', [@ra, @pad1, @generic={0x4a, 0xa, "2d78f8b5dab2009a0b9a"}, @pad1, @pad1, @pad1, @enc_lim={0x4, 0x1, 0x80}]}], "62ee0f45b1482a7a25452e20de2ac1d1d42cde4e9864852bb44850db00e51e7a776c8978aa95d10c"}}}}}, &(0x7f0000000000)={0x1, 0x2, [0xd19, 0x4f1, 0x471, 0x17d]}) 08:22:00 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 21) 08:22:00 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) getsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0xa, &(0x7f0000000180), &(0x7f00000001c0)=0x4) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000000c0)="cf88b5d5fa3561cb79bd2403eaba469b04a274a0c0041d387046678219d2a1df604e7909bec21ce9be0c39e63ac90732c452b91d7166e4cc866b6ea8a37fb8eeda81ea8902174478290000000000000000b54a5b372f7d9df5f38958ff1d674e5baa047e50f7400600000000000000bf38ed2934fb8104df193d81ef98200f5ee91ec9af72429d0000000000000000", 0x8f}], 0x1}, 0x10044001) r1 = socket$inet6(0xa, 0xa, 0x20) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000280)={'syztnl2\x00', 0x0, 0x4, 0x8, 0x9f, 0xffffffff, 0x6e, @private1={0xfc, 0x1, '\x00', 0x1}, @local, 0x8000, 0x80, 0x8b6}}) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r4, 0x0, 0x0}, 0x0) ioctl$EXT4_IOC_MIGRATE(r4, 0x6609) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:22:00 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 65) 08:22:00 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x4, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:22:00 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000000c0)={{{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @in6=@private2, 0x4e24, 0x0, 0x4e22, 0x4, 0x2, 0x60, 0x40, 0x38, 0x0, 0xee01}, {0x800, 0xc8, 0x80000000, 0x3e1, 0x9, 0xe8, 0x0, 0x1}, {0x20, 0x800, 0x0, 0x6}, 0x401, 0x0, 0x2, 0x1, 0x1, 0x1}, {{@in6=@empty, 0x4d2, 0x2b}, 0x2, @in=@rand_addr=0x64010102, 0x3502, 0x0, 0x0, 0x4, 0x0, 0x8, 0x5}}, 0xe8) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r3, 0x6, 0x21, &(0x7f0000000200)="9c8ab40b140d19758230a80e4967b71b", 0x10) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:22:00 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 75) [ 1193.474479] FAULT_INJECTION: forcing a failure. [ 1193.474479] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.477440] CPU: 1 PID: 8436 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1193.479198] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.481336] Call Trace: [ 1193.482013] dump_stack+0x107/0x167 [ 1193.482953] should_fail.cold+0x5/0xa [ 1193.483939] ? security_file_alloc+0x34/0x170 [ 1193.485090] should_failslab+0x5/0x20 [ 1193.486065] kmem_cache_alloc+0x5b/0x310 [ 1193.487108] security_file_alloc+0x34/0x170 [ 1193.488224] __alloc_file+0xb7/0x320 [ 1193.489178] alloc_empty_file+0x6d/0x170 [ 1193.490221] path_openat+0xe6/0x2770 [ 1193.491172] ? __lock_acquire+0x1657/0x5b00 [ 1193.492293] ? path_lookupat+0x860/0x860 [ 1193.493333] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.494672] ? lock_acquire+0x197/0x470 [ 1193.495695] ? find_held_lock+0x2c/0x110 [ 1193.496747] do_filp_open+0x190/0x3e0 [ 1193.497720] ? may_open_dev+0xf0/0xf0 [ 1193.498696] ? alloc_fd+0x2e7/0x670 [ 1193.499642] ? lock_downgrade+0x6d0/0x6d0 [ 1193.500698] ? do_raw_spin_lock+0x121/0x260 [ 1193.501799] ? rwlock_bug.part.0+0x90/0x90 [ 1193.502892] ? _raw_spin_unlock+0x1a/0x30 [ 1193.503968] ? alloc_fd+0x2e7/0x670 [ 1193.504914] do_sys_openat2+0x171/0x4d0 [ 1193.505936] ? build_open_flags+0x6f0/0x6f0 [ 1193.507052] ? rcu_read_lock_any_held+0x75/0xa0 [ 1193.508266] __x64_sys_openat+0x13f/0x1f0 [ 1193.509333] ? __ia32_sys_open+0x1c0/0x1c0 [ 1193.510424] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1193.511778] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1193.513099] do_syscall_64+0x33/0x40 [ 1193.514057] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1193.515375] RIP: 0033:0x7fb6c02a9a04 [ 1193.516328] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1193.520972] RSP: 002b:00007fb6bd86bed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1193.522690] RAX: ffffffffffffffda RBX: 00007fb6c0340970 RCX: 00007fb6c02a9a04 [ 1193.524310] RDX: 0000000000000002 RSI: 00007fb6bd86c000 RDI: 00000000ffffff9c [ 1193.525916] RBP: 00007fb6bd86c000 R08: 0000000000000000 R09: ffffffffffffffff [ 1193.526388] FAULT_INJECTION: forcing a failure. [ 1193.526388] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.527526] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1193.527538] R13: 0000000000000004 R14: 0000000020000058 R15: 0000000000000001 [ 1193.530514] CPU: 0 PID: 8443 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1193.531310] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.532268] Call Trace: [ 1193.532577] dump_stack+0x107/0x167 [ 1193.532995] should_fail.cold+0x5/0xa [ 1193.533438] ? xas_alloc+0x336/0x440 [ 1193.533865] should_failslab+0x5/0x20 [ 1193.534300] kmem_cache_alloc+0x5b/0x310 [ 1193.534770] xas_alloc+0x336/0x440 [ 1193.535178] xas_create+0x34a/0x10d0 [ 1193.535623] ? kernel_text_address+0xf2/0x120 [ 1193.536136] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.536736] xas_store+0x8c/0x1c40 [ 1193.537148] __xa_store+0x164/0x2d0 [ 1193.537567] ? xa_delete_node+0x280/0x280 [ 1193.538044] ? trace_hardirqs_on+0x5b/0x180 [ 1193.538543] xa_store+0x31/0x50 [ 1193.538923] __io_uring_add_tctx_node+0x1cf/0x520 [ 1193.539484] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1193.540087] ? alloc_fd+0x2e7/0x670 [ 1193.540513] io_uring_setup+0x1fbb/0x2980 [ 1193.540991] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1193.541572] ? wait_for_completion_io+0x270/0x270 [ 1193.542137] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1193.542736] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1193.543333] do_syscall_64+0x33/0x40 [ 1193.543759] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1193.544343] RIP: 0033:0x7f466af67b19 [ 1193.544769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1193.546875] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1193.547756] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1193.548576] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1193.548773] FAULT_INJECTION: forcing a failure. [ 1193.548773] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.549389] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 08:22:00 executing program 2: r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) [ 1193.549396] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1193.549402] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1193.557174] CPU: 1 PID: 8448 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1193.558724] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.560611] Call Trace: [ 1193.561212] dump_stack+0x107/0x167 [ 1193.562042] should_fail.cold+0x5/0xa [ 1193.562908] ? create_object.isra.0+0x3a/0xa30 [ 1193.563950] should_failslab+0x5/0x20 [ 1193.564809] kmem_cache_alloc+0x5b/0x310 [ 1193.565726] ? mark_held_locks+0x9e/0xe0 [ 1193.566652] create_object.isra.0+0x3a/0xa30 [ 1193.567657] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1193.568814] kmem_cache_alloc+0x159/0x310 [ 1193.569774] xas_alloc+0x336/0x440 [ 1193.570593] xas_create+0x34a/0x10d0 [ 1193.571456] ? kernel_text_address+0xf2/0x120 [ 1193.572468] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.573652] xas_store+0x8c/0x1c40 [ 1193.574473] __xa_store+0x164/0x2d0 [ 1193.575306] ? xa_delete_node+0x280/0x280 [ 1193.576254] ? trace_hardirqs_on+0x5b/0x180 [ 1193.577242] xa_store+0x31/0x50 [ 1193.577998] __io_uring_add_tctx_node+0x1cf/0x520 [ 1193.579092] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1193.580286] ? alloc_fd+0x2e7/0x670 [ 1193.581124] io_uring_setup+0x1fbb/0x2980 [ 1193.582073] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1193.583213] ? wait_for_completion_io+0x270/0x270 [ 1193.584344] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1193.585536] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1193.586708] do_syscall_64+0x33/0x40 [ 1193.587564] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1193.588718] RIP: 0033:0x7ffa83495b19 [ 1193.589563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1193.593739] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1193.595481] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1193.597090] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1193.598699] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1193.600328] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1193.601937] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:22:00 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 76) 08:22:01 executing program 6: ioctl$sock_inet_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f0000000000)) syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1193.638168] FAULT_INJECTION: forcing a failure. [ 1193.638168] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.639510] CPU: 0 PID: 8454 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1193.640300] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.641250] Call Trace: [ 1193.641558] dump_stack+0x107/0x167 [ 1193.641982] should_fail.cold+0x5/0xa [ 1193.642418] ? xas_alloc+0x336/0x440 [ 1193.642846] should_failslab+0x5/0x20 [ 1193.643295] kmem_cache_alloc+0x5b/0x310 [ 1193.643764] xas_alloc+0x336/0x440 [ 1193.644178] xas_create+0x34a/0x10d0 [ 1193.644615] ? queued_spin_lock_slowpath+0xcc/0x8c0 [ 1193.645196] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.645804] xas_store+0x8c/0x1c40 [ 1193.646221] __xa_store+0x164/0x2d0 [ 1193.646640] ? xa_delete_node+0x280/0x280 [ 1193.647117] ? trace_hardirqs_on+0x5b/0x180 [ 1193.647622] xa_store+0x31/0x50 [ 1193.648000] __io_uring_add_tctx_node+0x1cf/0x520 [ 1193.648556] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1193.649157] ? alloc_fd+0x2e7/0x670 [ 1193.649579] io_uring_setup+0x1fbb/0x2980 [ 1193.650063] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1193.650645] ? wait_for_completion_io+0x270/0x270 [ 1193.651211] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1193.651828] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1193.652424] do_syscall_64+0x33/0x40 [ 1193.652852] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1193.653440] RIP: 0033:0x7f466af67b19 [ 1193.653870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1193.655995] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1193.656872] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1193.657692] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1193.658514] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1193.659342] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1193.660157] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:22:01 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x11, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:22:01 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 66) 08:22:01 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:22:01 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 22) [ 1193.747400] FAULT_INJECTION: forcing a failure. [ 1193.747400] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.750192] CPU: 1 PID: 8470 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1193.751763] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.753638] Call Trace: [ 1193.754248] dump_stack+0x107/0x167 [ 1193.755085] should_fail.cold+0x5/0xa [ 1193.755954] ? create_object.isra.0+0x3a/0xa30 [ 1193.756978] should_failslab+0x5/0x20 [ 1193.757829] kmem_cache_alloc+0x5b/0x310 [ 1193.758735] ? mark_held_locks+0x9e/0xe0 [ 1193.759658] create_object.isra.0+0x3a/0xa30 [ 1193.760646] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1193.761783] kmem_cache_alloc+0x159/0x310 [ 1193.762718] xas_alloc+0x336/0x440 [ 1193.763527] xas_create+0x34a/0x10d0 [ 1193.764368] ? kernel_text_address+0xf2/0x120 [ 1193.765377] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.766550] xas_store+0x8c/0x1c40 [ 1193.767374] __xa_store+0x164/0x2d0 [ 1193.768188] ? xa_delete_node+0x280/0x280 [ 1193.769125] ? trace_hardirqs_on+0x5b/0x180 [ 1193.770096] xa_store+0x31/0x50 [ 1193.770840] __io_uring_add_tctx_node+0x1cf/0x520 [ 1193.771928] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1193.773109] ? alloc_fd+0x2e7/0x670 [ 1193.773939] io_uring_setup+0x1fbb/0x2980 [ 1193.774875] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1193.776022] ? wait_for_completion_io+0x270/0x270 08:22:01 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1000000000000329}, 