rf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x96, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setxattr$security_capability(0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r0, 0x0, 0x0, 0x1000002) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x10000, 0x0) ftruncate(r1, 0x80000000) [ 1334.363474] FAULT_INJECTION: forcing a failure. 10:19:07 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 2) [ 1334.363474] name failslab, interval 1, probability 0, space 0, times 0 [ 1334.366219] CPU: 0 PID: 9925 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1334.367684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1334.369414] Call Trace: [ 1334.369972] dump_stack+0x107/0x167 [ 1334.370754] should_fail.cold+0x5/0xa [ 1334.371554] ? create_object.isra.0+0x3a/0xa30 [ 1334.372500] should_failslab+0x5/0x20 [ 1334.373298] kmem_cache_alloc+0x5b/0x310 [ 1334.374156] create_object.isra.0+0x3a/0xa30 [ 1334.375098] kmemleak_alloc_percpu+0xa0/0x100 [ 1334.376043] pcpu_alloc+0x4e2/0x1240 [ 1334.376842] ? io_tctx_exit_cb+0xf0/0xf0 [ 1334.377699] percpu_ref_init+0x31/0x3d0 [ 1334.378556] io_uring_setup+0x47a/0x2980 [ 1334.379421] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1334.380451] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1334.381528] ? wait_for_completion_io+0x270/0x270 [ 1334.382592] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1334.383689] ? syscall_enter_from_user_mode+0x1d/0x50 10:19:07 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, 0x0, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) [ 1334.384769] do_syscall_64+0x33/0x40 [ 1334.385686] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1334.386767] RIP: 0033:0x7fc39eed2b19 [ 1334.387542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1334.391384] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1334.392980] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1334.394486] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1334.395975] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1334.397455] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1334.398953] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:19:07 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x6, 0x0) 10:19:07 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)={0x20000001}) [ 1334.475379] FAULT_INJECTION: forcing a failure. [ 1334.475379] name failslab, interval 1, probability 0, space 0, times 0 [ 1334.478073] CPU: 1 PID: 9931 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1334.479633] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1334.481503] Call Trace: [ 1334.482104] dump_stack+0x107/0x167 [ 1334.482940] should_fail.cold+0x5/0xa [ 1334.483811] ? io_uring_setup+0x258/0x2980 [ 1334.484769] should_failslab+0x5/0x20 [ 1334.485632] kmem_cache_alloc_trace+0x55/0x320 [ 1334.486682] io_uring_setup+0x258/0x2980 [ 1334.487610] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1334.488703] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1334.489847] ? wait_for_completion_io+0x270/0x270 [ 1334.490977] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1334.492165] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1334.493338] do_syscall_64+0x33/0x40 [ 1334.494182] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1334.495358] RIP: 0033:0x7fc343bc8b19 [ 1334.496213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1334.500379] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1334.502110] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1334.503733] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1334.505340] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1334.506957] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1334.508575] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:19:07 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="25351c6f2b8f4c7f5a05f98a79856e358f25ee949038af2e20455a4336873b"]) 10:19:07 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x0, 0x1a0}, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) 10:19:07 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 4) 10:19:07 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 9) 10:19:07 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x7, 0x0) [ 1334.635863] FAULT_INJECTION: forcing a failure. [ 1334.635863] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1334.638458] CPU: 0 PID: 9942 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1334.639898] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1334.641647] Call Trace: [ 1334.642209] dump_stack+0x107/0x167 [ 1334.642988] should_fail.cold+0x5/0xa [ 1334.643809] __alloc_pages_nodemask+0x182/0x600 [ 1334.644795] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1334.646064] ? lock_downgrade+0x6d0/0x6d0 [ 1334.646956] alloc_pages_current+0x187/0x280 [ 1334.647888] kmalloc_order+0x35/0x160 [ 1334.648695] kmalloc_order_trace+0x14/0xa0 [ 1334.649585] io_uring_setup+0x33c/0x2980 [ 1334.650457] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1334.651484] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1334.652542] ? wait_for_completion_io+0x270/0x270 [ 1334.653583] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1334.654703] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1334.655798] do_syscall_64+0x33/0x40 [ 1334.656585] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1334.657658] RIP: 0033:0x7fcf2a53eb19 [ 1334.658447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1334.662312] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1334.663923] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1334.665430] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1334.666949] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1334.668440] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1334.670154] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1334.718733] FAULT_INJECTION: forcing a failure. [ 1334.718733] name failslab, interval 1, probability 0, space 0, times 0 [ 1334.721549] CPU: 1 PID: 9946 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1334.723173] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1334.725149] Call Trace: [ 1334.725712] dump_stack+0x107/0x167 [ 1334.726592] should_fail.cold+0x5/0xa [ 1334.727523] ? create_object.isra.0+0x3a/0xa30 [ 1334.728558] should_failslab+0x5/0x20 [ 1334.729413] kmem_cache_alloc+0x5b/0x310 [ 1334.730402] create_object.isra.0+0x3a/0xa30 [ 1334.731437] kmemleak_alloc_percpu+0xa0/0x100 [ 1334.732456] pcpu_alloc+0x4e2/0x1240 [ 1334.733378] ? io_tctx_exit_cb+0xf0/0xf0 [ 1334.734364] percpu_ref_init+0x31/0x3d0 [ 1334.735356] io_uring_setup+0x47a/0x2980 [ 1334.736341] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1334.737519] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1334.738748] ? wait_for_completion_io+0x270/0x270 [ 1334.739953] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1334.741230] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1334.742449] do_syscall_64+0x33/0x40 [ 1334.743275] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1334.744522] RIP: 0033:0x7fc39eed2b19 [ 1334.745392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1334.749685] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1334.751313] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1334.752825] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1334.754343] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1334.755873] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1334.757387] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:19:31 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 10) 10:19:31 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x8, 0x0) 10:19:31 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x1, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x105000, 0x2) sendfile(r0, r1, 0x0, 0x100000001) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x400c6615, 0x0) 10:19:31 executing program 4: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14) connect$802154_dgram(r1, &(0x7f0000000080), 0x14) sendmmsg$sock(r1, &(0x7f00000021c0)=[{{0x0, 0x2303, 0x0}}], 0x324, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x8000000) bind$802154_dgram(r2, &(0x7f0000000040)={0x24, @long={0x3, 0x2, {0xaaaaaaaaaaaa0302}}}, 0x14) r3 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ID(r3, 0x80082407, &(0x7f00000000c0)) readv(r0, &(0x7f0000000500)=[{&(0x7f0000000100)=""/3, 0x3}, {&(0x7f0000000b80)=""/4096, 0x1000}, {&(0x7f0000000140)=""/92, 0x5c}, {&(0x7f00000001c0)=""/191, 0xbf}, {&(0x7f0000000280)=""/89, 0x59}, {&(0x7f0000000400)=""/96, 0x60}], 0x6) setsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0) getdents64(0xffffffffffffffff, &(0x7f0000000340)=""/188, 0xbc) connect$802154_dgram(0xffffffffffffffff, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, 0x0) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0) sendto(0xffffffffffffffff, &(0x7f0000001b00), 0x0, 0x0, 0x0, 0x0) 10:19:31 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)={0x20000001}) 10:19:31 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 3) 10:19:31 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x1a0}, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) 10:19:31 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 5) [ 1358.073404] FAULT_INJECTION: forcing a failure. [ 1358.073404] name failslab, interval 1, probability 0, space 0, times 0 [ 1358.075134] CPU: 0 PID: 9964 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1358.076084] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1358.077214] Call Trace: [ 1358.077577] dump_stack+0x107/0x167 [ 1358.078075] should_fail.cold+0x5/0xa [ 1358.078608] ? create_object.isra.0+0x3a/0xa30 [ 1358.079238] should_failslab+0x5/0x20 [ 1358.079760] kmem_cache_alloc+0x5b/0x310 [ 1358.080318] create_object.isra.0+0x3a/0xa30 [ 1358.080918] ? kasan_unpoison_shadow+0x33/0x50 [ 1358.081544] kmalloc_order+0xfe/0x160 [ 1358.082067] kmalloc_order_trace+0x14/0xa0 [ 1358.082660] io_uring_setup+0x33c/0x2980 [ 1358.083216] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1358.083877] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1358.084564] ? wait_for_completion_io+0x270/0x270 [ 1358.085238] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1358.085953] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1358.086667] do_syscall_64+0x33/0x40 [ 1358.087176] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1358.087872] RIP: 0033:0x7fcf2a53eb19 [ 1358.088380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1358.090891] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1358.091925] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1358.092890] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1358.093827] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1358.094796] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1358.095758] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1358.116256] FAULT_INJECTION: forcing a failure. [ 1358.116256] name failslab, interval 1, probability 0, space 0, times 0 [ 1358.119529] CPU: 1 PID: 9967 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1358.121054] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1358.122849] Call Trace: [ 1358.123408] dump_stack+0x107/0x167 [ 1358.124196] should_fail.cold+0x5/0xa [ 1358.125019] ? percpu_ref_init+0xd8/0x3d0 [ 1358.125919] should_failslab+0x5/0x20 [ 1358.126749] kmem_cache_alloc_trace+0x55/0x320 [ 1358.127729] ? io_tctx_exit_cb+0xf0/0xf0 [ 1358.128604] percpu_ref_init+0xd8/0x3d0 [ 