0x10044001) [ 1193.777228] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1193.778432] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1193.779597] do_syscall_64+0x33/0x40 [ 1193.780445] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1193.781590] RIP: 0033:0x7ffa83495b19 [ 1193.782429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 08:22:01 executing program 5: r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0x93b}, 0x0, 0x0, 0x0, 0x0, 0x1, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000800)=ANY=[]) r1 = socket$netlink(0x10, 0x3, 0x0) fallocate(r0, 0x30, 0xffffffffffffff75, 0x10001) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="24000000104000eb0000000000bba5d872000ee28d2c09000500001f000000"], 0x24}}, 0x0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x301000, 0x0) r3 = openat(r2, &(0x7f0000000400)='./file1\x00', 0x0, 0x4) read(0xffffffffffffffff, &(0x7f00000006c0)=""/135, 0x87) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x2}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8005, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x823, 0x4, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000880)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46800) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r2, &(0x7f0000000800)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000600)={&(0x7f0000000980)=ANY=[@ANYBLOB="66dd3beb755976e92eeb27f7dd5ab846ef1a597c1c83c096772d5c876e642114ef7a2ee306f06ad991a9fef3937b89c55330020e968b6e86ed821a3d48f6b51a3260fd8e8baa4808525fa372641ce525758562baf640f480c0c440cf86cd329176dac4eabfeb1d4408b028424b889aae5591c1663b00005a", @ANYRES16=0x0, @ANYBLOB="000825fccbdf25035301000000050001000000000000", @ANYRES32, @ANYRESOCT], 0x1c}, 0x1, 0x0, 0x0, 0x4001}, 0x240041c0) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x20000001}, 0xc, &(0x7f0000000640)={&(0x7f0000000200)=ANY=[@ANYRESDEC=r4, @ANYRES16=0x0, @ANYBLOB="010028bd7000fadbdf25010000000c000300fdffffffffffffff080001000000000008000100000000000c00030001000080000000000c0005000b000000000000000c0003000900000000000000"], 0x54}, 0x1, 0x0, 0x0, 0x91}, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f00000002c0)=""/184, 0xb8}, {&(0x7f0000000a40)=""/4096, 0x1000}, {&(0x7f0000000500)=""/114, 0x72}], 0x3, 0x16, 0x4) dup3(r3, 0xffffffffffffffff, 0x80000) fallocate(0xffffffffffffffff, 0x43, 0x2, 0x10000000fdfffffd) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) [ 1193.786545] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1193.788315] FAULT_INJECTION: forcing a failure. [ 1193.788315] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.788661] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1193.788681] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1193.793236] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1193.794715] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1193.796216] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1193.797693] CPU: 0 PID: 8475 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1193.798481] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.799436] Call Trace: [ 1193.799737] dump_stack+0x107/0x167 [ 1193.800159] should_fail.cold+0x5/0xa [ 1193.800589] ? create_object.isra.0+0x3a/0xa30 [ 1193.801104] should_failslab+0x5/0x20 [ 1193.801550] kmem_cache_alloc+0x5b/0x310 [ 1193.802013] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1193.802645] create_object.isra.0+0x3a/0xa30 [ 1193.803149] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1193.803729] kmem_cache_alloc+0x159/0x310 [ 1193.804210] security_file_alloc+0x34/0x170 [ 1193.804701] __alloc_file+0xb7/0x320 [ 1193.805123] alloc_empty_file+0x6d/0x170 [ 1193.805582] path_openat+0xe6/0x2770 [ 1193.806011] ? __lock_acquire+0x1657/0x5b00 [ 1193.806504] ? path_lookupat+0x860/0x860 [ 1193.806965] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.807578] ? lock_acquire+0x197/0x470 [ 1193.808029] ? find_held_lock+0x2c/0x110 [ 1193.808506] do_filp_open+0x190/0x3e0 [ 1193.808938] ? may_open_dev+0xf0/0xf0 [ 1193.809375] ? alloc_fd+0x2e7/0x670 [ 1193.809793] ? lock_downgrade+0x6d0/0x6d0 [ 1193.810267] ? do_raw_spin_lock+0x121/0x260 [ 1193.810759] ? rwlock_bug.part.0+0x90/0x90 [ 1193.811255] ? _raw_spin_unlock+0x1a/0x30 [ 1193.811743] ? alloc_fd+0x2e7/0x670 [ 1193.812161] do_sys_openat2+0x171/0x4d0 [ 1193.812612] ? build_open_flags+0x6f0/0x6f0 [ 1193.813106] ? rcu_read_lock_any_held+0x75/0xa0 [ 1193.813631] __x64_sys_openat+0x13f/0x1f0 [ 1193.814103] ? __ia32_sys_open+0x1c0/0x1c0 [ 1193.814582] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1193.815178] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1193.815785] do_syscall_64+0x33/0x40 [ 1193.816211] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1193.816799] RIP: 0033:0x7fb6c02a9a04 [ 1193.817227] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1193.819351] RSP: 002b:00007fb6bd86bed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1193.820213] RAX: ffffffffffffffda RBX: 00007fb6c0340970 RCX: 00007fb6c02a9a04 [ 1193.821023] RDX: 0000000000000002 RSI: 00007fb6bd86c000 RDI: 00000000ffffff9c [ 1193.821828] RBP: 00007fb6bd86c000 R08: 0000000000000000 R09: ffffffffffffffff [ 1193.822636] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1193.823453] R13: 0000000000000004 R14: 0000000020000058 R15: 0000000000000001 08:22:01 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvfrom$inet6(r0, &(0x7f00000000c0)=""/173, 0xad, 0x40002020, &(0x7f0000000180)={0xa, 0x4e22, 0x6, @private0={0xfc, 0x0, '\x00', 0x1}, 0xaee}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:22:01 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev={0xac, 0x14, 0x14, 0xff}}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x8}}}}}}, 0x0) 08:22:01 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 77) [ 1193.877863] FAULT_INJECTION: forcing a failure. [ 1193.877863] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.879204] CPU: 0 PID: 8485 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1193.880020] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.881031] Call Trace: [ 1193.881358] dump_stack+0x107/0x167 [ 1193.881782] should_fail.cold+0x5/0xa [ 1193.882234] ? create_object.isra.0+0x3a/0xa30 [ 1193.882756] should_failslab+0x5/0x20 [ 1193.883199] kmem_cache_alloc+0x5b/0x310 [ 1193.883678] ? mark_held_locks+0x9e/0xe0 [ 1193.884157] create_object.isra.0+0x3a/0xa30 [ 1193.884671] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1193.885260] kmem_cache_alloc+0x159/0x310 [ 1193.885746] xas_alloc+0x336/0x440 [ 1193.886158] xas_create+0x34a/0x10d0 [ 1193.886590] ? kernel_text_address+0xf2/0x120 [ 1193.887110] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.887718] xas_store+0x8c/0x1c40 [ 1193.888138] __xa_store+0x164/0x2d0 [ 1193.888576] ? xa_delete_node+0x280/0x280 [ 1193.889097] ? trace_hardirqs_on+0x5b/0x180 [ 1193.889319] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=16400 sclass=netlink_route_socket pid=8487 comm=syz-executor.5 [ 1193.889608] xa_store+0x31/0x50 [ 1193.889623] __io_uring_add_tctx_node+0x1cf/0x520 [ 1193.889643] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1193.893764] ? alloc_fd+0x2e7/0x670 [ 1193.894191] io_uring_setup+0x1fbb/0x2980 [ 1193.894671] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1193.895263] ? wait_for_completion_io+0x270/0x270 [ 1193.895830] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1193.896441] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1193.897039] do_syscall_64+0x33/0x40 [ 1193.897468] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1193.898058] RIP: 0033:0x7f466af67b19 [ 1193.898489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1193.900611] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1193.901495] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1193.902321] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1193.903148] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1193.903976] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1193.904804] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:22:01 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r0, &(0x7f0000000500)={&(0x7f0000000140)={0xa, 0x4e21, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}, 0x1b}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000700)="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", 0x1000}], 0x1, &(0x7f00000001c0)=[@rthdr_2292={{0x48, 0x29, 0x39, {0xff, 0x6, 0x1, 0x9, 0x0, [@private0, @ipv4={'\x00', '\xff\xff', @multicast2}, @private1={0xfc, 0x1, '\x00', 0x1}]}}}, @rthdr={{0x98, 0x29, 0x39, {0x5e, 0x10, 0x1, 0x7, 0x0, [@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @loopback, @private2={0xfc, 0x2, '\x00', 0x1}, @loopback, @empty, @private1={0xfc, 0x1, '\x00', 0x1}, @empty, @dev={0xfe, 0x80, '\x00', 0xe}]}}}, @dstopts_2292={{0x198, 0x29, 0x4, {0x120, 0x2f, '\x00', [@calipso={0x7, 0x28, {0x2, 0x8, 0x81, 0x7f, [0x1, 0x9, 0x80000000, 0x100000000]}}, @hao={0xc9, 0x10, @mcast2}, @calipso={0x7, 0x38, {0x3, 0xc, 0x40, 0x8, [0x5, 0x5, 0x3, 0x8, 0x1, 0x20]}}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @pad1, @generic={0xfb, 0xe4, "7d0dc0cef29e9482c840ab67ba14667f68fe1074086baeffde7c00a6169b501c3c4f1a311cecfe5ac54a7223de2885c6d673c776172c746838c3f8f244c48170c0c5e2b4d3408065a5a5b37a4804f13ca5cae308f251a2ef5f837223e3c0efbe694322adc0d3903f6e7495822164312bca7ff946c2395a3bea758ebfe6be941a8ceeb00e7959ac123a40c933fc7e97ec71cca03d6f7ea9cf8abf174404ababec9cc1ee0eb6d23f3955f7ce19550d3e1f8fabe7948eecba503670471d2c4e1fa690d0fa1dfbe06bebf09e253b28230d93f1407b7c355505c3efb1f3b5d4169029654806aa"}, @enc_lim={0x4, 0x1, 0x40}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x10, {0x0, 0x2, 0x4, 0x9, [0x7]}}]}}}, @tclass={{0x14, 0x29, 0x43, 0x2}}, @tclass={{0x14, 0x29, 0x43, 0x9}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x24f}}, @tclass={{0x14, 0x29, 0x43, 0x8000}}, @hopopts_2292={{0x30, 0x29, 0x36, {0x2c, 0x2, '\x00', [@hao={0xc9, 0x10, @loopback}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x6}}], 0x320}, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000000c0)="a18c9980d7954edc0888b8f28e9312f0185f6c3884fb22add6cb6321cda6ffe8afdbd105d626353b71546e44b10c55ce625fd38499fb440c51f5c2", 0x3b}], 0x1}, 0x10000044) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e23, 0xfffffffa, @empty, 0x4}, 0x1c) [ 1193.940339] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1193.941619] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1193.943881] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 08:22:01 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x2b, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:22:01 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 78) [ 1193.949509] loop0: detected capacity change from 0 to 2048 [ 1193.959174] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) [ 1193.964481] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=16400 sclass=netlink_route_socket pid=8494 comm=syz-executor.5 [ 1193.977609] FAULT_INJECTION: forcing a failure. [ 1193.977609] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.979025] CPU: 0 PID: 8495 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1193.979819] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.980778] Call Trace: [ 1193.981091] dump_stack+0x107/0x167 [ 1193.981514] should_fail.cold+0x5/0xa [ 1193.981960] ? create_object.isra.0+0x3a/0xa30 [ 1193.982483] should_failslab+0x5/0x20 [ 1193.982923] kmem_cache_alloc+0x5b/0x310 [ 1193.983399] ? mark_held_locks+0x9e/0xe0 [ 1193.983871] create_object.isra.0+0x3a/0xa30 [ 1193.984374] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1193.984965] kmem_cache_alloc+0x159/0x310 [ 1193.985445] xas_alloc+0x336/0x440 [ 1193.985854] xas_create+0x34a/0x10d0 [ 1193.986292] ? kernel_text_address+0xf2/0x120 [ 1193.986802] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.987419] xas_store+0x8c/0x1c40 [ 1193.987831] __xa_store+0x164/0x2d0 [ 1193.988253] ? xa_delete_node+0x280/0x280 [ 1193.988728] ? trace_hardirqs_on+0x5b/0x180 [ 1193.989230] xa_store+0x31/0x50 [ 1193.989614] __io_uring_add_tctx_node+0x1cf/0x520 [ 1193.990170] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1193.990768] ? alloc_fd+0x2e7/0x670 [ 1193.991195] io_uring_setup+0x1fbb/0x2980 [ 1193.991686] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1193.992272] ? wait_for_completion_io+0x270/0x270 [ 1193.992839] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1193.993444] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1193.994047] do_syscall_64+0x33/0x40 [ 1193.994476] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1193.995071] RIP: 0033:0x7f466af67b19 [ 1193.995510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1193.997633] RSP: 002b:00007f46684dd108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1193.998514] RAX: ffffffffffffffda RBX: 00007f466b07af60 RCX: 00007f466af67b19 [ 1193.999345] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1194.000168] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1194.000987] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1194.001816] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:22:17 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 67) 08:22:17 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x40000, @dev={0xfe, 0x80, '\x00', 0x39}}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000001c0)="cf", 0x1}, {&(0x7f0000000200)="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", 0xfa}], 0x2}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:22:17 executing program 6: syz_extract_tcp_res$synack(&(0x7f0000000000)={0x41424344}, 0x1, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @multicast, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, r0, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xfffc}}}}}}, 0x0) 08:22:17 executing program 5: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x0) fsmount(r0, 0x1, 0x0) fsmount(0xffffffffffffffff, 0x0, 0x0) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) r1 = openat2(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f00000002c0)={0x200202, 0x1, 0xa}, 0x18) write$P9_RREADLINK(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x10) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, r1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/udp\x00') r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) close(r2) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) getresgid(&(0x7f00000010c0), &(0x7f0000001100)=0x0, &(0x7f0000001140)) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid={'dfltgid', 0x3d, r5}}, {@afid={'afid', 0x3d, 0x345}}]}}) 08:22:17 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:22:17 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 23) 08:22:17 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x2c, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:22:17 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 79) [ 1210.441784] FAULT_INJECTION: forcing a failure. [ 1210.441784] name failslab, interval 1, probability 0, space 0, times 0 [ 1210.443456] CPU: 1 PID: 8517 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1210.444372] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1210.445451] Call Trace: [ 1210.445807] dump_stack+0x107/0x167 [ 1210.446303] should_fail.cold+0x5/0xa [ 1210.446811] ? create_object.isra.0+0x3a/0xa30 [ 1210.447407] should_failslab+0x5/0x20 [ 1210.447922] kmem_cache_alloc+0x5b/0x310 [ 1210.448452] create_object.isra.0+0x3a/0xa30 [ 1210.449033] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1210.449704] kmem_cache_alloc+0x159/0x310 [ 1210.450266] vm_area_dup+0x78/0x290 [ 1210.450754] ? lock_release+0x680/0x680 [ 1210.451271] ? mark_lock+0xf5/0x2df0 [ 1210.451760] ? lock_chain_count+0x20/0x20 [ 1210.452293] ? mark_lock+0xf5/0x2df0 [ 1210.452772] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1210.452873] FAULT_INJECTION: forcing a failure. [ 1210.452873] name failslab, interval 1, probability 0, space 0, times 0 [ 1210.453444] ? lock_chain_count+0x20/0x20 [ 1210.453505] ? mark_lock+0xf5/0x2df0 [ 1210.453518] ? vm_area_alloc+0x110/0x110 [ 1210.457540] ? __lock_acquire+0x1657/0x5b00 [ 1210.458103] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1210.458770] ? vmacache_find+0x55/0x2a0 [ 1210.459285] __split_vma+0xa8/0x4e0 [ 1210.459767] __do_munmap+0x365/0x1260 [ 1210.460264] ? arch_get_unmapped_area+0x450/0x450 [ 1210.460882] ? lock_release+0x680/0x680 [ 1210.461388] mmap_region+0x7cc/0x1500 [ 1210.461881] do_mmap+0x868/0x1370 [ 1210.462331] vm_mmap_pgoff+0x198/0x1f0 [ 1210.462843] ? randomize_page+0xb0/0xb0 [ 1210.463365] ksys_mmap_pgoff+0x41c/0x560 [ 1210.463912] ? find_mergeable_anon_vma+0x250/0x250 [ 1210.464544] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1210.465239] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1210.465913] do_syscall_64+0x33/0x40 [ 1210.466389] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1210.467062] RIP: 0033:0x7f466af67b62 [ 1210.467564] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1210.469943] RSP: 002b:00007f46684dd0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1210.470923] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f466af67b62 [ 1210.471861] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020fff000 [ 1210.472774] RBP: 0000000020fff000 R08: 0000000000000004 R09: 0000000000000000 [ 1210.473686] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000600 [ 1210.474603] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1210.475565] CPU: 0 PID: 8523 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1210.477014] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1210.478753] Call Trace: [ 1210.479320] dump_stack+0x107/0x167 [ 1210.480098] should_fail.cold+0x5/0xa [ 1210.480899] ? __kthread_create_on_node+0xd1/0x400 [ 1210.481928] should_failslab+0x5/0x20 [ 1210.482734] kmem_cache_alloc_trace+0x55/0x320 [ 1210.483713] ? loop_info64_to_compat+0x5f0/0x5f0 [ 1210.484710] __kthread_create_on_node+0xd1/0x400 08:22:17 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x8, @private2={0xfc, 0x2, '\x00', 0x1}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) [ 1210.485708] ? __kthread_parkme+0x1d0/0x1d0 [ 1210.486754] ? __mutex_lock+0x4fe/0x10b0 [ 1210.487617] ? loop_configure+0xc8a/0x1410 [ 1210.488512] ? do_raw_spin_unlock+0x4f/0x220 [ 1210.489439] ? loop_info64_to_compat+0x5f0/0x5f0 [ 1210.490435] kthread_create_on_node+0xbb/0x100 [ 1210.491402] ? __kthread_create_on_node+0x400/0x400 [ 1210.492462] ? lockdep_init_map_type+0x2c7/0x780 [ 1210.493456] ? lockdep_init_map_type+0x2c7/0x780 [ 1210.494468] loop_configure+0x3e7/0x1410 [ 1210.495346] lo_ioctl+0xa57/0x16b0 [ 1210.496107] ? avc_has_extended_perms+0x7f1/0xf40 [ 1210.497132] ? loop_set_status_old+0x250/0x250 [ 1210.498105] ? avc_ss_reset+0x180/0x180 [ 1210.498959] ? find_held_lock+0x2c/0x110 [ 1210.499829] ? __lock_acquire+0xbb1/0x5b00 08:22:17 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) syz_emit_ethernet(0x26, &(0x7f0000000000)={@remote, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @val={@val={0x9100, 0x4, 0x1, 0x3}, {0x8100, 0x5, 0x0, 0x4}}, {@can={0xc, {{0x0, 0x1, 0x1, 0x1}, 0x7, 0x3, 0x0, 0x0, "b6da19959d8b7ab6"}}}}, &(0x7f0000000040)={0x0, 0x4, [0x5c, 0x5cc, 0x8c5, 0xf97]}) [ 1210.500763] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1210.501867] ? generic_block_fiemap+0x60/0x60 [ 1210.502818] ? lock_downgrade+0x6d0/0x6d0 [ 1210.503714] ? build_open_flags+0x6f0/0x6f0 [ 1210.504635] ? loop_set_status_old+0x250/0x250 [ 1210.505602] blkdev_ioctl+0x291/0x710 [ 1210.506424] ? blkdev_common_ioctl+0x1930/0x1930 [ 1210.507431] ? selinux_file_ioctl+0xb6/0x270 [ 1210.508399] block_ioctl+0xf9/0x140 [ 1210.509186] ? blkdev_read_iter+0x1c0/0x1c0 [ 1210.510117] __x64_sys_ioctl+0x19a/0x210 [ 1210.510997] do_syscall_64+0x33/0x40 [ 1210.511809] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1210.512922] RIP: 0033:0x7fb6c02f68d7 [ 1210.513722] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1210.517694] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1210.519338] RAX: ffffffffffffffda RBX: 00007fb6c0340970 RCX: 00007fb6c02f68d7 [ 1210.520879] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1210.522418] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1210.523961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1210.525493] R13: 0000000000000004 R14: 0000000020000058 R15: 0000000000000001 [ 1210.536735] FAULT_INJECTION: forcing a failure. [ 1210.536735] name failslab, interval 1, probability 0, space 0, times 0 [ 1210.539266] CPU: 0 PID: 8522 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1210.540753] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1210.542554] Call Trace: [ 1210.543124] dump_stack+0x107/0x167 [ 1210.543920] should_fail.cold+0x5/0xa [ 1210.544743] ? create_object.isra.0+0x3a/0xa30 [ 1210.545726] should_failslab+0x5/0x20 [ 1210.546553] kmem_cache_alloc+0x5b/0x310 08:22:17 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 80) [ 1210.547427] ? mark_held_locks+0x9e/0xe0 [ 1210.548445] create_object.isra.0+0x3a/0xa30 [ 1210.549387] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1210.550480] kmem_cache_alloc+0x159/0x310 [ 1210.551377] xas_alloc+0x336/0x440 [ 1210.552159] xas_create+0x34a/0x10d0 [ 1210.552967] ? kernel_text_address+0xf2/0x120 [ 1210.553928] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1210.555058] xas_store+0x8c/0x1c40 [ 1210.555845] __xa_store+0x164/0x2d0 [ 1210.556632] ? xa_delete_node+0x280/0x280 [ 1210.557536] ? trace_hardirqs_on+0x5b/0x180 [ 1210.558472] xa_store+0x31/0x50 [ 1210.559186] __io_uring_add_tctx_node+0x1cf/0x520 [ 1210.560236] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1210.561365] ? alloc_fd+0x2e7/0x670 [ 1210.562161] io_uring_setup+0x1fbb/0x2980 [ 1210.563062] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1210.564164] ? wait_for_completion_io+0x270/0x270 [ 1210.565227] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1210.566358] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1210.567487] do_syscall_64+0x33/0x40 [ 1210.568291] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1210.569397] RIP: 0033:0x7ffa83495b19 08:22:17 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) syz_emit_ethernet(0xd7, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)={0x0, 0x2, [0x6bf, 0x46, 0x366, 0x5df]}) [ 1210.570201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1210.574164] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1210.574831] FAULT_INJECTION: forcing a failure. [ 1210.574831] name failslab, interval 1, probability 0, space 0, times 0 [ 1210.575775] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1210.575787] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1210.575798] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1210.575816] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1210.583207] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1210.584758] CPU: 1 PID: 8531 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1210.585701] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1210.586737] Call Trace: [ 1210.587086] dump_stack+0x107/0x167 [ 1210.587555] should_fail.cold+0x5/0xa [ 1210.588036] ? anon_vma_clone+0xdc/0x590 [ 1210.588534] should_failslab+0x5/0x20 [ 1210.589003] kmem_cache_alloc+0x5b/0x310 [ 1210.589506] anon_vma_clone+0xdc/0x590 [ 1210.589995] __split_vma+0x17c/0x4e0 [ 1210.590482] __do_munmap+0x365/0x1260 [ 1210.590958] ? arch_get_unmapped_area+0x450/0x450 [ 1210.591566] ? lock_release+0x680/0x680 [ 1210.592067] mmap_region+0x7cc/0x1500 [ 1210.592548] do_mmap+0x868/0x1370 [ 1210.592985] vm_mmap_pgoff+0x198/0x1f0 [ 1210.593467] ? randomize_page+0xb0/0xb0 [ 1210.593960] ksys_mmap_pgoff+0x41c/0x560 [ 1210.594460] ? find_mergeable_anon_vma+0x250/0x250 [ 1210.595081] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1210.595734] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1210.596389] do_syscall_64+0x33/0x40 [ 1210.596854] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1210.597522] RIP: 0033:0x7f466af67b62 [ 1210.597982] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1210.600256] RSP: 002b:00007f46684dd0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1210.601198] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f466af67b62 [ 1210.602086] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020fff000 [ 1210.602974] RBP: 0000000020fff000 R08: 0000000000000004 R09: 0000000000000000 [ 1210.603858] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000600 [ 1210.604730] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:22:17 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:22:18 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) recvfrom$inet6(r0, &(0x7f00000000c0)=""/164, 0xa4, 0x1, &(0x7f0000000180)={0xa, 0x4e22, 0x2, @local, 0x51}, 0x1c) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:22:18 