1358.129464] io_uring_setup+0x47a/0x2980 [ 1358.130339] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1358.131390] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1358.132472] ? wait_for_completion_io+0x270/0x270 [ 1358.133539] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1358.134670] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1358.135772] do_syscall_64+0x33/0x40 [ 1358.136571] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1358.137675] RIP: 0033:0x7fc39eed2b19 [ 1358.138466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1358.142409] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1358.144043] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1358.145572] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1358.147094] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1358.148613] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1358.150131] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:19:31 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x9, 0x0) [ 1358.190032] FAULT_INJECTION: forcing a failure. [ 1358.190032] name failslab, interval 1, probability 0, space 0, times 0 [ 1358.191539] CPU: 0 PID: 9977 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1358.192432] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1358.193524] Call Trace: [ 1358.193877] dump_stack+0x107/0x167 [ 1358.194355] should_fail.cold+0x5/0xa [ 1358.194867] ? create_object.isra.0+0x3a/0xa30 [ 1358.195469] should_failslab+0x5/0x20 [ 1358.195970] kmem_cache_alloc+0x5b/0x310 [ 1358.196512] create_object.isra.0+0x3a/0xa30 [ 1358.197092] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1358.197759] kmem_cache_alloc_trace+0x151/0x320 [ 1358.198378] io_uring_setup+0x258/0x2980 [ 1358.198923] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1358.199554] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1358.200212] ? wait_for_completion_io+0x270/0x270 [ 1358.200860] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1358.201545] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1358.202226] do_syscall_64+0x33/0x40 [ 1358.202724] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1358.203396] RIP: 0033:0x7fc343bc8b19 [ 1358.203884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1358.206287] RSP: 002b:00007fc34111d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1358.207289] RAX: ffffffffffffffda RBX: 00007fc343cdc020 RCX: 00007fc343bc8b19 [ 1358.208220] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1358.209153] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1358.210079] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1358.210982] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:19:31 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)={0x20000001}) 10:19:31 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 11) [ 1358.312932] FAULT_INJECTION: forcing a failure. [ 1358.312932] name failslab, interval 1, probability 0, space 0, times 0 [ 1358.314508] CPU: 0 PID: 9982 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1358.315478] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1358.316515] Call Trace: [ 1358.316845] dump_stack+0x107/0x167 [ 1358.317303] should_fail.cold+0x5/0xa [ 1358.317787] ? create_object.isra.0+0x3a/0xa30 [ 1358.318354] should_failslab+0x5/0x20 [ 1358.318837] kmem_cache_alloc+0x5b/0x310 [ 1358.319332] create_object.isra.0+0x3a/0xa30 [ 1358.319879] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1358.320496] kmem_cache_alloc_trace+0x151/0x320 [ 1358.321081] ? io_tctx_exit_cb+0xf0/0xf0 [ 1358.321580] percpu_ref_init+0xd8/0x3d0 [ 1358.322074] io_uring_setup+0x47a/0x2980 [ 1358.322583] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1358.323185] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1358.323808] ? wait_for_completion_io+0x270/0x270 [ 1358.324405] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1358.325048] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1358.325688] do_syscall_64+0x33/0x40 [ 1358.326152] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1358.326776] RIP: 0033:0x7fc39eed2b19 [ 1358.327234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1358.329502] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1358.330443] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1358.331303] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1358.332160] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1358.333008] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1358.333858] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:19:48 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0xa, 0x0) 10:19:48 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) 10:19:48 executing program 4: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x11) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x3}}, './file0\x00'}) ioctl$AUTOFS_IOC_CATATONIC(r1, 0x9362, 0x0) 10:19:48 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 12) 10:19:48 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000200)={0x20000001}) 10:19:48 executing program 3: ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f00000006c0), 0xffffffffffffffff) r0 = getpgrp(0xffffffffffffffff) kcmp(0x0, r0, 0x1, 0xffffffffffffffff, 0xffffffffffffffff) 10:19:48 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 4) 10:19:48 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 6) [ 1375.255258] FAULT_INJECTION: forcing a failure. [ 1375.255258] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1375.257207] CPU: 0 PID: 9999 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1375.258205] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1375.259414] Call Trace: [ 1375.259807] dump_stack+0x107/0x167 [ 1375.260341] should_fail.cold+0x5/0xa [ 1375.260895] __alloc_pages_nodemask+0x182/0x600 [ 1375.261576] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1375.262450] ? cap_capable+0x1cd/0x230 [ 1375.263036] alloc_pages_current+0x187/0x280 [ 1375.263676] __get_free_pages+0xc/0xa0 [ 1375.264246] io_uring_setup+0xe27/0x2980 [ 1375.264846] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1375.265580] ? wait_for_completion_io+0x270/0x270 [ 1375.266248] FAULT_INJECTION: forcing a failure. [ 1375.266248] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1375.266294] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1375.269958] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1375.270709] do_syscall_64+0x33/0x40 [ 1375.271245] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1375.271981] RIP: 0033:0x7fc39eed2b19 [ 1375.272515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1375.275161] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1375.276253] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1375.277275] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1375.278297] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1375.279314] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1375.280327] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1375.281388] CPU: 1 PID: 10003 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1375.283024] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1375.284914] Call Trace: [ 1375.285538] dump_stack+0x107/0x167 [ 1375.286401] should_fail.cold+0x5/0xa [ 1375.287294] __alloc_pages_nodemask+0x182/0x600 [ 1375.288357] ? lock_release+0x680/0x680 [ 1375.289263] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1375.290663] ? lock_downgrade+0x6d0/0x6d0 [ 1375.291650] alloc_pages_current+0x187/0x280 [ 1375.292690] kmalloc_order+0x35/0x160 [ 1375.293589] kmalloc_order_trace+0x14/0xa0 [ 1375.294566] io_uring_setup+0x33c/0x2980 [ 1375.295504] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1375.295797] FAULT_INJECTION: forcing a failure. [ 1375.295797] name failslab, interval 1, probability 0, space 0, times 0 [ 1375.296640] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1375.296659] ? wait_for_completion_io+0x270/0x270 [ 1375.296711] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1375.301685] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1375.302879] do_syscall_64+0x33/0x40 [ 1375.303746] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1375.304935] RIP: 0033:0x7fc343bc8b19 [ 1375.305790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1375.310086] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1375.311873] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1375.313546] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1375.315245] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1375.316943] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1375.318623] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1375.320354] CPU: 0 PID: 9991 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1375.321328] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1375.322499] Call Trace: [ 1375.322879] dump_stack+0x107/0x167 [ 1375.323398] should_fail.cold+0x5/0xa [ 1375.323940] ? io_uring_setup+0x40b/0x2980 [ 1375.324543] should_failslab+0x5/0x20 [ 1375.325091] kmem_cache_alloc_trace+0x55/0x320 [ 1375.325740] io_uring_setup+0x40b/0x2980 [ 1375.326315] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1375.327020] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1375.327735] ? wait_for_completion_io+0x270/0x270 [ 1375.328437] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1375.329178] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1375.329908] do_syscall_64+0x33/0x40 [ 1375.330438] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1375.331167] RIP: 0033:0x7fcf2a53eb19 [ 1375.331694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1375.334270] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1375.335351] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1375.336356] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1375.337364] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1375.338365] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1375.339365] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:19:48 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, 0x0, &(0x7f00000003c0)) 10:19:48 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000200)={0x20000001}) 10:19:48 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, 0x0, &(0x7f00000003c0)) 10:19:48 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 5) 10:19:48 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 13) 10:19:48 executing program 4: syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x10) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x8000000) getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000), 0x10) [ 1375.478320] FAULT_INJECTION: forcing a failure. [ 1375.478320] name failslab, interval 1, probability 0, space 0, times 0 [ 1375.479925] CPU: 0 PID: 10015 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1375.480844] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1375.481934] Call Trace: [ 1375.482287] dump_stack+0x107/0x167 [ 1375.482782] should_fail.cold+0x5/0xa [ 1375.483295] ? create_object.isra.0+0x3a/0xa30 [ 1375.483894] should_failslab+0x5/0x20 [ 1375.484397] kmem_cache_alloc+0x5b/0x310 [ 1375.484938] create_object.isra.0+0x3a/0xa30 [ 1375.485517] ? kasan_unpoison_shadow+0x33/0x50 [ 1375.486122] kmalloc_order+0xfe/0x160 [ 1375.486629] kmalloc_order_trace+0x14/0xa0 [ 1375.487196] io_uring_setup+0x33c/0x2980 [ 1375.487736] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1375.488372] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1375.489036] ? wait_for_completion_io+0x270/0x270 [ 