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) syz_emit_ethernet(0x35, &(0x7f0000000000)={@multicast, @multicast, @void, {@generic={0x6003, "055c81ffc1de50899a6d929efddd5bad12887353777e432c37b37e85fbe7c975b6411b75f21307"}}}, &(0x7f0000000040)={0x0, 0x4, [0x716, 0x430, 0xcbf, 0x6cd4]}) 08:22:18 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x3a, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:22:18 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 68) 08:22:18 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) syz_emit_ethernet(0x121, &(0x7f0000000100)={@remote, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @val={@val={0x9100, 0x7, 0x0, 0x2}, {0x8100, 0x7, 0x0, 0x1}}, {@mpls_mc={0x8848, {[{0x401, 0x0, 0x1}, {0x1, 0x0, 0x1}], @llc={@llc={0xf4, 0xf0, 'Ar', "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"}}}}}}, 0x0) syz_emit_ethernet(0x56, &(0x7f0000000000)={@multicast, @empty, @void, {@canfd={0xd, {{0x4, 0x0, 0x1, 0x1}, 0x3b, 0x0, 0x0, 0x0, "9e5c81595e509750c97312db41958234fb05bf5e704ec302a5a65650c375553dd8cdd6b56698ca978753c7f44b3cf7181101b99a7d04950f8ad44251a88324b5"}}}}, 0x0) 08:22:18 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 81) [ 1210.747059] FAULT_INJECTION: forcing a failure. [ 1210.747059] name failslab, interval 1, probability 0, space 0, times 0 [ 1210.748415] CPU: 1 PID: 8555 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1210.749209] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1210.750168] Call Trace: [ 1210.750473] dump_stack+0x107/0x167 [ 1210.750899] should_fail.cold+0x5/0xa [ 1210.751344] ? xas_alloc+0x336/0x440 [ 1210.751782] should_failslab+0x5/0x20 [ 1210.752220] kmem_cache_alloc+0x5b/0x310 [ 1210.752691] xas_alloc+0x336/0x440 [ 1210.753108] xas_create+0x34a/0x10d0 [ 1210.753550] ? kernel_text_address+0xf2/0x120 [ 1210.754080] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1210.754702] xas_store+0x8c/0x1c40 [ 1210.755122] __xa_store+0x164/0x2d0 [ 1210.755555] ? xa_delete_node+0x280/0x280 [ 1210.756040] ? trace_hardirqs_on+0x5b/0x180 [ 1210.756538] xa_store+0x31/0x50 [ 1210.756925] __io_uring_add_tctx_node+0x1cf/0x520 [ 1210.757480] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1210.758091] ? alloc_fd+0x2e7/0x670 [ 1210.758517] io_uring_setup+0x1fbb/0x2980 [ 1210.758999] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1210.759588] ? wait_for_completion_io+0x270/0x270 [ 1210.760159] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1210.760763] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1210.761359] do_syscall_64+0x33/0x40 [ 1210.761795] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1210.762394] RIP: 0033:0x7ffa83495b19 [ 1210.762831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1210.764970] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1210.765852] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1210.766673] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1210.767502] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1210.768329] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1210.769155] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1210.793206] FAULT_INJECTION: forcing a failure. [ 1210.793206] name failslab, interval 1, probability 0, space 0, times 0 [ 1210.795689] CPU: 0 PID: 8558 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1210.797162] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1210.798932] Call Trace: [ 1210.799510] dump_stack+0x107/0x167 [ 1210.800294] should_fail.cold+0x5/0xa [ 1210.801109] ? create_object.isra.0+0x3a/0xa30 [ 1210.802085] should_failslab+0x5/0x20 [ 1210.802894] kmem_cache_alloc+0x5b/0x310 [ 1210.803771] create_object.isra.0+0x3a/0xa30 [ 1210.804705] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1210.805791] kmem_cache_alloc+0x159/0x310 [ 1210.806681] anon_vma_clone+0xdc/0x590 [ 1210.807530] __split_vma+0x17c/0x4e0 [ 1210.808326] __do_munmap+0x365/0x1260 [ 1210.809144] ? arch_get_unmapped_area+0x450/0x450 [ 1210.810177] ? lock_release+0x680/0x680 [ 1210.811030] mmap_region+0x7cc/0x1500 [ 1210.811862] do_mmap+0x868/0x1370 [ 1210.812606] vm_mmap_pgoff+0x198/0x1f0 [ 1210.813440] ? randomize_page+0xb0/0xb0 [ 1210.814307] ksys_mmap_pgoff+0x41c/0x560 [ 1210.815172] ? find_mergeable_anon_vma+0x250/0x250 [ 1210.816227] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1210.817342] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1210.818442] do_syscall_64+0x33/0x40 [ 1210.819238] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1210.820349] RIP: 0033:0x7f466af67b62 [ 1210.821139] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1210.825070] RSP: 002b:00007f46684dd0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1210.826694] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f466af67b62 [ 1210.828216] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020fff000 [ 1210.829734] RBP: 0000000020fff000 R08: 0000000000000004 R09: 0000000000000000 [ 1210.831250] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000600 [ 1210.832775] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1226.284797] FAULT_INJECTION: forcing a failure. [ 1226.284797] name failslab, interval 1, probability 0, space 0, times 0 [ 1226.287345] CPU: 0 PID: 8577 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1226.288853] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1226.290669] Call Trace: [ 1226.291245] dump_stack+0x107/0x167 [ 1226.292038] should_fail.cold+0x5/0xa [ 1226.292876] ? create_object.isra.0+0x3a/0xa30 [ 1226.293875] should_failslab+0x5/0x20 [ 1226.294708] kmem_cache_alloc+0x5b/0x310 [ 1226.295601] create_object.isra.0+0x3a/0xa30 [ 1226.296560] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1226.296747] FAULT_INJECTION: forcing a failure. [ 1226.296747] name failslab, interval 1, probability 0, space 0, times 0 [ 1226.297643] kmem_cache_alloc_trace+0x151/0x320 [ 1226.297677] ? loop_info64_to_compat+0x5f0/0x5f0 [ 1226.301560] __kthread_create_on_node+0xd1/0x400 [ 1226.302569] ? __kthread_parkme+0x1d0/0x1d0 [ 1226.303519] ? __mutex_lock+0x4fe/0x10b0 [ 1226.304412] ? loop_configure+0xc8a/0x1410 [ 1226.305331] ? do_raw_spin_unlock+0x4f/0x220 [ 1226.306269] ? loop_info64_to_compat+0x5f0/0x5f0 [ 1226.307296] kthread_create_on_node+0xbb/0x100 [ 1226.308303] ? __kthread_create_on_node+0x400/0x400 [ 1226.309379] ? lockdep_init_map_type+0x2c7/0x780 [ 1226.310402] ? lockdep_init_map_type+0x2c7/0x780 [ 1226.311433] loop_configure+0x3e7/0x1410 [ 1226.312328] lo_ioctl+0xa57/0x16b0 [ 1226.313094] ? avc_has_extended_perms+0x7f1/0xf40 [ 1226.314130] ? loop_set_status_old+0x250/0x250 [ 1226.315117] ? avc_ss_reset+0x180/0x180 [ 1226.315968] ? find_held_lock+0x2c/0x110 [ 1226.316847] ? __lock_acquire+0xbb1/0x5b00 [ 1226.317797] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1226.318906] ? generic_block_fiemap+0x60/0x60 [ 1226.319860] ? lock_downgrade+0x6d0/0x6d0 [ 1226.320742] ? build_open_flags+0x6f0/0x6f0 [ 1226.321667] ? loop_set_status_old+0x250/0x250 [ 1226.322638] blkdev_ioctl+0x291/0x710 [ 1226.323451] ? blkdev_common_ioctl+0x1930/0x1930 [ 1226.324474] ? selinux_file_ioctl+0xb6/0x270 [ 1226.325449] block_ioctl+0xf9/0x140 [ 1226.326357] ? blkdev_read_iter+0x1c0/0x1c0 [ 1226.327438] __x64_sys_ioctl+0x19a/0x210 [ 1226.328471] do_syscall_64+0x33/0x40 [ 1226.329405] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1226.330692] RIP: 0033:0x7fb6c02f68d7 [ 1226.331623] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1226.336244] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1226.338151] RAX: ffffffffffffffda RBX: 00007fb6c0340970 RCX: 00007fb6c02f68d7 [ 1226.339953] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1226.341751] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1226.343522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1226.345312] R13: 0000000000000004 R14: 0000000020000058 R15: 0000000000000001 [ 1226.347123] CPU: 1 PID: 8581 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1226.348532] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1226.350013] Call Trace: [ 1226.350494] dump_stack+0x107/0x167 [ 1226.351175] should_fail.cold+0x5/0xa [ 1226.351937] ? vm_area_alloc+0x1c/0x110 [ 1226.352757] should_failslab+0x5/0x20 [ 1226.353680] kmem_cache_alloc+0x5b/0x310 [ 1226.354423] vm_area_alloc+0x1c/0x110 [ 1226.355097] mmap_region+0x982/0x1500 [ 1226.355916] do_mmap+0x868/0x1370 08:22:33 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 24) 08:22:33 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x3c, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:22:33 executing program 6: syz_emit_ethernet(0x18, &(0x7f0000000080)={@local, @dev, @void, {@generic={0x8906, "196f37dc6842b2c98e4b"}}}, 0x0) 08:22:33 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000640)={0x88, 0x8, '\x00', [@generic={0xdb, 0x22, "52043f3b071d046ac48a960b7dd50521812464cca9bcda2f8dd8461b9fc651f8870a"}, @jumbo={0xc2, 0x4, 0xfffffffe}, @hao={0xc9, 0x10, @mcast1}, @padn={0x1, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}, 0x50) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @empty, 0x6}, 0x1c) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000140)) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) r1 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFCONF(r1, 0x8912, &(0x7f0000003780)) r2 = openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0xe0000, 0x40) ioctl$SG_GET_KEEP_ORPHAN(r2, 0x2288, &(0x7f0000000100)) ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, r2, {0xffffffff, 0x101}}, './file0\x00'}) [ 1226.356707] vm_mmap_pgoff+0x198/0x1f0 [ 1226.357541] ? randomize_page+0xb0/0xb0 [ 1226.358263] ksys_mmap_pgoff+0x41c/0x560 [ 1226.358990] ? find_mergeable_anon_vma+0x250/0x250 [ 1226.359891] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1226.360864] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1226.361946] do_syscall_64+0x33/0x40 [ 1226.362647] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1226.363587] RIP: 0033:0x7f466af67b62 sendmsg$sock(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000200)="95631a8ab430192c670b7d40b1a5a572d01c5ce6f4e20735de6ae6c8c0a9f218bc635c69b93d489d045ef59f2326a1ff4ddc689eaa341cef9c36a47d358f4877f3bfea62c1d8aba32bb7e5a94f4af7261d315730ad1078c216f29b0392d595e01863683f98ea733373aba4d281f0a77b010a926d0b1e0b1d3be07f409d6cd5a41ebd5b4c0040", 0x86}, {&(0x7f00000002c0)="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", 0xfb}, {&(0x7f00000003c0)="1613dc5102cc4ce8daf1b6116ce27d74dd1dcf45705252c41701b863f4c31ff3e69de68e179ae46d8877b24ae37fcf15d9e015acc810a3c78aeeb2f9d35857937c7b07fc029bec8ec32e9364229151a8d47ab2d2a15ce7c5e899a2128d18cf8ebf6f5f923abd53f788e28d255744381d3d2d284fa4330c58b30bfe8803914dff2bc66abf8b8f13ab284aa027bd2fe9649488d11357e4d75a231c5dc5284e0b276348adf63e1df52c3fbc5e236e29572fee0288f89c743e0bb1e60a7a1e", 0xbd}, {&(0x7f0000000480)="a3f521ddbf74d1caba786eeecedf0eb729a04a3bb6f96f5dc2407a9aa69c94e5ce87d1", 0x23}, {&(0x7f0000000700)="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", 0x1000}, {&(0x7f0000002740)="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", 0x1000}, {&(0x7f00000004c0)="1131c59ab5839def2d7f9ae54dd6ab24fe0ba317676655f0f7708f6230969513003d989563223ef6c78b35d4353e86", 0x2f}], 0x7, &(0x7f0000000500)=[@mark={{0x14}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}], 0x30}, 0x880) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:22:33 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) sendmsg$inet6(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0xa, 0x4e21, 0x8, @mcast1, 0x1f}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000100)="fd467e174af9d69289b1ca5aee56886423cc5c1e74929a3f7b8881c55f53e3f8e28043b1727fd98fbbcfb14b1069da6da577909e4750ce559160f18e7c4afb05e34a9667fc6df21afc10fb4a9d1e852c2b30715be6cb91d5dd799cbee159", 0x5e}], 0x1}, 0x200440c1) 08:22:33 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 69) 08:22:33 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 82) 08:22:33 executing program 5: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0) timer_settime(0x0, 0x0, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') write$cgroup_int(r0, &(0x7f0000000080)=0x2000000000, 0x12) timer_gettime(0x0, &(0x7f00000002c0)) timer_delete(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800, 0x9}, 0x0, 0x200000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000240)={0x20080522}, &(0x7f0000000300)={0x800, 0x3, 0x7, 0xd7, 0x8000, 0x6}) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @tid=r1}, &(0x7f0000000340)) socket$inet6_udplite(0xa, 0x2, 0x88) fcntl$getown(0xffffffffffffffff, 0x9) r2 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) preadv(r2, &(0x7f0000000100)=[{&(0x7f0000000380)=""/185, 0xb9}, {&(0x7f0000000440)=""/123, 0x7b}], 0x2, 0x100, 0x1) fsmount(r2, 0x1, 0x0) fsetxattr(r2, &(0x7f0000000040)=@known='trusted.overlay.nlink\x00', &(0x7f00000000c0)='}-,\x00', 0x4, 0xc44164369ad051de) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1226.364292] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1226.367988] RSP: 002b:00007f46684dd0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1226.369410] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f466af67b62 [ 1226.370730] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020fff000 [ 1226.372075] RBP: 0000000020fff000 R08: 0000000000000004 R09: 0000000000000000 [ 1226.373398] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000600 [ 1226.374708] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1226.378515] FAULT_INJECTION: forcing a failure. [ 1226.378515] name failslab, interval 1, probability 0, space 0, times 0 [ 1226.380600] CPU: 1 PID: 8576 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1226.381868] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1226.383369] Call Trace: [ 1226.383859] dump_stack+0x107/0x167 [ 1226.384545] should_fail.cold+0x5/0xa [ 1226.385269] ? create_object.isra.0+0x3a/0xa30 [ 1226.386127] should_failslab+0x5/0x20 [ 1226.386837] kmem_cache_alloc+0x5b/0x310 [ 1226.387590] ? mark_held_locks+0x9e/0xe0 [ 1226.388376] create_object.isra.0+0x3a/0xa30 [ 1226.389203] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1226.390150] kmem_cache_alloc+0x159/0x310 [ 1226.390920] xas_alloc+0x336/0x440 [ 1226.391595] xas_create+0x34a/0x10d0 [ 1226.392314] ? kernel_text_address+0xf2/0x120 [ 1226.393162] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1226.394144] xas_store+0x8c/0x1c40 [ 1226.394788] __xa_store+0x164/0x2d0 [ 1226.395449] ? xa_delete_node+0x280/0x280 [ 1226.396255] ? trace_hardirqs_on+0x5b/0x180 [ 1226.397060] xa_store+0x31/0x50 [ 1226.397681] __io_uring_add_tctx_node+0x1cf/0x520 [ 1226.398602] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1226.399570] ? alloc_fd+0x2e7/0x670 [ 1226.400268] io_uring_setup+0x1fbb/0x2980 [ 1226.401040] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1226.401961] ? wait_for_completion_io+0x270/0x270 [ 1226.402900] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1226.404153] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1226.405341] do_syscall_64+0x33/0x40 [ 1226.406211] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1226.407384] RIP: 0033:0x7ffa83495b19 [ 1226.408224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1226.411678] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1226.413064] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1226.414307] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1226.415657] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1226.416996] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1226.418342] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1226.439061] loop0: detected capacity change from 0 to 2048 [ 1226.445368] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:22:33 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:22:33 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 25) 08:22:33 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 83) [ 1226.540478] FAULT_INJECTION: forcing a failure. [ 1226.540478] name failslab, interval 1, probability 0, space 0, times 0 [ 1226.542694] CPU: 1 PID: 8597 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1226.544023] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1226.545614] Call Trace: [ 1226.546134] dump_stack+0x107/0x167 [ 1226.546826] should_fail.cold+0x5/0xa [ 1226.547560] ? anon_vma_clone+0xdc/0x590 [ 1226.548354] should_failslab+0x5/0x20 [ 1226.549085] kmem_cache_alloc+0x5b/0x310 [ 1226.549856] anon_vma_clone+0xdc/0x590 [ 1226.550582] __split_vma+0x17c/0x4e0 [ 1226.551304] __do_munmap+0x365/0x1260 [ 1226.552050] ? arch_get_unmapped_area+0x450/0x450 [ 1226.552973] ? lock_release+0x680/0x680 [ 1226.553730] mmap_region+0x7cc/0x1500 [ 1226.554484] do_mmap+0x868/0x1370 [ 1226.555162] vm_mmap_pgoff+0x198/0x1f0 [ 1226.555912] ? randomize_page+0xb0/0xb0 [ 1226.556687] ksys_mmap_pgoff+0x41c/0x560 [ 1226.557467] ? find_mergeable_anon_vma+0x250/0x250 [ 1226.558422] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1226.559425] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1226.560425] do_syscall_64+0x33/0x40 [ 1226.561141] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1226.562071] RIP: 0033:0x7f466af67b62 [ 1226.562748] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1226.566136] RSP: 002b:00007f46684dd0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1226.567526] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f466af67b62 [ 1226.568857] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020fff000 [ 1226.570178] RBP: 0000000020fff000 R08: 0000000000000004 R09: 0000000000000000 [ 1226.571489] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000600 [ 1226.572809] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1226.576515] FAULT_INJECTION: forcing a failure. [ 1226.576515] name failslab, interval 1, probability 0, space 0, times 0 [ 1226.578584] CPU: 1 PID: 8596 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1226.579818] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1226.581351] Call Trace: [ 1226.581835] dump_stack+0x107/0x167 [ 1226.582512] should_fail.cold+0x5/0xa [ 1226.583214] ? __kernfs_new_node+0xd4/0x860 [ 1226.584020] should_failslab+0x5/0x20 [ 1226.584716] kmem_cache_alloc+0x5b/0x310 [ 1226.585469] __kernfs_new_node+0xd4/0x860 [ 1226.586250] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1226.587116] ? lock_chain_count+0x20/0x20 [ 1226.587884] ? update_load_avg+0x162/0x1870 [ 1226.588681] ? find_held_lock+0x2c/0x110 [ 1226.589451] kernfs_new_node+0x18d/0x250 [ 1226.590210] kernfs_create_dir_ns+0x49/0x160 [ 1226.590995] internal_create_group+0x793/0xb30 [ 1226.591845] ? set_user_nice.part.0+0x2fd/0x760 [ 1226.592706] ? sysfs_remove_group+0x170/0x170 [ 1226.593531] ? lockdep_init_map_type+0x2c7/0x780 [ 1226.594428] ? blk_queue_flag_set+0x22/0x30 [ 1226.595213] ? __loop_update_dio+0x2d2/0x690 [ 1226.596019] loop_configure+0x953/0x1410 [ 1226.596771] lo_ioctl+0xa57/0x16b0 [ 1226.597413] ? avc_has_extended_perms+0x7f1/0xf40 [ 1226.598315] ? loop_set_status_old+0x250/0x250 [ 1226.599164] ? avc_ss_reset+0x180/0x180 [ 1226.599899] ? find_held_lock+0x2c/0x110 [ 1226.600635] ? __lock_acquire+0xbb1/0x5b00 [ 1226.601453] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1226.602421] ? generic_block_fiemap+0x60/0x60 [ 1226.603253] ? lock_downgrade+0x6d0/0x6d0 [ 1226.604027] ? build_open_flags+0x6f0/0x6f0 [ 1226.604823] ? loop_set_status_old+0x250/0x250 [ 1226.605634] blkdev_ioctl+0x291/0x710 [ 1226.606338] ? blkdev_common_ioctl+0x1930/0x1930 [ 1226.607211] ? selinux_file_ioctl+0xb6/0x270 [ 1226.608109] block_ioctl+0xf9/0x140 [ 1226.608945] ? blkdev_read_iter+0x1c0/0x1c0 [ 1226.609933] __x64_sys_ioctl+0x19a/0x210 [ 1226.610846] do_syscall_64+0x33/0x40 [ 1226.611713] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1226.612756] RIP: 0033:0x7fb6c02f68d7 [ 1226.613460] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1226.616812] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1226.618225] RAX: ffffffffffffffda RBX: 00007fb6c0340970 RCX: 00007fb6c02f68d7 [ 1226.619563] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1226.620891] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1226.622213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1226.623523] R13: 0000000000000004 R14: 0000000020000058 R15: 0000000000000001 [ 1226.626758] loop0: detected capacity change from 0 to 2048 [ 1226.651525] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:22:49 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) syz_emit_ethernet(0xe6, &(0x7f0000000100)={@broadcast, @empty, @void, {@ipv4={0x800, @dccp={{0x2c, 0x4, 0x3, 0x9, 0xd8, 0x68, 0x0, 0x0, 0x21, 0x0, @loopback, @broadcast, {[@timestamp_prespec={0x44, 0xc, 0xfe, 0x3, 0xd, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x9}]}, @cipso={0x86, 0x3c, 0x3, [{0x6, 0x11, "9bd63ffd807fafa098bb4344ef6342"}, {0x6, 0x10, "e5ef4f662326d1f1e2c3f3627f12"}, {0x7, 0xd, "06b9761dfe98d4972d2d02"}, {0x4, 0x6, "45ae3df5"}, {0x2, 0x2}]}, @end, @lsrr={0x83, 0xb, 0x83, [@dev={0xac, 0x14, 0x14, 0x44}, @multicast1]}, @cipso={0x86, 0xd, 0xffffffffffffffff, [{0x5, 0x7, "ea6ef7b497"}]}, @lsrr={0x83, 0x23, 0xd8, [@loopback, @multicast1, @multicast2, @dev={0xac, 0x14, 0x14, 0x33}, @empty, @private=0xa010100, @remote, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @timestamp={0x44, 0x18, 0x17, 0x0, 0x0, [0x1, 0x1, 0x9, 0x8, 0x4]}]}}, {{0x4e24, 0x4e21, 0x4, 0x1, 0xb, 0x0, 0x0, 0x1, 0x1, "d59850", 0x67, "629ee7"}, "eac91bfd4b12ffcfee853ff95045d525dd1c0d395f3178f9"}}}}}, &(0x7f0000000000)={0x1, 0x4, [0xb3c, 0x28c, 0xfc6, 0xcd8]}) syz_emit_ethernet(0xb6, &(0x7f0000000200)={@broadcast, @random="c595aa6f41b6", @void, {@x25={0x805, {0x1, 0xc0, 0xfb, "89a0fa7cd2a61a20622b5728152d6b484deb656799771f66daa947dc9f90b5a358d7de675c8aa62dfe5a1c1a17e184f97c3ca92425f9cb96907913ae696ccfe35228fe96c79773652a8dd4be64107bebb8e23cec175f52c1b01766aac6c47e24e4edce175162ff2b55dc31532fa7d0e9471d43397f1097d6ad8ce9d74e64f6780bb297209d07df720a515e4cb01bc3d353959cf63d6271752d3b02729c1deb6db857d6f453"}}}}, &(0x7f0000000040)={0x1, 0x4, [0xffd, 0x8f4, 0x744, 0xb20]}) 08:22:49 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='configfs\x00', 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000180)=""/183, 0xb7) r1 = getuid() pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) getresgid(&(0x7f00000010c0), &(0x7f0000001100)=0x0, &(0x7f0000001140)) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid={'dfltgid', 0x3d, r4}}, {@afid={'afid', 0x3d, 0x345}}]}}) syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x7f, 0xa, &(0x7f0000001780)=[{&(0x7f0000000240)="943d46db45cbbf3af3e8f6c42ee66ee87071dff881b95453f2f7c2f397e162eb8705108475b2eb78a5f63a8091a322addacb055cdf060a3554660f81d86d9ef2acc370b214904c184f9fec9eb0e93fb1", 0x50, 0x3}, {&(0x7f00000002c0)="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", 0x1000, 0x100}, {&(0x7f00000012c0), 0x0, 0x1000}, {&(0x7f0000001300)="d4e3fbc2700858a23da063377e621d7363779f28ca13217b220829040aabbf737c2b74b796054df79c1adef857f9935ed2de9ce40e7abbdd2a7dade1ad7a0a1e40", 0x41, 0x1}, {&(0x7f0000001380)="8a440dee809ccdf170b86b5f8730f8811b", 0x11, 0x1ab8}, {&(0x7f00000013c0)="a3887eee51fd7cf36f0f949841ab4e9f9f7da9c8f0002d9bf677f28d7ce22359780ab68f632d6f86952b88f7eac63500f9787208a9f1e1b7f7b4c97bf683409b9d808c9d9e7eaa2ee7cfe102284f74169a96baaa61802d8788f27f114f00c244e3a3e186c4997e88ef562b8b656ba16cb8a69f2d0c7399c7f97ad159e6a40a238cf7d1f42e4fa9cf6ddf1bbd67e0a24349cc9407b8fd3443c6feaf7f01000d4a5f8a78def01067a27923519c1b0413b1e26201", 0xb3, 0xfffffffffffffff8}, {&(0x7f0000001480)="6f2583050d77041224dc1a481de9ef6424e62e1c84c42b565e7aa04b0b64ff784949c901d1f2208c10df70facf5a486ae069a737a8243965d70c53e916c00a1af3a786cadad0bbb9d5100de96d56f04a322e5e1205280eb3e0f01e323082fb56b076d1e6bad50b3e0cef19dd06cdb8af3bdc7e4064c4711e06fd011f443b54bd15422f840a421f5c785c25f7ee05d30539655ca4e840308398f2ec87ec6fa3a74cec14d575485dd134ee4ee40995b522b378f8c7a613f2bd19635394ee5eea78569b988e2d6424962af8d3e4fde895fee450b4d273d6ede421732038c02a8a17", 0xe0, 0x6}, {&(0x7f0000001580)="09ab431b0b4aed6a0c966d9ae6a226c5d8439e5e40db7d2d6eb85ada19e251828094cbedb320f249e9792a6f4c1f2accce3044ce2f735f14d3670bd8a13e9f9f14f5639247c60bfffa501b1a59c25390e2ee6dd7b817102f2c66a3d9af8f4b62d9c90e8bb607892482ba1c719aec56f3c4e3d91ab8a8e1d31bbeeac46360fdc52891d94718", 0x85, 0x6}, {&(0x7f0000001640)="4ba2980089ecee9d94e7250e4e6e706b2ae1104f82a84a0bf0a0e109452ecdae8f0b3a3aa1782a0ad5f3ab8a449aef360f4771be1ed5956fe0f7fb043ce8f73ab374f2f126c1341be9db8088439f969c5140b1ca822146d2d92a1ae7e1631dd09987a6d62c3f1bd98bdcb2b211f46790506ff4638a829f1d4e1f900c8d4064c5e747783d", 0x84, 0x1ff}, {&(0x7f0000001700)="5b972fdec946084c9cdc1de72f31a9b9d423fc46d289f0af8d0864b4ac9ac4a2d01e3593d917fcc0fd7fee9e9c527ad13b48ad1ceb0a34a6ccf298d60ec5bb7efb502864b84ccc6fd3fed579313b62cc486ab68a91f24cc2a8742b4cb6d66994a83e227f12f06818a1fd2238a29745f702ed0649288c5323a3322453", 0x7c, 0x4d}], 0x200d4, &(0x7f00000018c0)={[{@sbsector={'sbsector', 0x3d, 0x4}}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@check_relaxed}, {@check_relaxed}, {@uid={'uid', 0x3d, r1}}, {@uid={'uid', 0x3d, 0xffffffffffffffff}}, {@gid={'gid', 0x3d, r4}}, {@map_acorn}, {@iocharset={'iocharset', 0x3d, 'koi8-u'}}], [{@smackfstransmute={'smackfstransmute', 0x3d, '!