1375.489688] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1375.490377] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1375.491073] do_syscall_64+0x33/0x40 [ 1375.491568] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1375.492243] RIP: 0033:0x7fc343bc8b19 [ 1375.492737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1375.495149] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1375.496145] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1375.497073] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1375.498005] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1375.498943] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1375.499876] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:19:48 executing program 3: ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000540)=ANY=[@ANYBLOB="0106000000000000feff0000258c0a25a3453a716642117d91e6ded6c5e2c66386b2b18f85874cd5a2ce44d5cf2103f904eaffa184915bde8e6ba48bb61f59eb03af3f0db1bc6faadf9ab80000000000000fffb6c4c47c97149648a73a741c1c10589de8487dd747", @ANYRES32=0xffffffffffffffff, @ANYRES32]) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_DEL_TX_TS(r1, &(0x7f0000000380)={&(0x7f0000000180), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000800}, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(0xffffffffffffffff, 0xc008240a, &(0x7f0000000040)) openat$cgroup_type(0xffffffffffffffff, 0x0, 0x2, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x18}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000003c0)=@IORING_OP_TIMEOUT_REMOVE, 0xff) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) r3 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r3, 0x107, 0xe, &(0x7f0000000000), 0x4) sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xf8}}, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r2, 0x942e, 0x0) syz_open_dev$vcsa(&(0x7f0000000080), 0x5, 0x680) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffefffffffffff, 0xffffffffffffffff, 0x2) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000a00)=ANY=[@ANYBLOB="f80300001d60700c000000000000000004000200"], 0x3f8}, 0x1, 0x0, 0x0, 0x40000}, 0x0) openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x414180, 0x0) r5 = syz_genetlink_get_family_id$wireguard(&(0x7f00000002c0), r0) sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000}, 0xffffff57, &(0x7f0000000400)={&(0x7f0000000300)={0x50, r5, 0x400, 0x70bd2a, 0x25dfdbfc, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @c}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e21}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e23}, @WGDEVICE_A_IFINDEX={0x8}]}, 0x50}, 0x1, 0x0, 0x0, 0x4008000}, 0x41) 10:19:48 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0xb, 0x0) [ 1375.545720] FAULT_INJECTION: forcing a failure. [ 1375.545720] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1375.548645] CPU: 1 PID: 10024 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1375.550292] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1375.552330] Call Trace: [ 1375.552970] dump_stack+0x107/0x167 [ 1375.553884] should_fail.cold+0x5/0xa [ 1375.554849] __alloc_pages_nodemask+0x182/0x600 [ 1375.555991] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1375.557459] ? cap_capable+0x1cd/0x230 [ 1375.558411] alloc_pages_current+0x187/0x280 [ 1375.559493] __get_free_pages+0xc/0xa0 [ 1375.560432] io_uring_setup+0xf9a/0x2980 [ 1375.561455] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1375.562687] ? wait_for_completion_io+0x270/0x270 [ 1375.563901] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1375.565151] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1375.566409] do_syscall_64+0x33/0x40 [ 1375.567336] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1375.568577] RIP: 0033:0x7fc39eed2b19 [ 1375.569456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1375.573884] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1375.575739] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1375.577452] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1375.579184] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1375.580901] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1375.582614] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:20:04 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 6) 10:20:04 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, 0x0, &(0x7f00000003c0)) 10:20:04 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x30, 0x1, 0x4, 0x401, 0x0, 0x0, {}, [@NFULA_CFG_MODE={0xa, 0x2, {0x3, 0x2}}, @NFULA_CFG_CMD={0x5, 0x1, 0x1}, @NFULA_CFG_TIMEOUT={0x8}]}, 0x30}}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x200801, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r6, 0x2ff, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000380)={0x9c, r2, 0x400, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_MESH_SETUP={0x14, 0x70, [@NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL={0x5}, @NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL={0x5}]}, @NL80211_ATTR_MESH_SETUP={0x38, 0x70, [@NL80211_MESH_SETUP_AUTH_PROTOCOL={0x5, 0x8, 0x8}, @NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC={0x5, 0x6, 0x1}, @NL80211_MESH_SETUP_USERSPACE_AUTH={0x4}, @NL80211_MESH_SETUP_USERSPACE_AMPE={0x4}, @NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC={0x5}, @NL80211_MESH_SETUP_USERSPACE_AUTH={0x4}, @NL80211_MESH_SETUP_AUTH_PROTOCOL={0x5, 0x8, 0x5}, @NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL={0x5}]}, @NL80211_ATTR_HANDLE_DFS={0x4}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x401}, @NL80211_ATTR_BSS_BASIC_RATES={0x24, 0x24, [{0x3, 0x1}, {0x6c, 0x1}, {0x12, 0x1}, {0x36}, {0x30, 0x1}, {0x6c, 0x1}, {0x12, 0x1}, {0x9}, {0x5, 0x1}, {0x1a, 0x1}, {0x1, 0x1}, {0x3}, {0x36}, {0xc}, {0x1b, 0x1}, {0x16, 0x1}, {0x18}, {0x3, 0x1}, {0x6, 0x1}, {0x48, 0x1}, {0x30, 0x1}, {0x3}, {0x1b}, {0x48, 0x1}, {0x6c, 0x1}, {0x30, 0x1}, {0x12}, {0x1, 0x1}, {0x48, 0x1}, {0x1}, {0x94, 0x1}, {0x30}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x20008050}, 0x20000000) sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r2, 0x2ff, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x20, r2, 0x10, 0x8, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x0, 0x28}}}}, ["", "", "", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x800) 10:20:04 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 14) 10:20:04 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000200)={0x20000001}) 10:20:04 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0xc, 0x0) 10:20:04 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file0\x00', 0x240000, 0x116) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000340)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000002a80)={{r0}, r1, 0x2, @unused=[0xa4, 0xa2, 0x1, 0x8001], @subvolid=0xe9e}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x10, r2, 0x0) r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r5 = syz_io_uring_complete(r3) write$tcp_congestion(0xffffffffffffffff, &(0x7f0000000040)='reno\x00', 0x5) sendfile(r5, 0xffffffffffffffff, 0x0, 0xffffffffffff45ac) write$binfmt_elf64(r4, &(0x7f0000003a80)=ANY=[@ANYRES16, @ANYRESDEC=r2, @ANYRES64, @ANYBLOB="8aa8a9ba7394a134ca5de39831338a3e11c9da023822e4bfa9fcd016be1b95128a3070f48e5ad155bc57b80f3f46ea729efc3d7e4590073b9691f9ddc747e9f91761ed7400a950f0845402b0109bfa5e4c517f6881d17c19669623274d481dbf8409340836e08dc8f5a636ee574ddab3677951ac19768c8af2c02b868be553ba1f204706612e8b92119113982bf470e38476bd00efed8c333c21d2bb455ad2c33001c3f9ec3aaf4a62f539e9c864810b7b5585a2fbe5acb7ae130b9c54131c5cad334b3dec9d59a57787f7dac08bc14e3b278d457cadc25be8dd8d1f9cba70127747898ea1e0f6eb51392ec50ddd365c09e8c53bc588cb1b40c7e32eede4a8cab15fbd105fc7d5ced44c7fe81c4553adba6c48a80e4d050e1c40a41d55c11a9fd6eba2d88a350d6abed78c830a489ab3997532e853eff7de96742b50d3a01423d7188478b50c3b8b6ff18cb8bbf29b529a88814bc6797b3d71e9d3910c2b188b050e55c574e62fac0b9c0abaeeb953932bf41ae9c461e7ac9c7effc7ec842de7e05b18e3cc760f16e95db6d9416d07f5dab49c24f6ac22ad79c25421dfacb86170c4178657fa51da70ad6887a3a5ccf6fac9ee311ac6d8064f9550eff624dc47486b68db0f517962071d82c6659f59a86e2a3492c02ed1af87354f82cfaa2537f0acf672a1ca4b7fd20a18d4d4c2cdf7f3b728122bb3e3482641272586ae0cde6175bf4d239fb97412babfce86e6c47fc71fc02db45bc6ae62bd164ef8e85329d799ca17e676acfbfff3713c404ffc2a6de7ab4971aa1692a33874b143e08baadc23e1f272e0e700b37479a99de739494e5539e29b8407cc06f516ca3158cb25fa4443f5e068ae469a548104c497692955df108ee859a5d8a8dbb3c9d684ccddc49ce8a94496b6a404548d3f0ed6f6cce31eda5d73d4b1a6a7e23a7e202b671f56c8299cce479ca7027b7264bdda0b05b3f02c9958d414b77094d4b5cfc16450002fd12511a88ecdad8583a83cd1d843c1991781519cdc6b2232a40eabb95a79c8b53095c04bc0e3409acd7b773f8eaaadaeace6602dfe88a1a4c55d2ea786fdf8b7b1144ddafe453e5f2af08908ba8734e617bb32d05667881d5714e2a24271b2125cacca0e013d355997d7dab9378f5065df47c5a9d194d88c130ef6b0617372f7752820ed8c1a4dd6f5d9a3ef96c04d29679567ccd2fd828e7a3c9492a25ea67b3dfb28c797a2678e45b2eaa90b6698a97053db1985de33108406859143ec5142e677cb863f71d7c6df364014f8b89bc3f5c464b0355fbd1171376552f6843c983b744c192fa560df23facee468968f69af5f2197349af670bc7e01a7d714ef1649840d90d50d7f90d565101309b5a17f88811f547b4ec36f23558f451b189686f9552a4bac4d702d6ab8b89fda7de4f861b2c5c8d90be57bb3ae342d64da2741e3f939a594bcad2730a1fe6fc43504e1b1076e35092c6902fa9e80c6e7e8ccda25e14ddb8f4f2014665002f29dc2270cac325d850ae4bdb33b4bb09be6a41dda9cbd897284dc668200f0273b47d880111028a39ff161e8d0c4a8542b9a09a1010db0bca9f3f783309a599d0952ef824634b20de28665294d52c4790969381bf46f1eb5982fd3d71c64aede1f5b5ad2c7eee176bef77bb127c209a428c0412946da88679c24e6a39d9d1b148834e8f61c803b28c192d94247186d48231d4b3114717c6517aefecc4f3ce17945ebccf558c48f1f6212dad217faffbbef24989efa256129fb074524473b01192c2dc45c2c3d9e597fd8eb5c4624369cd67937f0b8aa075aa703572c10e3d205fd5601a86ede8bfbb517f97a87323654ee9c5d8dd9f66978020abffc2b674b9eaf980cfa7469f38ed35e378cf1ecaa119b0a1e13c4e9175490291890760db41366cc7c65699b80fe233f0054a610aa9ed5e82e38ad0f99ca48654e908f56c1a00bdcaf577bff53ee1cd3e4808cea218d84210e22529c9c3a2b3a9a48cb8fc3768b66160329f5ad540f3007ae9053f3fe43fea21f7b9983ba03d205726288357b9b9d0d6b91dc4254399aa6741dd931aeb6e7db633317a802c064fa6788f90316548ab6f5a2674c95eaf5e20f5155c272bc313d0edbcf90155ed4eaa0b14d3a13b3a8c05c93bf8a115f5bc457957fa1540fb0695c98a18ab7892439ca7f41f21b056d09a1a017cc9f8e42f9c8e88fe47adc114618f2f2ec1cd1c397894fed42495ea43ddd155a15bdf350ce2e2080f690b9c82e93f4c9943e3a21ce65f7aaa54aeb18ee177476aee02d9b0e93432442e27841f3bd4962d52592e0ec2784470f19630aed10e9b57dcfd375cf518a2ed78887f4a9897d5c4d2e7e6bf4f8e7dced142a46491ace85fa21440ff74e8316405f5d3084f1a0e67e1fd9eb9789ae817b2f461b7eb430a43d22ab64bad6360add6116a53f0f784199eb48301e7bbd8e23235bd4472198e5248b89268d47ba4c730c808ca5ab65c11de4c5beccfe73ff33e1ce170405fdbd464f0dd9861162bbf262d4f5d207361b26273646fe61f4b1932a88f7a786ddd3ca4b4a636781e2ec891639519e1e121c7ce34e8d0e4904ca082a65a9079fdd81114f2eab95ae834fa8326ef6423802768411c43975166a219923be7e255bd192231417257d15892e477cc42309a7c27cd156e385c81f76152940397ae9619cd45e8b3d8c5a7359ba9cfdb5c098c606522d80da9272fab8d6cc872094ee1df370eb218cb6f8e6e591ee881f495a0d04e5d98a4a5c9f6d5c382aa62bd996ed8c20e5a25fd93f3d9a5920511775542cc3ca6e8687faf54a2df8abe93ec5fdba0fcb30b5bf2cb1aac23104fc5c0fc7bdbe352050c5246e59d77ec3ff739690cea112152c15cc6c5d5266fe77df7137809e80774921134ce99a98368e00e16063e4797060c1ddba1c3b265f4a12645bdb9d85d68aaf44cbef7be602dea0ef4641855fb267d8309c5f9ec63cc55ca2b8e26f6d977023184b46fcbe625cdb2f52d6f78c88e36c89900b950c75a8d328dabdfc5b4aad3850f0fc567b494de9cdc5aabe8e1c5f99dd4db1ae5b9006528092dc5488f02f