\'#+!'}}, {@smackfshat={'smackfshat', 0x3d, 'configfs\x00'}}, {@obj_role={'obj_role', 0x3d, 'configfs\x00'}}, {@audit}, {@dont_measure}]}) getdents64(r0, 0x0, 0x0) 08:22:49 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) ioctl$F2FS_IOC_DEFRAGMENT(r3, 0xc010f508, &(0x7f00000000c0)={0xb2, 0x9}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) 08:22:49 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) r1 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r1, 0x1, 0x0) writev(r1, &(0x7f0000000440)=[{&(0x7f00000000c0)="1d3a27a46844", 0x6}, {&(0x7f0000000100)="9be28434ef9f353432f3877fbd3a0c05cd4bf72d35a9fe89912866ef5f9cffb78593d3414fd979580a2e7b86559d07a49d07dde9b145ac70143c553ec7253d08663568c72633bce3c6b878068d2fc0f5bcd53b0a5362a174dce1c6ea004e125e540df07848050a5cbcf5007fc3f252bde78abc90165d54dd9a5a5f28d96478b1abe9368464e665a9fc77bcb0d3ca7f4f318ef42e2886d081dca7794f6ebbc4eb5f29b13d9cd963963027e53f0f5e83b4b3", 0xb1}, {&(0x7f0000000200)="0c4e1ad6b90cbd9bfd891695742ebcd50d8eaebc5cd2211ed46f5021ec0c8d5c8f51aacf44bb5023a299ee372bbad2843c8882f1a8d1f20690234e2a6bad122f961c761141ef789d84652c25a4fcb1eeb67bf7d7899d4fec3d8b5f68b2c2ece1b9d314415bcf152a478081bb4a57cca74bdd38f4750920867f6d37794bb6a7ed9a13c852f1a479283f81f7a8a57185d67e9d9856ee78e0a283e6bc63f5ceb98f0e7fa5e3c2d6a143e9", 0xa9}, {&(0x7f00000002c0)="71648168b715fba571998752078a89d3d4db05b0927dab617d53df0d08310240d23c072c469ca29427a2ba7e91d51f44", 0x30}, {&(0x7f0000000300)="6776888474d106cff6242c6e0b7fb6cdd472a38707862b180f240e81bbb97d0c91b830138fed469aa5ded41575a507cb64aaac1a467843d1324fa208a07a8dd419be537cdf024939c3831fab6a64f6d83fdd0d852d43076fdd0f37", 0x5b}, {&(0x7f0000000380)="a27d1eb1a53b68c9426ff8220ead186b97e3b945c2ddc7a2a6a5003375f389f70318e0e1a4b4c4c20b1385edd4cddf9f432cb1a90fc4f0e1b6d34c5daf089eb72d99f37cdd4bb84eac10163663c536fb385ed72b87b62bbed4f723d43872e1f9c95868f184bbd37e92e12522ae9858467a03a92f44b4d7d64a565e7ef6537b7b6891b712b69f8cced888e6ee07420e67a71d558a0cd5b58ff8da34ab0fd69f47af25b972f20cb7d07d", 0xa9}], 0x6) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000540), 0x400100, 0x0) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r2, 0x6, 0x21, &(0x7f0000000580)="153b6c8fae817e57a6c3611fea40ef08", 0x10) sendmsg$inet6(r0, &(0x7f0000000500)={0x0, 0xffffff2a, &(0x7f00000004c0)=[{&(0x7f00000001c0)="10", 0x1}], 0x1}, 0x340cc000) 08:22:49 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x2, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:22:49 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 26) 08:22:49 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 84) 08:22:49 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 70) [ 1242.597620] FAULT_INJECTION: forcing a failure. [ 1242.597620] name failslab, interval 1, probability 0, space 0, times 0 [ 1242.600755] CPU: 1 PID: 8627 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1242.602516] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1242.604749] Call Trace: [ 1242.605491] dump_stack+0x107/0x167 [ 1242.606443] should_fail.cold+0x5/0xa [ 1242.607530] ? create_object.isra.0+0x3a/0xa30 [ 1242.608735] should_failslab+0x5/0x20 [ 1242.609643] kmem_cache_alloc+0x5b/0x310 [ 1242.610630] create_object.isra.0+0x3a/0xa30 [ 1242.611801] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1242.613165] kmem_cache_alloc+0x159/0x310 [ 1242.614252] vm_area_alloc+0x1c/0x110 [ 1242.615280] mmap_region+0x982/0x1500 [ 1242.616365] do_mmap+0x868/0x1370 [ 1242.617134] vm_mmap_pgoff+0x198/0x1f0 [ 1242.618084] ? randomize_page+0xb0/0xb0 [ 1242.619181] ksys_mmap_pgoff+0x41c/0x560 [ 1242.620279] ? find_mergeable_anon_vma+0x250/0x250 [ 1242.621612] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1242.623047] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1242.624485] do_syscall_64+0x33/0x40 [ 1242.625443] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1242.626821] RIP: 0033:0x7f466af67b62 [ 1242.627849] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1242.632412] RSP: 002b:00007f46684dd0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1242.634444] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f466af67b62 [ 1242.636435] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020fff000 [ 1242.638261] RBP: 0000000020fff000 R08: 0000000000000004 R09: 0000000000000000 [ 1242.639976] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000600 [ 1242.641930] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1242.661553] FAULT_INJECTION: forcing a failure. [ 1242.661553] name failslab, interval 1, probability 0, space 0, times 0 [ 1242.663662] FAULT_INJECTION: forcing a failure. [ 1242.663662] name failslab, interval 1, probability 0, space 0, times 0 [ 1242.664463] CPU: 0 PID: 8625 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1242.668177] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1242.669989] Call Trace: [ 1242.670574] dump_stack+0x107/0x167 [ 1242.671390] should_fail.cold+0x5/0xa [ 1242.672241] ? xas_alloc+0x336/0x440 [ 1242.673061] should_failslab+0x5/0x20 [ 1242.673882] kmem_cache_alloc+0x5b/0x310 [ 1242.674776] xas_alloc+0x336/0x440 [ 1242.675572] xas_create+0x34a/0x10d0 [ 1242.676422] ? queued_spin_lock_slowpath+0xcc/0x8c0 [ 1242.677569] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1242.678727] xas_store+0x8c/0x1c40 [ 1242.679527] __xa_store+0x164/0x2d0 [ 1242.680343] ? xa_delete_node+0x280/0x280 [ 1242.681273] ? trace_hardirqs_on+0x5b/0x180 [ 1242.682260] xa_store+0x31/0x50 [ 1242.682977] __io_uring_add_tctx_node+0x1cf/0x520 [ 1242.684048] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1242.685356] ? alloc_fd+0x2e7/0x670 [ 1242.686369] io_uring_setup+0x1fbb/0x2980 [ 1242.687513] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1242.688862] ? wait_for_completion_io+0x270/0x270 [ 1242.689947] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1242.691116] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1242.692273] do_syscall_64+0x33/0x40 [ 1242.693101] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1242.694223] RIP: 0033:0x7ffa83495b19 [ 1242.695038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1242.699088] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1242.700766] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1242.702335] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1242.703908] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1242.705487] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1242.707064] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1242.708672] CPU: 1 PID: 8623 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1242.710185] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1242.712002] Call Trace: [ 1242.712582] dump_stack+0x107/0x167 [ 1242.713384] should_fail.cold+0x5/0xa [ 1242.714220] ? __kernfs_new_node+0xd4/0x860 [ 1242.715165] should_failslab+0x5/0x20 [ 1242.716010] kmem_cache_alloc+0x5b/0x310 [ 1242.716901] __kernfs_new_node+0xd4/0x860 [ 1242.717810] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1242.719050] ? lock_acquire+0x197/0x470 [ 1242.719942] ? lock_chain_count+0x20/0x20 [ 1242.720851] ? lock_acquire+0x197/0x470 [ 1242.721724] ? task_rq_lock+0xab/0x270 [ 1242.722590] ? lock_release+0x680/0x680 [ 1242.723463] ? find_held_lock+0x2c/0x110 [ 1242.724366] kernfs_new_node+0x18d/0x250 [ 1242.725259] kernfs_create_dir_ns+0x49/0x160 [ 1242.726229] internal_create_group+0x793/0xb30 [ 1242.727234] ? set_user_nice.part.0+0x2fd/0x760 [ 1242.728315] ? sysfs_remove_group+0x170/0x170 [ 1242.729311] ? lockdep_init_map_type+0x2c7/0x780 [ 1242.730365] ? blk_queue_flag_set+0x22/0x30 [ 1242.731321] ? __loop_update_dio+0x2d2/0x690 [ 1242.732304] loop_configure+0x953/0x1410 [ 1242.733206] lo_ioctl+0xa57/0x16b0 [ 1242.733986] ? avc_has_extended_perms+0x7f1/0xf40 [ 1242.735045] ? loop_set_status_old+0x250/0x250 [ 1242.736061] ? avc_ss_reset+0x180/0x180 [ 1242.736938] ? find_held_lock+0x2c/0x110 [ 1242.737840] ? __lock_acquire+0xbb1/0x5b00 [ 1242.738812] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1242.739961] ? generic_block_fiemap+0x60/0x60 [ 1242.740936] ? lock_downgrade+0x6d0/0x6d0 [ 1242.741834] ? build_open_flags+0x6f0/0x6f0 [ 1242.742779] ? loop_set_status_old+0x250/0x250 [ 1242.743766] blkdev_ioctl+0x291/0x710 [ 1242.744630] ? blkdev_common_ioctl+0x1930/0x1930 [ 1242.745662] ? selinux_file_ioctl+0xb6/0x270 [ 1242.746627] block_ioctl+0xf9/0x140 [ 1242.747422] ? blkdev_read_iter+0x1c0/0x1c0 [ 1242.748370] __x64_sys_ioctl+0x19a/0x210 [ 1242.749256] do_syscall_64+0x33/0x40 [ 1242.750067] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1242.751188] RIP: 0033:0x7fb6c02f68d7 [ 1242.752005] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1242.756028] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1242.757706] RAX: ffffffffffffffda RBX: 00007fb6c0340970 RCX: 00007fb6c02f68d7 [ 1242.759277] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1242.760848] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1242.762403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1242.763981] R13: 0000000000000004 R14: 0000000020000058 R15: 0000000000000001 [ 1242.767202] loop0: detected capacity change from 0 to 2048 [ 1242.785094] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) 08:22:50 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x3, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 08:22:50 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r1 = syz_open_dev$mouse(&(0x7f00000000c0), 0x8, 0x20a80) sendmsg$inet6(r1, &(0x7f0000000240)={&(0x7f00000002c0)={0xa, 0x4e22, 0x41d0, @empty, 0x7}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000140)}], 0x1, &(0x7f0000000200)=ANY=[@ANYBLOB="7f0000000000000029000000340200ff0600000000000000"], 0x18}, 0x4004081) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) r2 = openat(r1, &(0x7f0000000140)='./file0\x00', 0x121000, 0x2) setsockopt$inet6_tcp_int(r2, 0x6, 0x24, &(0x7f0000000280), 0x4) setsockopt$inet6_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000100), 0x4) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:23:04 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 71) 08:23:04 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 27) [ 1257.547271] FAULT_INJECTION: forcing a failure. [ 1257.547271] name failslab, interval 1, probability 0, space 0, times 0 [ 1257.549685] CPU: 0 PID: 8649 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1257.551132] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1257.552884] Call Trace: [ 1257.553438] dump_stack+0x107/0x167 [ 1257.554195] should_fail.cold+0x5/0xa [ 1257.554992] ? create_object.isra.0+0x3a/0xa30 [ 1257.555957] should_failslab+0x5/0x20 [ 1257.556755] kmem_cache_alloc+0x5b/0x310 [ 1257.557609] ? mark_held_locks+0x9e/0xe0 [ 1257.558465] create_object.isra.0+0x3a/0xa30 [ 1257.559381] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1257.560466] kmem_cache_alloc+0x159/0x310 [ 1257.561343] xas_alloc+0x336/0x440 [ 1257.562092] xas_create+0x34a/0x10d0 [ 1257.562880] ? kernel_text_address+0xf2/0x120 [ 1257.563824] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1257.564941] xas_store+0x8c/0x1c40 [ 1257.565698] __xa_store+0x164/0x2d0 [ 1257.566464] ? xa_delete_node+0x280/0x280 [ 1257.567339] ? trace_hardirqs_on+0x5b/0x180 [ 1257.568261] xa_store+0x31/0x50 [ 1257.569141] __io_uring_add_tctx_node+0x1cf/0x520 [ 1257.570152] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1257.571240] ? alloc_fd+0x2e7/0x670 [ 1257.572016] io_uring_setup+0x1fbb/0x2980 [ 1257.572908] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1257.573973] ? wait_for_completion_io+0x270/0x270 [ 1257.575010] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1257.576124] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1257.577216] do_syscall_64+0x33/0x40 [ 1257.577997] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1257.579076] RIP: 0033:0x7ffa83495b19 [ 1257.579856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1257.583740] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1257.585354] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1257.586859] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1257.588373] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1257.589876] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1257.591373] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:23:04 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty, 0x5}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) open$dir(0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7) setsockopt$sock_timeval(r0, 0x1, 0x0, &(0x7f00000000c0)={0x77359400}, 0x10) 08:23:04 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback, 0x1}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e22, 0x80000000, @loopback, 0x7}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e21, 0x8e7625, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:23:04 executing program 6: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@timestamp_addr={0x44, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) syz_emit_ethernet(0x9a, &(0x7f0000000100)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x44}, @multicast, @void, {@ipv4={0x800, @icmp={{0x21, 0x4, 0x3, 0x5, 0x8c, 0x68, 0x0, 0x6, 0x1, 0x0, @dev={0xac, 0x14, 0x14, 0x30}, @local, {[@cipso={0x86, 0x35, 0x1, [{0x0, 0x6, "0a5a35b7"}, {0x1bbfc19a9cd60097, 0x4, "aa3c"}, {0x2, 0x6, "c0407784"}, {0x7, 0x9, "fb396293fe8cfe"}, {0x6, 0x12, "287ceb70880381decaf47ce4956c8df3"}, {0x0, 0x4, "0fcf"}]}, @ssrr={0x89, 0x27, 0x29, [@rand_addr=0x64010101, @remote, @multicast1, @multicast1, @empty, @private=0xa010101, @multicast2, @local, @empty]}, @generic={0x40, 0x11, "d498487441210a0df46b64fc71cb85"}]}}, @info_reply={0x10, 0x0, 0x0, 0x800, 0xff}}}}}, &(0x7f00000001c0)={0x1, 0x3, [0xa11, 0x69a, 0x29b, 0x5f1]}) syz_emit_ethernet(0x38, &(0x7f0000000000)={@local, @random="85eedbd7f9c4", @val={@val={0x9100, 0x0, 0x1, 0x2}, {0x8100, 0x2, 0x0, 0x4}}, {@arp={0x806, @generic={0x3, 0x201, 0x6, 0x9, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3b}, "ca188a16a9f6f18326", @empty, "d6773cf3b7"}}}}, &(0x7f0000000040)={0x1, 0x4, [0x298, 0xcf2, 0x6d1, 0x5cc]}) syz_emit_ethernet(0x22, &(0x7f0000000340)=ANY=[@ANYBLOB="bbbbbbbbbbbb551be928854881003200000c000000c0020000004e046036670a096742"], &(0x7f0000000240)={0x1, 0x2, [0xcb2, 0xaa3, 0xc7a, 0x7dc]}) syz_emit_ethernet(0x74, &(0x7f0000000280)={@random="d2672f990d2a", @local, @val={@val={0x9100, 0x4, 0x1, 0x3}, {0x8100, 0x2, 0x1, 0x4}}, {@mpls_mc={0x8848, {[{0x9}, {0x6}, {0x7f, 0x0, 0x1}, {0x4}], @llc={@snap={0xab, 0x0, 'e', "6eb1d5", 0x18, "30535841ecabd0ed02699506a473ab0845457139f4ab18779532e7fe79b7bbd9bad2fe6d5c981db459f3c302dfe6ef82f194069c0dd52ceca6a0588a32d76f93776e5aa3c6c9"}}}}}}, &(0x7f0000000300)={0x0, 0x1, [0xb60, 0x3e9, 0x132, 0xff9]}) syz_emit_ethernet(0x295, &(0x7f0000000380)={@local, @random="55720a02477f", @val={@val={0x9100, 0x6, 0x0, 0x2}, {0x8100, 0x7, 0x1, 0x3}}, {@mpls_uc={0x8847, {[{0x8}, {0x4}, {0xffff, 0x0, 0x1}, {0x8d1, 0x0, 0x1}], @ipv4=@gre={{0x6, 0x4, 0x1, 0x3d, 0x26f, 0x65, 0x0, 0x9e, 0x2f, 0x0, @loopback, @dev={0xac, 0x14, 0x14, 0x25}, {[@noop]}}, {{0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x5e, 0x2, [0x5, 0x2], "c8ad698d8218e38f297166c35c9363375f9c34493cc487372749c839927c0d7eeef219f5c7d8df241d5c423ffd5b2b79b0d635452bba9729170a6a2e3089d1fd272aa01921d114f5d7b646c7945c15896a892d4b7c184a3226a618f60b39"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x800, [0x8001], "3a3ebc7d71442f4f127b913fe8c81d381813cdb7a87988f3be4db4d10a3664f572b83b6616d5eb0a2a0a95c742960cfb46dc82f74ad13ef2234a248b48d4c71454b1e372b52cd5caecfc43c06af2d3bf8ac872ffe09b0017ef334cfc8630f1c384317ecd334814f1bf8342a6d8ce2d9c26fdd18507f0858658783b825b73acd135fd14836e79997f8c5661ecab08de97d7c57c0468935561094ef6c685a399c97f64396ae4b41b94b89dbdfbd8b80566d558a29c950b96fa9db62eb28c8b34226c4e09c58bf40b5eacd504009e24b91c7bb764af43428fa09c162e0389b801e472188f2ead128c10398b973cfb79ed7ac25219"}, {0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x86dd, [0x1f], "0a18ccfe2494c4a9e28b465ebe1c267d821e298b6932980f8d7476a1a17b488a0b01887bd3c9edef12756804c0c755bffca2293376167a3d9a983e6c25200ff2f3bec237aed06ac6bbe5b93419196eb5a7555ba2827da9aae20f0c8841930368246986d136c5a21299ba29a5ce4225"}, {0x8, 0x88be, 0x2, {{0x6, 0x1, 0x80, 0x0, 0x0, 0x0, 0x2, 0x9d}, 0x1, {0x8}}}, {0x8, 0x22eb, 0x2, {{0x3, 0x2, 0x10, 0x0, 0x0, 0x3, 0x6, 0x9}, 0x2, {0x0, 0x8, 0x1, 0x8, 0x1, 0x0, 0x0, 0x0, 0x1}}}, {0x8, 0x6558, 0x1, "df355c14593ca6a27284cd9563083acb878b9b84c9a3346abf7f400ca251c8ed4daf4e7f46532b82546923824b2de76910a59f946c11a91f46063a459c0e1cb6d28e3219bc5c7009e3fa21"}}}}}}}, &(0x7f0000000200)={0x1, 0x3, [0x75c, 0x4fa, 0x623, 0x5f2]}) 08:23:04 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) syz_io_uring_setup(0x804ebb, &(0x7f0000001780)={0x0, 0x1b9b, 0x10, 0x0, 0x165}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r4, 0x0, 0x0}, 0x0) ioctl$KIOCSOUND(r4, 0x4b2f, 0x4) sendfile(r1, r0, 0x0, 0x3) ioctl$KDGETLED(r0, 0x4b31, &(0x7f0000000080)) 08:23:04 executing program 3: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 85) 08:23:04 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x8, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1257.597818] FAULT_INJECTION: forcing a failure. [ 1257.597818] name failslab, interval 1, probability 0, space 0, times 0 [ 1257.600202] CPU: 0 PID: 8660 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1257.601634] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1257.603380] Call Trace: [ 1257.603938] dump_stack+0x107/0x167 [ 1257.604721] should_fail.cold+0x5/0xa [ 1257.605531] ? ptlock_alloc+0x1d/0x70 [ 1257.606331] should_failslab+0x5/0x20 [ 1257.607137] kmem_cache_alloc+0x5b/0x310 [ 1257.608004] ptlock_alloc+0x1d/0x70 [ 1257.608777] pte_alloc_one+0x68/0x1a0 [ 1257.609582] __pte_alloc+0x1d/0x330 [ 1257.610352] remap_pfn_range_internal+0x9a3/0xf60 [ 1257.611382] ? lookup_memtype+0x5b/0x200 [ 1257.612262] ? apply_to_existing_page_range+0x40/0x40 [ 1257.613356] remap_pfn_range+0xcd/0x160 [ 1257.614199] ? remap_pfn_range_notrack+0x70/0x70 [ 1257.615201] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1257.616302] io_uring_mmap+0x398/0x530 [ 1257.617120] mmap_file+0x5e/0xe0 [ 1257.617830] mmap_region+0xc4d/0x1500 [ 1257.618651] do_mmap+0x868/0x1370 [ 1257.619391] vm_mmap_pgoff+0x198/0x1f0 [ 1257.620227] ? randomize_page+0xb0/0xb0 [ 1257.621077] ksys_mmap_pgoff+0x41c/0x560 [ 1257.621916] ? find_mergeable_anon_vma+0x250/0x250 [ 1257.622944] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1257.624034] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1257.625129] do_syscall_64+0x33/0x40 [ 1257.625906] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1257.626979] RIP: 0033:0x7f466af67b62 [ 1257.627763] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1257.631569] RSP: 002b:00007f46684dd0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1257.633160] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f466af67b62 [ 1257.634649] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020fff000 [ 1257.636171] RBP: 0000000020fff000 R08: 0000000000000004 R09: 0000000000000000 [ 1257.637658] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000600 [ 1257.639156] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1257.646940] FAULT_INJECTION: forcing a failure. [ 1257.646940] name failslab, interval 1, probability 0, space 0, times 0 [ 1257.649787] CPU: 0 PID: 8648 Comm: syz-executor.0 Not tainted 5.10.246 #1 08:23:05 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x11, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1257.651234] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1257.653158] Call Trace: [ 1257.653721] dump_stack+0x107/0x167 [ 1257.654495] should_fail.cold+0x5/0xa [ 1257.655309] ? radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1257.656529] should_failslab+0x5/0x20 [ 1257.657332] kmem_cache_alloc+0x5b/0x310 [ 1257.658196] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1257.659379] idr_get_free+0x4b5/0x8f0 [ 1257.660207] idr_alloc_u32+0x170/0x2d0 [ 1257.661027] ? __fprop_inc_percpu_max+0x130/0x130 [ 1257.662047] ? lock_acquire+0x197/0x470 [ 1257.662883] ? __kernfs_new_node+0xff/0x860 [ 1257.663800] idr_alloc_cyclic+0x102/0x230 [ 1257.664679] ? idr_alloc+0x130/0x130 [ 1257.665458] ? rwlock_bug.part.0+0x90/0x90 [ 1257.666360] __kernfs_new_node+0x117/0x860 [ 1257.667251] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1257.668254] ? lock_chain_count+0x20/0x20 [ 1257.669135] ? update_load_avg+0x162/0x1870 [ 1257.670046] ? find_held_lock+0x2c/0x110 [ 1257.670898] kernfs_new_node+0x18d/0x250 [ 1257.671760] kernfs_create_dir_ns+0x49/0x160 [ 1257.672701] internal_create_group+0x793/0xb30 [ 1257.673675] ? set_user_nice.part.0+0x2fd/0x760 [ 1257.674677] ? sysfs_remove_group+0x170/0x170 [ 1257.675621] ? lockdep_init_map_type+0x2c7/0x780 [ 1257.676622] ? blk_queue_flag_set+0x22/0x30 [ 1257.677529] ? __loop_update_dio+0x2d2/0x690 [ 1257.678463] loop_configure+0x953/0x1410 [ 1257.679329] lo_ioctl+0xa57/0x16b0 [ 1257.680083] ? avc_has_extended_perms+0x7f1/0xf40 [ 1257.681097] ? loop_set_status_old+0x250/0x250 [ 1257.682065] ? avc_ss_reset+0x180/0x180 [ 1257.682903] ? find_held_lock+0x2c/0x110 [ 1257.682948] ------------[ cut here ]------------ [ 1257.683772] ? __lock_acquire+0xbb1/0x5b00 [ 1257.684908] WARNING: CPU: 1 PID: 8660 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270 [ 1257.685761] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1257.687668] Modules linked in: [ 1257.688702] ? generic_block_fiemap+0x60/0x60 [ 1257.688720] ? lock_downgrade+0x6d0/0x6d0 [ 1257.688748] ? build_open_flags+0x6f0/0x6f0 [ 1257.689424] [ 1257.690317] ? loop_set_status_old+0x250/0x250 [ 1257.690334] blkdev_ioctl+0x291/0x710 [ 1257.690357] ? blkdev_common_ioctl+0x1930/0x1930 [ 1257.691252] CPU: 1 PID: 8660 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 1257.692098] ? selinux_file_ioctl+0xb6/0x270 [ 1257.692129] block_ioctl+0xf9/0x140 [ 1257.692462] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1257.693390] ? blkdev_read_iter+0x1c0/0x1c0 [ 1257.693411] __x64_sys_ioctl+0x19a/0x210 [ 1257.693434] do_syscall_64+0x33/0x40 [ 1257.694266] RIP: 0010:get_pat_info+0x216/0x270 [ 1257.695190] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1257.695202] RIP: 0033:0x7fb6c02f68d7 [ 1257.695225] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1257.697805] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 31 89 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 1a 89 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 a5 a2 5a 00 e9 [ 1257.698276] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1257.698297] RAX: ffffffffffffffda RBX: 00007fb6c0340970 RCX: 00007fb6c02f68d7 [ 1257.698307] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1257.698319] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1257.698330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1257.698341] R13: 0000000000000004 R14: 0000000020000058 R15: 0000000000000001 [ 1257.699665] loop0: detected capacity change from 0 to 2048 [ 1257.700971] RSP: 0018:ffff888044697890 EFLAGS: 00010216 [ 1257.710711] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) [ 1257.710832] [ 1257.733592] RAX: 0000000000013aef RBX: ffff88800ecc9e00 RCX: ffffc9000360e000 [ 1257.735163] RDX: 0000000000040000 RSI: ffffffff81124466 RDI: 0000000000000007 [ 1257.736764] RBP: ffff888044697948 R08: 0000000000000000 R09: ffff888044697818 [ 1257.738330] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028 [ 1257.739935] R13: 1ffff110088d2f12 R14: 0000000000000000 R15: ffff88800ecc9e50 [ 1257.741528] FS: 00007f46684dd700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 1257.743303] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1257.744596] CR2: 00007ffaf9a41000 CR3: 000000000ea7a000 CR4: 0000000000350ee0 [ 1257.746173] Call Trace: [ 1257.746759] ? pgprot_writethrough+0xc0/0xc0 [ 1257.747738] ? finish_task_switch+0x126/0x5d0 [ 1257.748762] ? finish_task_switch+0xef/0x5d0 [ 1257.749764] untrack_pfn+0xdc/0x240 [ 1257.750572] ? track_pfn_insert+0x150/0x150 [ 1257.751542] ? lock_downgrade+0x6d0/0x6d0 [ 1257.752489] ? uprobe_munmap+0x1c/0x560 [ 1257.753402] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1257.754576] unmap_single_vma+0x1bc/0x300 [ 1257.755515] zap_page_range_single+0x2ce/0x450 [ 1257.756554] ? unmap_single_vma+0x300/0x300 [ 1257.757538] ? remap_pfn_range_internal+0xc56/0xf60 [ 1257.758669] ? lookup_memtype+0x5b/0x200 [ 1257.759581] ? apply_to_existing_page_range+0x40/0x40 [ 1257.760785] remap_pfn_range+0x139/0x160 [ 1257.761702] ? remap_pfn_range_notrack+0x70/0x70 [ 1257.763019] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1257.764480] io_uring_mmap+0x398/0x530 [ 1257.765598] mmap_file+0x5e/0xe0 [ 1257.766568] mmap_region+0xc4d/0x1500 [ 1257.767660] do_mmap+0x868/0x1370 [ 1257.768558] vm_mmap_pgoff+0x198/0x1f0 [ 1257.769451] ? randomize_page+0xb0/0xb0 [ 1257.770368] ksys_mmap_pgoff+0x41c/0x560 [ 1257.771285] ? find_mergeable_anon_vma+0x250/0x250 [ 1257.772406] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1257.773582] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1257.774748] do_syscall_64+0x33/0x40 [ 1257.775577] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1257.776755] RIP: 0033:0x7f466af67b62 [ 1257.777574] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1257.781557] RSP: 002b:00007f46684dd0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1257.783235] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f466af67b62 [ 1257.784839] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020fff000 [ 1257.786398] RBP: 0000000020fff000 R08: 0000000000000004 R09: 0000000000000000 [ 1257.787978] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000600 [ 1257.789562] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 [ 1257.791204] irq event stamp: 1711 [ 1257.792097] hardirqs last enabled at (1721): [] console_unlock+0x92d/0xb40 [ 1257.794053] hardirqs last disabled at (1730): [] console_unlock+0x839/0xb40 [ 1257.795942] softirqs last enabled at (1160): [] asm_call_irq_on_stack+0x12/0x20 [ 1257.797935] softirqs last disabled at (1117): [] asm_call_irq_on_stack+0x12/0x20 [ 1257.799892] ---[ end trace b1967fb7b42dbf01 ]--- 08:23:05 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x3, @empty, 0xd5e}, 0x1c) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4) r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x101080, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'dummy0\x00'}) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) 08:23:05 executing program 1: prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) syz_io_uring_setup(0x28bb, &(0x7f0000000540)={0x0, 0x0, 0x2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)) (fail_nth: 72) 08:23:05 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x58091}, 0x0) r1 = socket$netlink(0x10, 0x3, 0xe) setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000340)={0x1, 0x7}, 0x8) sendmsg$nl_generic(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001d00040025bd7000fddbdf2517000000b856ca731288b42839f5a3eaaf6cbe5dae3af6b46f37132724946724b1a6907584b0e9462b28f22f81de979eccc5743345c8eeca9cce58a09bf5b0eee51c78530aa8adc8edade49a27ae0f2480b359164a8df304a0ca744fcc3474e64b54513dcb24e6129a0637aa64c76c86daae2556068d916cb6dc2e79b5e89b211273dd3e067eeb1a7f951cab7042ae7e7ced38fb4ff9aeb8a4e5bdbb08853b188f046ebeab2a5969027708996d598a33488eae6a91431e77f06aaf9874af81f4fb14993bda44ee64ea40dc9b5657f92e8d762444fc100d4798b03ab3"], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x40000) creat(&(0x7f0000000040)='./file0\x00', 0x0) syz_genetlink_get_family_id$SEG6(&(0x7f0000000400), 0xffffffffffffffff) sendfile(r0, 0xffffffffffffffff, &(0x7f00000000c0), 0x5c81) r2 = openat(0xffffffffffffff9c, 0x0, 0x20000, 0x0) fsmount(r2, 0x1, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xc85a8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x4, @perf_config_ext={0xeecc}, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x90}, 0x0, 0xffffffffffffffff, r2, 0x1) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ap_ssid, 0x6, 0x0) [ 1257.877222] FAULT_INJECTION: forcing a failure. [ 1257.877222] name failslab, interval 1, probability 0, space 0, times 0 [ 1257.880118] CPU: 0 PID: 8678 Comm: syz-executor.1 Tainted: G W 5.10.246 #1 [ 1257.882143] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1257.884200] Call Trace: [ 1257.884856] dump_stack+0x107/0x167 [ 1257.885760] should_fail.cold+0x5/0xa [ 1257.886704] ? xas_alloc+0x336/0x440 08:23:05 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x14, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1257.887623] should_failslab+0x5/0x20 [ 1257.888679] kmem_cache_alloc+0x5b/0x310 [ 1257.889704] xas_alloc+0x336/0x440 [ 1257.890603] xas_create+0x34a/0x10d0 [ 1257.891551] ? kernel_text_address+0xf2/0x120 [ 1257.892691] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1257.894007] xas_store+0x8c/0x1c40 [ 1257.894917] __xa_store+0x164/0x2d0 [ 1257.895838] ? xa_delete_node+0x280/0x280 [ 1257.896905] ? trace_hardirqs_on+0x5b/0x180 [ 1257.897998] xa_store+0x31/0x50 [ 1257.898833] __io_uring_add_tctx_node+0x1cf/0x520 [ 1257.900046] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1257.901369] ? alloc_fd+0x2e7/0x670 [ 1257.902292] io_uring_setup+0x1fbb/0x2980 [ 1257.903343] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1257.904620] ? wait_for_completion_io+0x270/0x270 [ 1257.905868] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1257.907191] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1257.908496] do_syscall_64+0x33/0x40 [ 1257.909422] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1257.910687] RIP: 0033:0x7ffa83495b19 [ 1257.911604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1257.916207] RSP: 002b:00007ffa80a0b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1257.918101] RAX: ffffffffffffffda RBX: 00007ffa835a8f60 RCX: 00007ffa83495b19 [ 1257.919866] RDX: 0000000020fff000 RSI: 0000000020000540 RDI: 00000000000028bb [ 1257.921647] RBP: 0000000020000540 R08: 0000000020000600 R09: 0000000020000600 [ 1257.923418] R10: 00000000200005c0 R11: 0000000000000202 R12: 0000000020000600 [ 1257.925196] R13: 0000000020fff000 R14: 00000000200005c0 R15: 0000000020fff000 08:23:05 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000001c0)={[{@nolazytime}, {@max_dir_size_kb}]}) (fail_nth: 28) 08:23:05 executing program 6: syz_emit_ethernet(0x56, &(0x7f0000000100)={@local, @dev, @void, {@canfd={0xd, {{}, 0x18, 0x3, 0x0, 0x0, "c3b1c564ef7ddecdd89797af852f0ac8d0e3530998b709c16f07206b2b363bfbff70c5687746707441fa6c588c5e967f71239444b15a46ef8b9c3f57c68a5cdf"}}}}, 0x0) 08:23:05 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x3c, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1258.031326] FAULT_INJECTION: forcing a failure. [ 1258.031326] name failslab, interval 1, probability 0, space 0, times 0 [ 1258.034657] CPU: 0 PID: 8690 Comm: syz-executor.0 Tainted: G W 5.10.246 #1 [ 1258.036992] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1258.039354] Call Trace: [ 1258.040120] dump_stack+0x107/0x167 [ 1258.041170] should_fail.cold+0x5/0xa [ 1258.042259] ? radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1258.043908] should_failslab+0x5/0x20 [ 1258.045006] kmem_cache_alloc+0x5b/0x310 [ 1258.046185] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1258.047771] idr_get_free+0x4b5/0x8f0 [ 1258.048899] idr_alloc_u32+0x170/0x2d0 [ 1258.049982] ? __fprop_inc_percpu_max+0x130/0x130 [ 1258.051337] ? lock_acquire+0x197/0x470 [ 1258.052480] ? __kernfs_new_node+0xff/0x860 [ 1258.053709] idr_alloc_cyclic+0x102/0x230 [ 1258.054889] ? idr_alloc+0x130/0x130 [ 1258.055926] ? rwlock_bug.part.0+0x90/0x90 [ 1258.057133] __kernfs_new_node+0x117/0x860 [ 1258.058331] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1258.059668] ? lock_chain_count+0x20/0x20 [ 1258.060851] ? update_load_avg+0x162/0x1870 [ 1258.062066] ? find_held_lock+0x2c/0x110 [ 1258.063232] kernfs_new_node+0x18d/0x250 [ 1258.064395] kernfs_create_dir_ns+0x49/0x160 08:23:05 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x60, 0x0}, @remote, {[@timestamp_addr={0x7, 0x14, 0xf, 0x1, 0x0, [{@empty}, {@dev}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 1258.065659] internal_create_group+0x793/0xb30 [ 1258.067143] ? set_user_nice.part.0+0x2fd/0x760 [ 1258.068464] ? sysfs_remove_group+0x170/0x170 [ 1258.069700] ? lockdep_init_map_type+0x2c7/0x780 [ 1258.071029] ? blk_queue_flag_set+0x22/0x30 [ 1258.072251] ? __loop_update_dio+0x2d2/0x690 [ 1258.073496] loop_configure+0x953/0x1410 [ 1258.074648] lo_ioctl+0xa57/0x16b0 [ 1258.075639] ? avc_has_extended_perms+0x7f1/0xf40 [ 1258.077013] ? loop_set_status_old+0x250/0x250 [ 1258.078291] ? avc_ss_reset+0x180/0x180 [ 1258.079418] ? find_held_lock+0x2c/0x110 [ 1258.080586] ? __lock_acquire+0xbb1/0x5b00 [ 1258.081816] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1258.083290] ? generic_block_fiemap+0x60/0x60 [ 1258.084556] ? lock_downgrade+0x6d0/0x6d0 08:23:05 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) perf_event_open(0x0, 0x0, 0xf8bf, 0xffffffffffffffff, 0x0) lseek(0xffffffffffffffff, 0x0, 0x0) r1 = pidfd_open(0x0, 0x0) r2 = dup(r1) mq_notify(r2, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8902, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2000003, 0x1f012, r3, 0x0) pipe(&(0x7f00000003c0)) pipe2$9p(&(0x7f0000000080), 0x4000) ftruncate(0xffffffffffffffff, 0x7f) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_INO_PATHS(0xffffffffffffffff, 0xc0389423, &(0x7f0000000180)={0xfffffffffffffffd, 0x20, [0x8, 0x4, 0x200, 0x9], &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0]}) syz_io_uring_setup(0x19b8, &(0x7f0000003480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, r2}, &(0x7f00004ee000/0x4000)=nil, &(0x7f0000200000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000240)) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r0, 0x0) getpeername$unix(r2, &(0x7f00000001c0)=@abs, &(0x7f00000000c0)=0x6e) [ 1258.085791] ? build_open_flags+0x6f0/0x6f0 [ 1258.087005] ? loop_set_status_old+0x250/0x250 [ 1258.088262] blkdev_ioctl+0x291/0x710 [ 1258.089167] ? blkdev_common_ioctl+0x1930/0x1930 [ 1258.090281] ? selinux_file_ioctl+0xb6/0x270 [ 1258.091301] block_ioctl+0xf9/0x140 [ 1258.092160] ? blkdev_read_iter+0x1c0/0x1c0 [ 1258.093165] __x64_sys_ioctl+0x19a/0x210 [ 1258.094099] do_syscall_64+0x33/0x40 [ 1258.094956] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1258.096141] RIP: 0033:0x7fb6c02f68d7 [ 1258.097007] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1258.101279] RSP: 002b:00007fb6bd86bf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1258.103027] RAX: ffffffffffffffda RBX: 00007fb6c0340970 RCX: 00007fb6c02f68d7 [ 1258.104681] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1258.106324] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1258.107987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1258.109631] R13: 0000000000000004 R14: 0000000020000058 R15: 0000000000000001 [ 1258.145346] loop0: detected capacity change from 0 to 2048 [ 1258.178990] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (2 blocks) VM DIAGNOSIS: 08:23:05 Registers: info registers vcpu 0 RAX=1ffffffff0c40f47 RBX=2514f928cc045827 RCX=0000000000000533 RDX=ffffffff86207a20 RSI=0000000000000008 RDI=ffffffff86207a38 RBP=ffffffff86827f98 RSP=ffff888016df7be8 R8 =0000000000000000 R9 =ffffffff868716cf R10=fffffbfff0d0e2d9 R11=0000000000000001 R12=ffff88800d009a40 R13=ffff88800d00a388 R14=dffffc0000000000 R15=0000000000000001 RIP=ffffffff8126fd71 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f605d4258c0 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb6bd86d000 CR3=000000000eba4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ffffffffffffffffffffffffffffffff XMM01=00000000000000000048544150564544 XMM02=ffffffffffffffff00000000000000ff XMM03=696e656420737365636341002f737973 XMM04=00005636d15abc0000005636d15abbe0 XMM05=0100000000ff01000000000000000000 XMM06=ffffffff0000000000005636d15b25f0 XMM07=00000000000000000000000000000000 XMM08=7269762f736563697665642f7379732f XMM09=00000000000000000000000000000000 XMM10=00000000000020000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=000000000000003a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822e5c51 RDI=ffffffff879f8240 RBP=ffffffff879f8200 RSP=ffff8880446972a8 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=000000000000003a R13=000000000000003a R14=ffffffff879f8200 R15=dffffc0000000000 RIP=ffffffff822e5ca8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f46684dd700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffaf9a41000 CR3=000000000ea7a000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000ff0000 XMM01=6a6e695f31313230385f7a7973006273 XMM02=000000000000000000ffffffff000000 XMM03=00007f466b04e7c800007f466b04e7c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000