4ed415aa619c04fba2f39dad211c1021d1a8c0927aaf6786504f28e2e787ae25425b1bef918bdbdaa10d60cf84b3c5072659f0e3929f1aa2e81f97df50624677834b00c484a972835b05853de1419942fc564b7f78048033dde74f7a175cfaae21b4259886af452e43a52a9542b856645fbc72f17017dd202ff78831b52031ee17acc00d2c6ef29d9934ada24f24561adfcd9544925d256724dca223aedce982f478f94d343ff1d9a57d64b891dfb5ca92b36160ef7d86f4c1c2105fb03d8b853ceef2826b459bab02a2447725a42e0f5ed2a70bdc60a7b5a0b5bca54aaa2aae02e59769527ad090ddddedc0e0ee203652ad3689f21eb4be296bea84bc2936fea07aaeb791c7a794109fd1d2e8e091839e88ebd8c73b716aeda726517bb785f6af591f6f5d66d81fdbe38299f909ce72f1e52ba024a52dd45a46bf2bb313d2250475abf9750b9bc64bbf70a41dd8079ffdabb4234b5509a88dee7967f9bcdf541dd28033b4aeed8304debf5a7f21a72844f4cc8b900fc274d46e500456458ca1c7cc0542ea037d8665199a0b2a753864789db32e7b1c42a1c0ff2ace299abe09f9c5e415519ac290c757e9f173ff1eadbae68ae83193622a1da326177b9f61381231fa00a4d63224e5428978fb97afbe6fb73a4429e113d5841e966303ffed6619fb143cbd17cf5944920280755c49867c13e0463518ffdeb89693c446387c2118b2101a03627e759ce48726aa1b744962fc564c3d675156d8db8f4cb9ebbe3172e5c9713779a2499a8907c517b87de198673b8fddf5d6fb38262a7e575c66a9a144bb232dac899a5dea51543728bca64edf33a754bfb8d4173bbbc7206726f16dc35673b167b5a286daa028c289c231d4afaed5bca5df3b571a8920f6831c4a1ce2a1eda7a031931d9501cbb4beccdcf1efafedc99928bfe280092b96064fda72d96c37e1402369fab0e2bc6d443da62890a53477971246dcc81b6e9be6837ab23f246c2acbd55e8169239f1bfbd33f1f61ab125c9f8553d80bdb102841c6f364994d7dfd7f457392f610067ae1201d5da22cc95cee06e6059bade14e0aa1dce4a17b0522d83baebaa219873c4085b060098bb697671b105551ae1ad90c7c64c6e8f0170f4dc702946461cb3bab6e29770e90cb147bf1c8eec9986698bfc35942401ddc449a9a20a562d42c6d7893b857d8ceae41e16bb305486f0e7e6d265c21fd97c46ffb53c974e80ea4a7b1eac579599b1dae22d2a24aac2c1bdf487f728af41f0c3b94c4b91fd9b3822ac5f60e2f4882c693d5758cd9dcc0b4df86e4d1529ce924f8655f737f532427049ea54d8627fcb88debe9b1587318dc784d985a78a9c45ae3651b16249b239a8f420fc76f7fcbb57cec3faacdd26e7ae4a89d9a0c25a39515da26ea6d7316068661a53e9117c7c89940210672bcc539a039ea1ae342b77e641f7fce3eee8d21e16db85bc26f8aad9885035952e0b994279e7898e25b0a308cca8c0153dfc9aab189caeb1b012d1af822234b202ac865cb281188258b4a4ee3e3d4365bf14a0ec3e146406d228752f4447853b739271b65ea99ab6a67f2d110c05607978c6e192af2b789597749d42bc0522ca50335c79066e35daa43cad396516c6c2c527244d45c2a18d9c683fd01128ffddf4a580bdf906f9853ea6baf721c6fd3772b31f7dd9b2c32b185443de3b13976af3b1a458f2b8f1310dc9aad20428d6f8bf89bda653b7e6c0a277e80ffc1a07230adbc1a1eac8d2baa106d7356ad7f5c40ce9d2238b1848e8abb126d2e3e9a086a779ead0cd53b1817fe4fa908bda91bb65578337ddee012aa88772f1677655b965a5c280864e86a9be7dbb5786ee384c27580d590fade98f98d6d67cf111e650c2feff1eb777c2f85697f2b9a3d95b64230304246eb466f2a5255a63deacadad108d2981964bd2be1e827a92b2ff232f5d1c0645ceb9bfab5f61e8a392cd1ab5846a64826a6567e724a8e5922f3c2e69106cf7173ff8f5a6b3b0fdf4e871a5b35c5b80a0398b66c58f6a2c8979c333560b477c5847248c6702198ad91decf741ce63aaf6504f84e2f4849b339377aae5fbde0c2f679f0096cacfa49d0f2e5d81bb8147b23e5ad09612933ba14c47ac04ce430e6df14babc742cd70048cb3a593900837ca81c82d72a73e00ad38eb1195b8f9fa34bb223c23f13b6dc94f26e018fcf31f180163859bb6fe25a94318d89f7b9f4ec6b182c57ea669c57a1b818b15631f0647d2d95eabd9d228341f5fb8cd82235765291b50e464d31186cbb440873086ad17c300529b1e2d1b9c5bcb808c85e2ab406d1c0809a6b96c02e2e894413af66e803d4837d56bf27aa54c52d248a21f057d1f0927280a064877c463fe310596b9a9a8587b5e5b68af2c223be764c7fd37beb4ad8238fdf49970c0ff0eb6e88d0dcb01e1eb32e63f3a96ee7e567018a0064a21d8e51c5791d75748b6420b195857028d9d79b4c367f909b3d5e112a8dfce8d74efd87cfe52635cda4c15a0aa5ef0f774fad0da7dfdc4a1db89fb1856af86118d54e335c6fb1c3bc0d05615476d42ecedac5349fdac1d61f2261fafa2aaa972cff8342803aefe21c35a4be37b4d41399f843d66857daf3052115597ff453281502bb20a6cf0a51c1dcfe660376cf414c8ea9cc0c96f63ad615d7fb5eec3be8af5c43b0b22911e7302b184f6225873218ee3c5b6875200e2e12b24cba9384f6e3e16d7d0ac426f7bc73", @ANYRES16=r4, @ANYRESHEX, @ANYRES32, @ANYRESOCT, @ANYRES64=r4], 0xfdef) syz_io_uring_complete(r3) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000900)={&(0x7f0000000200)=@l2tp6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)="a63a85", 0x3}], 0x1}, 0x0, 0x4008000}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) r6 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f00000005c0)=@updsa={0xf0, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}}, 0xf0}}, 0x0) syz_open_procfs(0x0, &(0x7f0000000080)='oom_adj\x00') r7 = syz_io_uring_setup(0x2bb9, &(0x7f0000000100)={0x0, 0xfffffffd, 0x2, 0x0, 0x396}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000200), &(0x7f0000002a40)) io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_bp={&(0x7f00000001c0)}, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x2}, 0x0, 0xffdffffdffffffff, 0xffffffffffffffff, 0x0) 10:20:04 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 7) [ 1391.732010] FAULT_INJECTION: forcing a failure. [ 1391.732010] name failslab, interval 1, probability 0, space 0, times 0 [ 1391.734410] CPU: 1 PID: 10038 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1391.735863] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1391.737606] Call Trace: [ 1391.738162] dump_stack+0x107/0x167 [ 1391.738950] should_fail.cold+0x5/0xa [ 1391.739751] ? io_uring_setup+0x40b/0x2980 [ 1391.740633] should_failslab+0x5/0x20 [ 1391.741439] kmem_cache_alloc_trace+0x55/0x320 [ 1391.742408] io_uring_setup+0x40b/0x2980 [ 1391.743270] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1391.744305] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1391.745365] ? wait_for_completion_io+0x270/0x270 [ 1391.746407] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1391.747503] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1391.748584] do_syscall_64+0x33/0x40 [ 1391.749365] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1391.750450] RIP: 0033:0x7fc343bc8b19 [ 1391.751236] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1391.755122] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1391.756712] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1391.758216] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1391.759728] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1391.760912] FAULT_INJECTION: forcing a failure. [ 1391.760912] name failslab, interval 1, probability 0, space 0, times 0 [ 1391.761220] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1391.761241] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1391.767123] CPU: 0 PID: 10044 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1391.768915] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1391.771465] Call Trace: [ 1391.772260] dump_stack+0x107/0x167 [ 1391.773361] should_fail.cold+0x5/0xa [ 1391.774507] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1391.776185] should_failslab+0x5/0x20 [ 1391.777321] kmem_cache_alloc_trace+0x55/0x320 [ 1391.778699] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1391.780320] io_uring_setup+0x14f6/0x2980 [ 1391.781634] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1391.783161] ? wait_for_completion_io+0x270/0x270 [ 1391.784448] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1391.785754] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1391.787045] do_syscall_64+0x33/0x40 [ 1391.787959] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1391.789221] RIP: 0033:0x7fc39eed2b19 [ 1391.790143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1391.794651] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1391.796435] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1391.797939] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1391.799475] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1391.800989] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1391.802520] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:20:04 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, 0xffffffffffffffff, &(0x7f0000000200)={0x20000001}) 10:20:04 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x30, 0x1, 0x4, 0x401, 0x0, 0x0, {}, [@NFULA_CFG_MODE={0xa, 0x2, {0x3, 0x2}}, @NFULA_CFG_CMD={0x5, 0x1, 0x1}, @NFULA_CFG_TIMEOUT={0x8}]}, 0x30}}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x200801, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r6, 0x2ff, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000380)={0x9c, r2, 0x400, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_MESH_SETUP={0x14, 0x70, [@NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL={0x5}, @NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL={0x5}]}, @NL80211_ATTR_MESH_SETUP={0x38, 0x70, [@NL80211_MESH_SETUP_AUTH_PROTOCOL={0x5, 0x8, 0x8}, @NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC={0x5, 0x6, 0x1}, @NL80211_MESH_SETUP_USERSPACE_AUTH={0x4}, @NL80211_MESH_SETUP_USERSPACE_AMPE={0x4}, @NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC={0x5}, @NL80211_MESH_SETUP_USERSPACE_AUTH={0x4}, @NL80211_MESH_SETUP_AUTH_PROTOCOL={0x5, 0x8, 0x5}, @NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL={0x5}]}, @NL80211_ATTR_HANDLE_DFS={0x4}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x401}, @NL80211_ATTR_BSS_BASIC_RATES={0x24, 0x24, [{0x3, 0x1}, {0x6c, 0x1}, {0x12, 0x1}, {0x36}, {0x30, 0x1}, {0x6c, 0x1}, {0x12, 0x1}, {0x9}, {0x5, 0x1}, {0x1a, 0x1}, {0x1, 0x1}, {0x3}, {0x36}, {0xc}, {0x1b, 0x1}, {0x16, 0x1}, {0x18}, {0x3, 0x1}, {0x6, 0x1}, {0x48, 0x1}, {0x30, 0x1}, {0x3}, {0x1b}, {0x48, 0x1}, {0x6c, 0x1}, {0x30, 0x1}, {0x12}, {0x1, 0x1}, {0x48, 0x1}, {0x1}, {0x94, 0x1}, {0x30}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x20008050}, 0x20000000) sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r2, 0x2ff, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x20, r2, 0x10, 0x8, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x0, 0x28}}}}, ["", "", "", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x800) [ 1391.908192] FAULT_INJECTION: forcing a failure. [ 1391.908192] name failslab, interval 1, probability 0, space 0, times 0 [ 1391.911398] CPU: 1 PID: 10046 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1391.912872] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1391.914624] Call Trace: [ 1391.915204] dump_stack+0x107/0x167 [ 1391.915985] should_fail.cold+0x5/0xa [ 1391.916788] ? create_object.isra.0+0x3a/0xa30 [ 1391.917751] should_failslab+0x5/0x20 [ 1391.918548] kmem_cache_alloc+0x5b/0x310 [ 1391.919420] create_object.isra.0+0x3a/0xa30 [ 1391.920355] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1391.921441] kmem_cache_alloc_trace+0x151/0x320 [ 1391.922431] io_uring_setup+0x40b/0x2980 [ 1391.923310] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1391.924341] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1391.925412] ? wait_for_completion_io+0x270/0x270 [ 1391.926462] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1391.927589] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1391.928684] do_syscall_64+0x33/0x40 [ 1391.929474] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1391.930561] RIP: 0033:0x7fcf2a53eb19 [ 1391.931361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1391.935285] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1391.936905] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1391.938430] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1391.939964] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1391.941480] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1391.943011] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:20:04 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), 0x0) 10:20:04 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 7) 10:20:04 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffbffff}]}) lgetxattr(0x0, 0x0, 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000001200)=""/162, 0xa2}, {&(0x7f00000012c0)=""/224, 0xe0}, {&(0x7f00000013c0)=""/211, 0xd3}], 0x3, &(0x7f00000014c0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x110}, 0x1) syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x4, 0x2, &(0x7f0000000100)=[{&(0x7f0000000200)="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", 0x1000, 0x91}, {&(0x7f00000000c0)="e3c72e6137fcb4fb16b62eb31d3df2a2e1fd0475a2488bd242fbf6e8144ec4a390f1ce7a4b65e1b701ecb9f14c77bdaaf8912a01dc8fb4e6b2c87376daf9", 0x3e, 0x2}], 0x2000000, &(0x7f0000001600)={[{@nodots}, {@dots}, {@dots}, {@fat=@showexec}, {@nodots}, {@dots}, {@dots}], [{@euid_gt={'euid>', 0xffffffffffffffff}}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@appraise_type}, {@euid_gt={'euid>', r0}}, {@permit_directio}]}) setreuid(0x0, 0xffffffffffffffff) fchmod(0xffffffffffffffff, 0x40) [ 1392.007862] FAULT_INJECTION: forcing a failure. [ 1392.007862] name failslab, interval 1, probability 0, space 0, times 0 [ 1392.010410] CPU: 1 PID: 10064 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1392.011884] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1392.013626] Call Trace: [ 1392.014192] dump_stack+0x107/0x167 [ 1392.014970] should_fail.cold+0x5/0xa [ 1392.015777] ? create_object.isra.0+0x3a/0xa30 [ 1392.016736] should_failslab+0x5/0x20 [ 1392.017536] kmem_cache_alloc+0x5b/0x310 [ 1392.018399] create_object.isra.0+0x3a/0xa30 [ 1392.019333] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1392.020407] kmem_cache_alloc_trace+0x151/0x320 [ 1392.021399] io_uring_setup+0x40b/0x2980 [ 1392.022259] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1392.023284] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1392.024351] ? wait_for_completion_io+0x270/0x270 [ 1392.025400] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1392.026508] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1392.027604] do_syscall_64+0x33/0x40 [ 1392.028389] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1392.029458] RIP: 0033:0x7fc343bc8b19 [ 1392.030241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1392.034113] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1392.035730] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1392.037232] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1392.038730] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1392.040237] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1392.041735] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:20:05 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, 0xffffffffffffffff, &(0x7f0000000200)={0x20000001}) 10:20:05 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), 0x0) 10:20:05 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0xd, 0x0) 10:20:05 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 15) 10:20:05 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 8) 10:20:05 executing program 3: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x8a38c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) fallocate(0xffffffffffffffff, 0x2, 0x80000001, 0x2) migrate_pages(0x0, 0x2, 0x0, &(0x7f0000000100)=0x7ff) r0 = getpgid(0x0) process_vm_writev(r0, &(0x7f0000002740)=[{&(0x7f0000001700)=""/26, 0x1a}, {&(0x7f0000001740)=""/4096, 0x1000}], 0x2, &(0x7f0000003d00)=[{&(0x7f0000002780)=""/125, 0x7d}, {&(0x7f0000002ac0)=""/138, 0x8a}, {&(0x7f0000002b80)=""/4096, 0x1000}, {&(0x7f0000003b80)=""/78, 0x4e}, {0x0}], 0x5, 0x0) openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) [ 1392.212301] FAULT_INJECTION: forcing a failure. [ 1392.212301] name failslab, interval 1, probability 0, space 0, times 0 [ 1392.213417] FAULT_INJECTION: forcing a failure. [ 1392.213417] name failslab, interval 1, probability 0, space 0, times 0 [ 1392.214761] CPU: 1 PID: 10080 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1392.218560] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1392.220321] Call Trace: [ 1392.220881] dump_stack+0x107/0x167 [ 1392.221663] should_fail.cold+0x5/0xa [ 1392.222480] ? create_object.isra.0+0x3a/0xa30 [ 1392.223463] should_failslab+0x5/0x20 [ 1392.224258] kmem_cache_alloc+0x5b/0x310 [ 1392.225114] create_object.isra.0+0x3a/0xa30 [ 1392.226055] kmemleak_alloc_percpu+0xa0/0x100 [ 1392.227009] pcpu_alloc+0x4e2/0x1240 [ 1392.227811] ? io_tctx_exit_cb+0xf0/0xf0 [ 1392.228661] percpu_ref_init+0x31/0x3d0 [ 1392.229507] io_uring_setup+0x47a/0x2980 [ 1392.230357] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1392.231388] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1392.232456] ? wait_for_completion_io+0x270/0x270 [ 1392.233511] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1392.234618] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1392.235726] do_syscall_64+0x33/0x40 [ 1392.236514] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1392.237595] RIP: 0033:0x7fcf2a53eb19 [ 1392.238378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1392.242259] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1392.243868] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1392.245365] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1392.246881] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1392.248389] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1392.249886] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1392.251424] CPU: 0 PID: 10078 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1392.252906] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1392.254652] Call Trace: [ 1392.255225] dump_stack+0x107/0x167 [ 1392.255998] should_fail.cold+0x5/0xa [ 1392.256804] ? create_object.isra.0+0x3a/0xa30 [ 1392.257758] should_failslab+0x5/0x20 [ 1392.258557] kmem_cache_alloc+0x5b/0x310 [ 1392.259425] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1392.260689] create_object.isra.0+0x3a/0xa30 [ 1392.261617] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1392.262692] kmem_cache_alloc_trace+0x151/0x320 [ 1392.263690] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1392.264824] io_uring_setup+0x14f6/0x2980 [ 1392.265705] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1392.266778] ? wait_for_completion_io+0x270/0x270 [ 1392.267819] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1392.268928] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1392.270038] do_syscall_64+0x33/0x40 [ 1392.270842] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1392.271930] RIP: 0033:0x7fc39eed2b19 [ 1392.272714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1392.276602] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1392.278214] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1392.279731] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1392.281301] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1392.283203] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1392.285076] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1392.334402] audit: type=1326 audit(1766053205.312:103): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=10065 comm="syz-executor.4" exe="/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f46037c8b19 code=0x7ffb0000 10:20:20 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 8) 10:20:20 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 16) 10:20:20 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 9) 10:20:20 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1}, 0x2}, 0x1c) r1 = syz_io_uring_complete(0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0) ftruncate(0xffffffffffffffff, 0x1000003) fcntl$setflags(r1, 0x2, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) dup(r3) writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000500)='z', 0x1}, {0x0}], 0x2) creat(&(0x7f0000000000)='./file0\x00', 0x8) ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f0000000180)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x16}) r4 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x1000}, 0x4) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x9, &(0x7f00000001c0)=0x81, 0x4) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000080)={@local}) [ 1407.192480] FAULT_INJECTION: forcing a failure. [ 1407.192480] name failslab, interval 1, probability 0, space 0, times 0 [ 1407.194970] CPU: 1 PID: 10099 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1407.196470] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1407.198254] Call Trace: [ 1407.198837] dump_stack+0x107/0x167 [ 1407.199628] should_fail.cold+0x5/0xa [ 1407.200454] ? create_object.isra.0+0x3a/0xa30 [ 1407.201439] should_failslab+0x5/0x20 [ 1407.202262] kmem_cache_alloc+0x5b/0x310 [ 1407.203158] create_object.isra.0+0x3a/0xa30 [ 1407.204115] kmemleak_alloc_percpu+0xa0/0x100 [ 1407.205093] pcpu_alloc+0x4e2/0x1240 [ 1407.205913] ? io_tctx_exit_cb+0xf0/0xf0 [ 1407.206793] percpu_ref_init+0x31/0x3d0 [ 1407.207664] io_uring_setup+0x47a/0x2980 [ 1407.208542] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1407.209585] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1407.210672] ? wait_for_completion_io+0x270/0x270 [ 1407.211788] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1407.212918] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1407.214036] do_syscall_64+0x33/0x40 [ 1407.214856] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1407.215965] RIP: 0033:0x7fcf2a53eb19 [ 1407.216770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1407.220760] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1407.222415] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 sendmmsg$inet6(r2, &(0x7f0000006e40)=[{{&(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, &(0x7f0000000100)=[{&(0x7f00000000c0)="a22cd32a8d4e1edcee993600112aaa68d9853293e96c", 0x16}, {&(0x7f0000000540)="d0032415cc21e82e10eb2249ca0c8b88b7d2e673a259c2a765e0adecf50963a07a11c2c0bcab92efb3c3063fdefbbb3e3af953d996e2daffef71bf7994923ea5e7d413ab61edb283a7649e5f7514dfdb8ec32a752aa4778138ec11aeec5a0cd9fa34ca59efe364b7cabc36876ee237d952d9fb07ee2c547a897ca3c4f5bfb9fae6df8bc68f30569fa76ea39cbeb1ad42b03fc10ebcf03bc43377c078ef1a0d13e8ecedcc583b57c0564b0b8e354ae1df2d6c8c0d203b418bae58b9bc7dac213a8c", 0xc1}], 0x2}}, {{&(0x7f0000000200)={0xa, 0x4e24, 0x3ff, @private2={0xfc, 0x2, '\x00', 0x1}, 0x6}, 0x1c, &(0x7f0000000bc0)=[{&(0x7f0000000640)="2779f3ad4b659edb5c337aeddefd1c646d632dec79d982cf68a969d0fc10cceac107163c2e3f0aee183ba418d11795baa2585540f60e5a66207169202a7efe34615c2166661abd6da8733db17f88cb9a5b79a470b03df4832378f2a0ca3c6aeba86715b0b2f91c5cebf4537bfab10dc6267678bbdddd73552ec0a17a5ca7b28ee3d098448d46f00ede929050ddf2677b430983a21d2c1659c090e51210a1250d12bee498d9d6e2c6c2201df1c9eccc5655e4cfe5707e96c26cd6eafaefb1437036d81a81e407192c09517353798d5d0ab57045bdda483cee0aa850dea7222824999640d9ec255ce479b638f47f3b8fe0", 0xf0}, {&(0x7f0000000240)="26c99d16d531049320c37a22aba7f05c81a7ff231fc6666415f00bf09ba5d57258192907f4401e3ad2347b10bbdd5cf280399d0d224a", 0x36}, {&(0x7f0000000740)="600f004bf289a27d7278d95af7bb86ab946486b037793fb7a86412475b53f7da7fbb24dee7dcfbb58e4ff6c03926ed78a4836ce40f1a9cb786536ac8aeb0c7117cb9d5a0ecba92bf188c7e4ff0d561a90abc8110ea3b4399a40bed5f77778bae06e55e84745773f10634acd0bcca8899b37e6c783d04c62f340ce0d95fff6ee0cd4edb1f61ec55c772d9c554853bb5af306ed3a16a0146bd98f426fb61cb4cffd9cb40069bab03bff9", 0xa9}, {&(0x7f0000000400)="3eb83dcd5f", 0x5}, {&(0x7f0000000800)="d50f6029229212f924911732168074021fa1856d2d67afd9873dacf7ae79216e6ccc42667c68448478cec244cd062a626cb5ad4dbc6c339bdf3f567e2304f3dc89722dadb0d97f52ffce5484b313a97c47ea7d2ec2c44b66db06af09cb9b9be900c08fb7a3dde9a9d95be82708e29a4bab37557f4b0b87aa8e6ed3987161ac4c58da89461a2d2a53f3b314cc76c1e8d9483d", 0x92}, {&(0x7f00000008c0)="0922d2721781c42149a497a703f6c0ff237a968a94ed32c19f772468407c39a7fe710ed0e198b52c0419c0e095beda0bc4a15544f97c08227f19c8f1e274776c2990035252a0391d373a8487769c07c08f36b149d9b6af603d34fa17e2bc239a0c4954bc0346a8a78c5923d733f09006e9741d98ce081bc0c7cdcc9c59b17d5639ebd28909a328d43b8e87c004395e4310", 0x91}, {&(0x7f0000000980)="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", 0xfa}, {&(0x7f00000004c0)="124bd2f7ea7177b05bef7415cbac380965b3adaf545fe4b71c3a789af84ba60b0e8c7da763a27e3617110d3e472ff793dbd7f52921f2", 0x36}, {&(0x7f0000000a80)="e4b7aef8529a09e5eb1a1382c37c1cde58e3", 0x12}, {&(0x7f0000000ac0)="d102f83002c90baaa866c9e86fdd9d63c2993f2bea70b149b2cd8efaf7e9557569b2090a8c6770a7c8963f87c44f78e37bee752139c6b1395cf003c4b0b4687f04fe050774b3d98c7d6f0a9557b1012446228256cd3b3848643293fae7f22843302565d43c34602d791e9c3bdb2622657a5456778f8ffee8e27367ac66e9a32b04eca9645634de8467978b802a34da36d80ed568ba74de4460e407b75fb194235fa1963ca264fddd51a7c6f163382531ba6707ff2a64288a3cb3f631ed45d9f5101a3a659d733107a9b134e266111d8b3b6ebbae8d635fb49d18b1341d35bd9357f060ca8fc4500a2ed759ef45fdcf4d196c", 0xf2}], 0xa, &(0x7f0000000c80)=[@rthdr={{0x38, 0x29, 0x39, {0x2f, 0x4, 0x2, 0x0, 0x0, [@mcast1, @remote]}}}, @dstopts={{0x18, 0x29, 0x37, {0x29}}}, @dstopts={{0x1b8, 0x29, 0x37, {0x0, 0x33, '\x00', [@pad1, @hao={0xc9, 0x10, @rand_addr=' \x01\x00'}, @generic={0x0, 0xee, "4b9a8eb223a75a282ec9822e7aa94b02eff65d1f367d28d83f8d56f4586ecf43777071e6c259159533174c741dbc9eacc3221b6fe11de7f912a6cc3d0b57dff93e30c249e7da74f174cf02a0efa7b15b7376c7c0f8038f7670be050fc992889cbec7a415d8466f5e399ee6242856ca3059ae331716b2a6fb2daccaab9d130f55802879faf6758cb093a45f57d632dea66ef7045e7c6e2e34a863cdae844f343e4383319d85b418a0dcd8bf8840a3cc0258ed7f009024fb81d972fb9dc6b1ca1a9542591025cc97eb38e78f9996ed1bc3b12c114010de103ea5d33a6af49500d39d99940dbade0ff9fa3211c650b6"}, @calipso={0x7, 0x30, {0x2, 0xa, 0x8, 0x6e, [0x7, 0x7, 0x10001, 0x6, 0x2]}}, @calipso={0x7, 0x28, {0x2, 0x8, 0x81, 0xfff8, [0x5, 0x100000001, 0x4, 0x10001]}}, @hao={0xc9, 0x10, @remote}, @hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}}, @padn={0x1, 0x1, [0x0]}, @ra={0x5, 0x2, 0x1}, @hao={0xc9, 0x10, @loopback}]}}}, @rthdr={{0x68, 0x29, 0x39, {0x16, 0xa, 0x2, 0x9, 0x0, [@private0, @private1={0xfc, 0x1, '\x00', 0x1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @private1, @private1={0xfc, 0x1, '\x00', 0x1}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0xe4}}], 0x288}}, {{&(0x7f0000000f40)={0xa, 0x4e21, 0x5, @mcast1, 0x5}, 0x1c, &(0x7f0000001040)=[{&(0x7f0000000f80)="89ef14fea38ab6d2122f856727804c43c163b344907666af225d85f7bb860104a6d6d49fbfa0824fb7375585b09ea2979924bdf58eb1ff54910e1e6285d62f090b609caffd08d2c7fdbc98f692052ae777eabb60d0bf036e2297e7d9643b3d6129d1b4069efe163f8502de2e3c5878d08c75afc527ee500a8c93fb837937628039d81777", 0x84}], 0x1, &(0x7f0000001080)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x8}}, @hoplimit={{0x14, 0x29, 0x34, 0x7}}, @dstopts_2292={{0xe0, 0x29, 0x4, {0x0, 0x18, '\x00', [@generic={0x40, 0x34, "a67a69ed338bb1f72a16410262ce05a413ec17bc3bb9b3dbc41bedc2d6cb6e9a3301615c49b2c41f13b58f99da5c542a66ecc288"}, @generic={0x40, 0x69, "8a6e5e700c42d919f2533d432a8c8d34575ec26923afde74c26f964a8bb74c1cefad1a872f4c62cbb9426a25681b6cfd8a759453829c9b62525ae7ea75f5c5611e3367eab97e74ea249ac6390f2bf3e833ccb044e9e4f440c9fb4aaeade136434301ef70579b9bfda8"}, @ra={0x5, 0x2, 0x800}, @pad1, @calipso={0x7, 0x18, {0x0, 0x4, 0x0, 0x5, [0x0, 0x0]}}, @padn={0x1, 0x2, [0x0, 0x0]}]}}}, @dstopts_2292={{0x30, 0x29, 0x4, {0x2b, 0x2, '\x00', [@ra={0x5, 0x2, 0x4}, @hao={0xc9, 0x10, @remote}]}}}, @dstopts_2292={{0xe0, 0x29, 0x4, {0xff, 0x18, '\x00', [@generic={0x1, 0xc2, "1f0a9ceb2e6d184b7b882f8d9d4370c540a6fbc1b21d24714a038a038072530346314674fed6bdd1a0552ddb894dbc84b5b98522114a7a9d3704fca43066f960fc12d437f8a53e88362ed143316bc8ca57d297a471596478b68af22487902459b98039b0c55fcbdab6dfdd7a58cdaf3d6fb6dbc8633714ce039d63e329e333b93888a70530e08908c9cb977ad2e603eb6a3298f38698029a585ae0b13620ac68e84b71830b170f4dabb886a76bcd31dc856d919880291f76a08d2cac8d095501e1be"}]}}}, @rthdr={{0x48, 0x29, 0x39, {0x0, 0x6, 0x1, 0x45, 0x0, [@private2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv4={'\x00', '\xff\xff', @remote}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x3}}], 0x280}}, {{&(0x7f0000001300)={0xa, 0x4e24, 0x9, @dev={0xfe, 0x80, '\x00', 0x18}, 0x10001}, 0x1c, &(0x7f00000015c0)=[{&(0x7f0000001340)="fd87dd6a201d4385ec2594d675f0281de67d12ede475", 0x16}, {&(0x7f0000001380)="ea59d68f40a85a18290475bbe7dfdb2fb9b78915fc8645fad2d77269ed41908fa0b4", 0x22}, {&(0x7f00000013c0)="7d4cac4f70842d24b51036a4fdb13cb45234fe4344d2b99cdadbb2702fdb3deb04b4e02b2e4cff6568d7089099cf110c755aefb47af35087b77927fe17a50a85a623db06923dd3ba8deaaa306180de47bf5cfee04920fb08883831609bea16f357a9e18f4ef0283ffff6cad1f85b6534e32ffabc300894380f247738445672f08fd962b8d5da7b995912fad05a6f07a27c47166f692ab6acfefa88a9e0b0f950181a8a07a16f0923649f09f01f9d5f9c29f299f8b88483e99ecda6558767c258bdfb", 0xc2}, {&(0x7f00000014c0)="b3ed258ae0baeeb796261befe0a7ad57cbabab21a8095cd62b4553da97d47405761792f827d7deccb4143d79a74b9ba924a9fc573086fe2ed1fe5404f0675d9d5f4b844f8d2d01ac76ff3a5f687a1a67bbffb55342ad7a14c3f1e2af14e61c68b61cbc26dd5c24c332226f3279b3b7e8ffec54934360564d1e85cb91976c3a2f182a54835ba98df778a21d5ade1b80441b73028cd01c15f82cd7b0df64ce5745c1d786fbacc0c285f4a3972d086f405a28a7081d794f978035ca1b10ab9231d0fe0c31", 0xc3}, {&(0x7f0000001e00)="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", 0x1000}], 0x5}}, {{&(0x7f0000001640)={0xa, 0x4e21, 0x3e, @mcast2, 0x20}, 0x1c, &(0x7f0000001b00)=[{&(0x7f0000001680)="3ff272ff7db1ec9b28f75088684f360616b971fc68925269d0ad593a25d9ba173a45515e2c9c2edf2c8805bbc4543022ebb047c0a083e52ae23affb543735151d9075018fcf3d7df36965292840cbbc1784663c237073863c31b1ce224c944d4a30e5d4b8ced85cf0eac17920ada70b98449ac4df1daa2fae6e7585322ce", 0x7e}, {&(0x7f0000001700)="91beebcf38751d79124460542f08d2a01a052ec72df44c0080dd07134ef14e475d3ce405cbef9c9869d230daa2b73186e7479b803804ede5575c1d837532bf498bdead9c1bb1b362dd974adc2d7b7294e6fd51d73f9cc7d0c5ca4fcea8de991cae3f9be5be4f94bdf9eff72496cd5fa22c68ce0751c4de8f51db445ae67b8fdb83cb69f769f423d92889b1d5b99c0ee60a3b3345a06364ed0b214db180d972fe5ebeeee05b1b40df4097a6da9e5a10fa1015736d1b7c6b6dea4398135a9948c904f432602f9996bb6cfef9d492e3a2503c21c0dbda74fef8", 0xd8}, {&(0x7f0000001800)="057f20798a98fbebd4e2c0240196900e96de007d241bdb73508729eca2d7cd308b05dbacb9741cf7757c84f2824a14c0", 0x30}, {&(0x7f0000001840)="382affec4db843fa22057a3aa933abfa6cf2a27f4a36509974b800cf15ac9a7dfce808860b4cc8e088dd1084598213ee42acf19e676a3813039ea864b7932259c9a6bd6ab187a13715333588988ac2bd7a48b3acfb90bb015f1e48e843b138bd", 0x60}, {&(0x7f00000018c0)="cb7f86e0641e1e9adaedfcb6a4f0448dec19ea1c84180c0ceaaf92788cef72342215469d38e4ba2250c985f72411d8474b0608762c164cf53f0c200d668c227e5a76b0", 0x43}, {&(0x7f0000001940)="1d531a8f91fb9d83c33661bbe1249ff5d1534572a511b37b8ad88c44d8930b105be18162fa1c102395c23c9f72c7769df6485970803b853732fb95637e264b91d25bd1b5e750f53bc3767a08107e665575a8929285bc", 0x56}, {&(0x7f00000019c0)="0035bc7a5ba7672d820058339f3d39407b18e940902230b8570cbfb6ee6c72b35665b6516fb45c90d5e2f3def16f200b455413f8d298ee34f5a38f33f2cc738c593f8f420c32f9ebf7fc8685b6cb315a65a839eafcbeb1277896ddc892", 0x5d}, {&(0x7f0000001a40)="4de17329850702dffb50fb91a386057f1127d14b767cfc88f0cab590b3e72ad78c296c52ee0a696f68296e24c537d57a51e1be31f8519bc1516c2df60069b8f8d5982246a53efcdc16440db4ffa7833b621a4034ff0601500d4b3f265f5a40b02b04680ca6032e46ac98a05921a18ffe554184adcdb6e539e492571c962bf62dd1f5813fd52c63a917950af059ae8496f0e975be", 0x94}], 0x8, &(0x7f0000001b80)=[@rthdr={{0xa8, 0x29, 0x39, {0x21, 0x12, 0x1, 0x81, 0x0, [@loopback, @remote, @dev={0xfe, 0x80, '\x00', 0x11}, @remote, @remote, @remote, @remote, @mcast1, @private0={0xfc, 0x0, '\x00', 0x1}]}}}, @tclass={{0x14, 0x29, 0x43, 0xab7a}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x2c, 0x4, 0x2, 0x20, 0x0, [@mcast2, @private1={0xfc, 0x1, '\x00', 0x1}]}}}], 0xf8}}, {{&(0x7f0000001c80)={0xa, 0x4e24, 0x9, @mcast2, 0x4}, 0x1c, &(0x7f0000001d40)=[{&(0x7f0000002e00)="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", 0x1000}, {&(0x7f0000001cc0)="5937ae8ea09f37b4b00a1565cb04dd8843ece05991fe9d4dfc5c63d21674420d708b6b1bea7e6893e79fd2ab932ca5c2b0f032089c5eef28d074e1b1c71b99d4d94bc461e366689cccbe250580e8999d4dfc70274703c851581ee8df51f993da35ba378e", 0x64}, {&(0x7f0000003e00)="e061f04138353793adba3f0d96ba9a5640db022613a403469bc182258c8a68d13c6caea71f82497065202241e94f4ae9074c9c9e6c00e0110e31db80e90e87700910aad44866469007a3bd306aa0f3ffc781ecdf2d4979e81ea78cbea2423c1d3284487b306418e9545675708d37eaa19648f1dcfb1664554dbf57a6fd6617d2ac6553fa0d4f2c0b85d540ccaa824dce91d2f4ec0fa7bf9c6269cdd8fe33290497b5ff87c46d3cf4d94efb74ba405a07a49cd5b3", 0xb4}, {&(0x7f0000003ec0)="5208eeda2fa232c0e934cd572b246f1165661b7c3cdf417e9b45caeff69ac1233dca765dc9b2409690c817916956a18808a728a44e30e36034881853a4a85189e202ea9d0266acfcb228894d66bb30fccb629faec15899f6086c3b5a8b1348b7257e7c3934b7c295504624fc0cb47f4cc2a53a4696f9ca7de4d0cda8584d26397a6af840eb26b4547dedc06346506c93a5c072adda30d2a9901f9f05d72ca3ab558036fa2c4e651b6c68ee04aa14976de0ca1fa4fc43d27157491b3565a859ab5e602d886f5c67541a044d79784eee54dec66705158d58848b6428632012956f547a43b6047e4ee5caf4a6ddf0d6becd7d3c", 0xf2}], 0x4, &(0x7f0000003fc0)}}, {{0x0, 0x0, &(0x7f0000005300)=[{&(0x7f0000007080)="a8c94f2f0e4bdb90b2c6745ab4b6d2f2704894963d90e0d5da3eef3fefef5dc832c768e399e12452a214dc41dd2bc514b6b64f4e7dda6b3a2f127ed4e743d8201d3acea0a5ed61dfd732efd01b15e4932eb870ad2f1126eecbf793644949ae84ec1f7d", 0x63}, {&(0x7f0000004080)="3bed0acaabd70289ef0c", 0xa}, {&(0x7f00000040c0)="3fed7ad56fae41d016b2bd21bb05add3cf19219cf1fea87a5f3219b18ef3", 0x1e}, {&(0x7f0000004100)="bfd6c7676868332a7ca6d60ba9429749ff6eda7baa3b5d72868af10fe13e0d63375810c04390e7e9bc5b486a15184e17dd08a14d45", 0x35}, {&(0x7f0000004140)="a4aec4f7c354e8f2ca117f826e71bfa7515b67a0ebe5782f00630fa1e7ee2315c98e9b0efdab86592676f7387421a4714dac4be1850a3a50a6ec25c815ed01a693825e83dfd82d681863a2510040fd5efb4bfec4cf6c5ff8eb8b50377cd8a507119c54b0c23f1794ef1eb6641e4c972a106efdb900c55e0feae04438132e46a8d97ff8d7a7e2a70b947e3b5d53917249d7bfb1ba46022063ff37ff001d6d29534e7e1705b0118f8e96d826b8", 0xac}, {&(0x7f0000004200)="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", 0x1000}, {&(0x7f0000005200)="a809dd15a50759938796db39196db516db3e8c7d869fdc5275d130b9835dad36acc2091ff98fd4f5706f5c70ea9d710dad0187705518dea90a7a6bba5d115508eb7a048a793a81c068479ce337a1a3744253c0baa624015a6e8966dc335b1312357bcabe9f18b807cbb007d28c905e1d765d1dcff77afbafcdd3088f9cfd660cfeec0b6efe1f56b09ca8f0", 0x8b}, {&(0x7f00000052c0)="3d8708281b4f053ce133f4a7267f2015355cf91084b74c8305689fbfbe08", 0x1e}], 0x8, &(0x7f0000005380)=[@pktinfo={{0x24, 0x29, 0x32, {@empty}}}, @tclass={{0x14, 0x29, 0x43, 0x20}}, @hopopts={{0x48, 0x29, 0x36, {0x6, 0x5, '\x00', [@ra={0x5, 0x2, 0x2}, @hao={0xc9, 0x10, @mcast1}, @pad1, @enc_lim={0x4, 0x1, 0x1f}, @ra={0x5, 0x2, 0x3}, @jumbo={0xc2, 0x4, 0x25}, @enc_lim={0x4, 0x1, 0x5}, @pad1]}}}, @rthdr={{0x38, 0x29, 0x39, {0x6c, 0x4, 0x0, 0xfb, 0x0, [@dev={0xfe, 0x80, '\x00', 0x40}, @loopback]}}}, @rthdr={{0x38, 0x29, 0x39, {0x0, 0x4, 0x0, 0x8, 0x0, [@remote, @empty]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x8}}, @tclass={{0x14, 0x29, 0x43, 0x5}}, @rthdrdstopts={{0x78, 0x29, 0x37, {0xda, 0xb, '\x00', [@hao={0xc9, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}}, @ra={0x5, 0x2, 0x81}, @calipso={0x7, 0x30, {0x3, 0xa, 0x1f, 0xd2c, [0x1, 0x101, 0xfff, 0x81, 0xffff]}}, @padn={0x1, 0x2, [0x0, 0x0]}, @hao={0xc9, 0x10, @local}]}}}, @hopopts_2292={{0x40, 0x29, 0x36, {0x2e, 0x4, '\x00', [@pad1, @enc_lim={0x4, 0x1, 0x20}, @pad1, @hao={0xc9, 0x10, @loopback}, @enc_lim={0x4, 0x1, 0x8}, @enc_lim={0x4, 0x1, 0x8}]}}}, @tclass={{0x14, 0x29, 0x43, 0x3}}], 0x1f8}}, {{&(0x7f0000005580)={0xa, 0x4e24, 0x6, @rand_addr=' \x01\x00', 0x8}, 0x1c, &(0x7f0000005780)=[{&(0x7f00000055c0)="811148caf8bf5ed573ad8230919b7ff81740d16c3429691f", 0x18}, {&(0x7f0000005600)="dc9d63bc0300123088b3d864270bca7a8a98ad3ffd81b2714058c72514ee4cca8f01b69696b5328e603e983ae671bfb79e3a3cbb3f89a603b5a493b6f39e51a00b", 0x41}, {&(0x7f0000005680)="408a", 0x2}, {&(0x7f00000056c0)="4646ebc0b6c0477c541618bdf5c17fb1882bd258a33a39c131054697a7bb6606be89a55fae19057bf8106dcacef76fc6", 0x30}, {&(0x7f0000005700)="f1edc42053726b7e5aa38cc85feeda8f2be62664b5274bd2fcb94f9b14ce6653d6a0dd21b65be18ca4cead5fdf25e19a910cba8c19143749814602c0007d22c7602e6a8c99fdafab82650b5a8d4b38030ddf", 0x52}], 0x5, &(0x7f0000005800)=[@rthdr_2292={{0x68, 0x29, 0x39, {0x0, 0xa, 0x1, 0x8, 0x0, [@mcast1, @remote, @empty, @empty, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x32}}]}}}, @dstopts={{0x20, 0x29, 0x37, {0x32, 0x0, '\x00', [@padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x20f3}}, @hopopts_2292={{0xc0, 0x29, 0x36, {0x29, 0x14, '\x00', [@pad1, @pad1, @ra, @enc_lim={0x4, 0x1, 0x3}, @calipso={0x7, 0x38, {0x3, 0xc, 0x4, 0xc000, [0xd7, 0x8, 0x289a0967, 0x20, 0x1ff, 0x7]}}, @ra={0x5, 0x2, 0x6}, @pad1, @hao={0xc9, 0x10, @private1}, @calipso={0x7, 0x40, {0x1, 0xe, 0x0, 0x6, [0x1, 0x400, 0x10000, 0xd7e, 0x37a4, 0x0, 0xd0de]}}, @pad1]}}}, @hopopts_2292={{0x38, 0x29, 0x36, {0x8, 0x3, '\x00', [@calipso={0x7, 0x10, {0x0, 0x2, 0x7, 0x2, [0x7]}}, @ra={0x5, 0x2, 0x7}, @padn={0x1, 0x2, [0x0, 0x0]}, @pad1]}}}], 0x198}}, {{&(0x7f00000059c0)={0xa, 0x4e23, 0x4, @mcast1, 0x4bcd}, 0x1c, &(0x7f0000005c40)=[{&(0x7f0000005a00)="6a8c5d60932c8d29247bfc8b4646f2b62673ab35a8f483ccc0e4d0fd2b22126c8f0981b24351", 0x26}, {&(0x7f0000005a40)="28c8170fd62b8f144c29d21f33c11d9abfed030a202b695a7c631e43bfe2a16186", 0x21}, {&(0x7f0000005a80)="eb215441e44175696a41571578056fa5e98ba968680204028b601291492603693f72bd5f156e124295c7af8cfe2ad145fdae226d3060e891b6f1a3ef2da5861f2908acec5c3c6dfd62d2f74922f844f9dfe2bf06a028e92900a4151c6102484baefe908167984c3396aa7d3e5a233c3d61e19231653ff9e5d529e7a1931b97b7293dddc0f71a05b9e32b28032ba962e36215b6ca36cd74ee972ccf269f22c7dd3cff0374638cf09b0889da1970f6584ddb8366a13bdd7c593450d124126c2344dfd3ac865967ec8b7952f1df4cc6cf88ff958dcaf5d9fe0b48d1a4821bc55da1fad0", 0xe2}, {&(0x7f0000005b80)="eb1c43500bea45355f119855d8ec8f916ef0324e9e4db7976e9986702c85f6a5b4672c22ebf300fddbd8aa6e067c7cbe44e81195aa98f734bb7867311130811d7bd0bfa1f504684bab81efc48914587b6f3a39f5f7f3f0a5778a5e005052c01c52d96c435e3000affffc5987767a1d00d51a1b457012d06ba82266a32b2ac8b3cdfc243edeca3c58b2c0aac0431b4036d4b9675ff1160c90a808aa8e62dec8b0d762aa48e9b9296cb0448d338ee741c9cd710d36a2", 0xb5}], 0x4, &(0x7f0000005c80)=[@dstopts={{0x58, 0x29, 0x37, {0x2b, 0x7, '\x00', [@calipso={0x7, 0x38, {0x1, 0xc, 0x2, 0x0, [0x6, 0x6, 0xff, 0x0, 0x1000, 0x0]}}, @ra={0x5, 0x2, 0x1}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x2}}, @rthdr_2292={{0x28, 0x29, 0x39, {0x2e, 0x2, 0x0, 0x3, 0x0, [@loopback]}}}, @hopopts_2292={{0x40, 0x29, 0x36, {0x3c, 0x4, '\x00', [@calipso={0x7, 0x20, {0x1, 0x6, 0x7f, 0x9, [0x1000, 0x401, 0x82c3]}}]}}}, @rthdrdstopts={{0x10d0, 0x29, 0x37, {0x1, 0x216, '\x00', [@generic={0x90, 0x94, "616a7cc831e79b799ea13a02cfbf211dcc162c3162ba581a549e61814d8f6efb1291b2dea982ab8969aacf233b95994ee5c0b62f6ae1e87bdcb85e5e763f845d9c858ad5db4e0bf14d9492cab8cf8884516f14635b1bff1d7da330af49164f2f0e7d143761ed0658b1d00e299869189bebd8e6cef3d06e96e07b437d37cbd3e02eebd76b4d22e775f130fd407674e0724f40ee1f"}, @pad1, @generic={0x1, 0x1000, "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"}, @pad1, @padn={0x1, 0x1, [0x0]}, @hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}]}}}], 0x11a8}}], 0x9, 0x40) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000480)=@IORING_OP_FILES_UPDATE={0x14, 0x2, 0x0, 0x0, 0x5, &(0x7f0000000440)=[r1, r4, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x5}, 0x8) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffe, 0x1, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) sendmsg$NL80211_CMD_START_NAN(r1, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="10002abd7000fcdbdf257300000008000300", @ANYRES32=0x0, @ANYBLOB="0c00990009000000300000000800ef00010000000800ef00060000000800ef000f000f000800ef000700000000000000020000000800ef0009000017"], 0x58}, 0x1, 0x0, 0x0, 0x40800}, 0x24008044) 10:20:20 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, 0xffffffffffffffff, &(0x7f0000000200)={0x20000001}) 10:20:20 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), 0x0) 10:20:20 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0xe, 0x0) 10:20:20 executing program 4: pread64(0xffffffffffffffff, &(0x7f00000000c0)=""/254, 0xfe, 0x1) write$selinux_attr(0xffffffffffffffff, &(0x7f0000000000)='system_u:object_r:public_content_t:s0\x00', 0x26) r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0xc20c0, 0x20) ioctl$EVIOCGABS20(r0, 0x80184560, &(0x7f0000000080)=""/18) openat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x400080, 0x2) ioctl$CDROMPLAYMSF(0xffffffffffffffff, 0x5303, &(0x7f00000001c0)={0x1, 0x2, 0x7f, 0x3, 0x80, 0xad}) [ 1407.224182] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1407.225994] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1407.227506] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1407.229004] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1407.263073] FAULT_INJECTION: forcing a failure. [ 1407.263073] name failslab, interval 1, probability 0, space 0, times 0 [ 1407.264656] CPU: 0 PID: 10103 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1407.265594] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1407.266711] Call Trace: [ 1407.267087] dump_stack+0x107/0x167 [ 1407.267586] should_fail.cold+0x5/0xa [ 1407.268097] ? create_object.isra.0+0x3a/0xa30 [ 1407.268719] should_failslab+0x5/0x20 [ 1407.269227] kmem_cache_alloc+0x5b/0x310 [ 1407.269784] create_object.isra.0+0x3a/0xa30 [ 1407.270384] kmemleak_alloc_percpu+0xa0/0x100 [ 1407.271005] pcpu_alloc+0x4e2/0x1240 [ 1407.271516] ? io_tctx_exit_cb+0xf0/0xf0 [ 1407.272066] percpu_ref_init+0x31/0x3d0 [ 1407.272608] io_uring_setup+0x47a/0x2980 [ 1407.273152] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1407.273822] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1407.274502] ? wait_for_completion_io+0x270/0x270 [ 1407.275186] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1407.275895] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1407.276586] do_syscall_64+0x33/0x40 [ 1407.277085] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1407.277776] RIP: 0033:0x7fc343bc8b19 [ 1407.278276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1407.280791] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1407.281821] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1407.282794] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1407.283771] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1407.284724] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1407.285679] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1407.292604] FAULT_INJECTION: forcing a failure. [ 1407.292604] name failslab, interval 1, probability 0, space 0, times 0 [ 1407.294153] CPU: 0 PID: 10100 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1407.295098] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1407.296210] Call Trace: [ 1407.296584] dump_stack+0x107/0x167 [ 1407.297085] should_fail.cold+0x5/0xa [ 1407.297604] ? create_object.isra.0+0x3a/0xa30 [ 1407.298228] should_failslab+0x5/0x20 [ 1407.298746] kmem_cache_alloc+0x5b/0x310 [ 1407.299313] create_object.isra.0+0x3a/0xa30 [ 1407.299912] kmemleak_alloc_percpu+0xa0/0x100 [ 1407.300531] pcpu_alloc+0x4e2/0x1240 [ 1407.301041] ? io_async_queue_proc+0x80/0x80 [ 1407.301642] percpu_ref_init+0x31/0x3d0 [ 1407.302182] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1407.302930] io_uring_setup+0x14f6/0x2980 [ 1407.303501] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1407.304177] ? wait_for_completion_io+0x270/0x270 [ 1407.304848] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1407.305555] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1407.306256] do_syscall_64+0x33/0x40 [ 1407.306762] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1407.307451] RIP: 0033:0x7fc39eed2b19 [ 1407.307966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1407.310430] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1407.311461] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1407.312406] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1407.313372] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1407.314335] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1407.315297] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:20:20 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, 0x0) 10:20:20 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0xf, 0x0) 10:20:20 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x400400, 0x0) openat(0xffffffffffffffff, &(0x7f00000000c0)='./file1\x00', 0x115000, 0x10) openat(r1, &(0x7f0000000080)='./file1\x00', 0x48401, 0x8) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r0, 0x0) waitid(0x0, 0x0, &(0x7f0000000200), 0x0, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r2 = syz_open_dev$vcsn(&(0x7f0000000100), 0x3, 0x40) setsockopt$inet6_tcp_int(r2, 0x6, 0x7, &(0x7f0000000140), 0x4) 10:20:20 executing program 4: r0 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000000)=0x4) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) fcntl$setpipe(r1, 0x407, 0x1) 10:20:20 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000000)='./file2\x00', 0x0) fcntl$setlease(r0, 0x400, 0x1) fcntl$setown(r0, 0x8, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x0, 0x0) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r1, &(0x7f0000000040)='reno\x00', 0x5) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0x76fc}}, './file2\x00'}) ioctl$VT_ACTIVATE(0xffffffffffffffff, 0x5606, 0x3) 10:20:36 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x10, 0x0) 10:20:36 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 9) 10:20:36 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 10) 10:20:36 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 17) 10:20:36 executing program 4: socket$nl_generic(0x10, 0x3, 0x10) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10018, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=ANY=[], 0x28}}, 0x0) ioctl$BTRFS_IOC_SEND(0xffffffffffffffff, 0x40489426, &(0x7f0000000440)={{}, 0x6, &(0x7f00000001c0)=[0xfffffffffffffffc, 0x5, 0x9, 0x9, 0x0, 0x3], 0x3, 0x2, [0x0, 0x3, 0x2, 0xfffffffffffffff9]}) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="28000000100001000000001c59994138a307ea0000000000", @ANYRES32, @ANYBLOB], 0x28}}, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x9, 0x1010, r0, 0x731b5000) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x0, 0x5, 0x5b, 0x3f, 0x0, 0x10000, 0x90, 0x7, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1, @perf_config_ext={0x7, 0x3}, 0x2400, 0x401, 0x1, 0x2, 0x10000, 0x5a2e, 0x6, 0x0, 0x2, 0x0, 0x7fff}, 0xffffffffffffffff, 0x10, r0, 0x8) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[], 0x28}}, 0x0) 10:20:36 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 1) 10:20:36 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000800100000f000000000000000100000005000000000004000040000020000000d9f4655fd9f4655f0100ffff53ef010001000000d9f4655f000000000000000001000000100000000b0000000004000008000000d2c201001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000085f42d27379e44ba9a8dcb77402e9f71010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}], 0x0, &(0x7f0000000600)=ANY=[]) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000004080)=[{{&(0x7f0000000040), 0x6e, &(0x7f0000001740)=[{&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000000140)=""/159, 0x9f}, {&(0x7f00000000c0)=""/33, 0x21}, {&(0x7f0000001280)=""/224, 0xe0}, {&(0x7f0000001380)=""/140, 0x8c}, {&(0x7f0000001440)=""/183, 0xb7}, {&(0x7f0000001500)=""/243, 0xf3}, {&(0x7f0000001600)=""/58, 0x3a}, {&(0x7f0000001640)=""/244, 0xf4}], 0x9, &(0x7f0000001800)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x40}}, {{&(0x7f0000001840), 0x6e, &(0x7f0000003a40)=[{&(0x7f00000018c0)=""/4096, 0x1000}, {&(0x7f00000028c0)=""/4096, 0x1000}, {&(0x7f00000038c0)=""/73, 0x49}, {&(0x7f0000003940)=""/33, 0x21}, {&(0x7f0000003980)=""/102, 0x66}, {&(0x7f0000003a00)=""/58, 0x3a}], 0x6, &(0x7f0000003ac0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x140}}, {{&(0x7f0000003c00), 0x6e, &(0x7f0000003f80)=[{&(0x7f0000003c80)=""/198, 0xc6}, {&(0x7f0000003d80)=""/12, 0xc}, {&(0x7f0000003dc0)=""/204, 0xcc}, {&(0x7f0000003ec0)=""/142, 0x8e}], 0x4, &(0x7f0000003fc0)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x98}}], 0x3, 0x1, &(0x7f0000004140)={0x0, 0x3938700}) syz_io_uring_setup(0x8003a75, &(0x7f0000000080)={0x0, 0xa91f, 0x10, 0x0, 0x3ba}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000180)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000040)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x23, r3}}, 0x7ff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000004300)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x2004, @fd=r0, 0xfffffffffffffff9, &(0x7f00000042c0)=[{&(0x7f0000004180)=""/132, 0x84}, {&(0x7f0000004240)=""/4, 0x4}, {&(0x7f0000004280)=""/33, 0x21}], 0x3, 0x18, 0x0, {0x0, r3}}, 0xee05) 10:20:36 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, 0x0) [ 1423.993843] FAULT_INJECTION: forcing a failure. [ 1423.993843] name failslab, interval 1, probability 0, space 0, times 0 [ 1423.995472] CPU: 1 PID: 10127 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1423.996424] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1423.997549] Call Trace: [ 1423.997916] dump_stack+0x107/0x167 [ 1423.998418] should_fail.cold+0x5/0xa [ 1423.998953] ? percpu_ref_init+0xd8/0x3d0 [ 1423.999518] should_failslab+0x5/0x20 [ 1424.000044] kmem_cache_alloc_trace+0x55/0x320 [ 1424.000677] ? io_tctx_exit_cb+0xf0/0xf0 [ 1424.001230] percpu_ref_init+0xd8/0x3d0 [ 1424.001778] io_uring_setup+0x47a/0x2980 [ 1424.002343] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1424.003017] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1424.003707] ? wait_for_completion_io+0x270/0x270 [ 1424.004383] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1424.005099] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1424.005818] do_syscall_64+0x33/0x40 [ 1424.006328] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1424.007031] RIP: 0033:0x7fcf2a53eb19 [ 1424.007534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1424.010023] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1424.011067] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1424.012031] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1424.012998] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1424.013970] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1424.014944] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1424.026101] FAULT_INJECTION: forcing a failure. [ 1424.026101] name failslab, interval 1, probability 0, space 0, times 0 [ 1424.027666] CPU: 1 PID: 10128 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1424.028597] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1424.029717] Call Trace: [ 1424.030081] dump_stack+0x107/0x167 [ 1424.030586] should_fail.cold+0x5/0xa [ 1424.031114] ? create_object.isra.0+0x3a/0xa30 [ 1424.031733] should_failslab+0x5/0x20 [ 1424.032255] kmem_cache_alloc+0x5b/0x310 [ 1424.032807] create_object.isra.0+0x3a/0xa30 [ 1424.033408] kmemleak_alloc_percpu+0xa0/0x100 [ 1424.034019] pcpu_alloc+0x4e2/0x1240 [ 1424.034527] ? io_tctx_exit_cb+0xf0/0xf0 [ 1424.035086] percpu_ref_init+0x31/0x3d0 [ 1424.035631] io_uring_setup+0x47a/0x2980 [ 1424.036182] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1424.036834] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1424.037512] ? wait_for_completion_io+0x270/0x270 [ 1424.038176] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1424.038890] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1424.039605] do_syscall_64+0x33/0x40 [ 1424.040108] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1424.040795] RIP: 0033:0x7fc343bc8b19 [ 1424.041301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1424.043784] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1424.044380] FAULT_INJECTION: forcing a failure. [ 1424.044380] name failslab, interval 1, probability 0, space 0, times 0 [ 1424.044813] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1424.044822] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1424.044830] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1424.044837] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1424.044845] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1424.056193] CPU: 0 PID: 10134 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1424.057808] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1424.059753] Call Trace: [ 1424.060380] dump_stack+0x107/0x167 [ 1424.061234] should_fail.cold+0x5/0xa [ 1424.062129] ? create_object.isra.0+0x3a/0xa30 [ 1424.063208] should_failslab+0x5/0x20 [ 1424.064097] kmem_cache_alloc+0x5b/0x310 [ 1424.065082] create_object.isra.0+0x3a/0xa30 [ 1424.066127] kmemleak_alloc_percpu+0xa0/0x100 [ 1424.067185] pcpu_alloc+0x4e2/0x1240 [ 1424.068078] ? io_async_queue_proc+0x80/0x80 [ 1424.069109] percpu_ref_init+0x31/0x3d0 [ 1424.070046] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1424.071320] io_uring_setup+0x14f6/0x2980 [ 1424.072303] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1424.073487] ? wait_for_completion_io+0x270/0x270 [ 1424.074647] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1424.075877] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1424.077098] do_syscall_64+0x33/0x40 [ 1424.077962] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1424.079166] RIP: 0033:0x7fc39eed2b19 [ 1424.080029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1424.084268] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1424.086027] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1424.087683] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1424.089320] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1424.090963] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1424.092596] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:20:37 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, 0x0) [ 1424.107018] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. 10:20:37 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 10) 10:20:37 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 11) [ 1424.144433] FAULT_INJECTION: forcing a failure. [ 1424.144433] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1424.146018] CPU: 1 PID: 10141 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1424.146898] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1424.147966] Call Trace: [ 1424.148314] dump_stack+0x107/0x167 [ 1424.148781] should_fail.cold+0x5/0xa [ 1424.149279] _copy_from_user+0x2e/0x1b0 [ 1424.149807] io_uring_setup+0x9b/0x2980 [ 1424.150315] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1424.150950] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1424.151600] ? wait_for_completion_io+0x270/0x270 [ 1424.152223] ? rcu_read_lock_any_held+0x75/0xa0 [ 1424.152838] ? vfs_write+0x354/0xb10 [ 1424.153310] ? fput_many+0x2f/0x1a0 [ 1424.153772] ? ksys_write+0x1a9/0x260 [ 1424.154264] ? __ia32_sys_read+0xb0/0xb0 [ 1424.154788] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1424.155460] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1424.156126] do_syscall_64+0x33/0x40 [ 1424.156599] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1424.157250] RIP: 0033:0x7f4a0d16cb19 [ 1424.157725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1424.160060] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1424.161026] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1424.161940] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1424.162842] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1424.163761] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1424.164659] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:20:37 executing program 3: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000001580), 0x400, 0x0) ioctl$PTP_PEROUT_REQUEST(r0, 0xc0403d08, 0x0) [ 1424.198020] FAULT_INJECTION: forcing a failure. [ 1424.198020] name failslab, interval 1, probability 0, space 0, times 0 [ 1424.199492] CPU: 1 PID: 10147 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1424.200364] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1424.201416] Call Trace: [ 1424.201751] dump_stack+0x107/0x167 [ 1424.202204] should_fail.cold+0x5/0xa [ 1424.202677] ? create_object.isra.0+0x3a/0xa30 [ 1424.203252] should_failslab+0x5/0x20 [ 1424.203726] kmem_cache_alloc+0x5b/0x310 [ 1424.204234] create_object.isra.0+0x3a/0xa30 [ 1424.204781] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1424.205412] kmem_cache_alloc_trace+0x151/0x320 [ 1424.205770] FAULT_INJECTION: forcing a failure. [ 1424.205770] name failslab, interval 1, probability 0, space 0, times 0 [ 1424.206010] ? io_tctx_exit_cb+0xf0/0xf0 [ 1424.209125] percpu_ref_init+0xd8/0x3d0 [ 1424.209626] io_uring_setup+0x47a/0x2980 [ 1424.210131] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1424.210732] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1424.211365] ? wait_for_completion_io+0x270/0x270 [ 1424.211979] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1424.212628] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1424.213266] do_syscall_64+0x33/0x40 [ 1424.213735] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1424.214378] RIP: 0033:0x7fcf2a53eb19 [ 1424.214842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1424.217139] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1424.218082] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1424.218974] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1424.219850] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1424.220728] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1424.221613] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1424.222530] CPU: 0 PID: 10148 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1424.224629] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1424.227148] Call Trace: [ 1424.227969] dump_stack+0x107/0x167 [ 1424.229083] should_fail.cold+0x5/0xa [ 1424.230246] ? percpu_ref_init+0xd8/0x3d0 [ 1424.231348] should_failslab+0x5/0x20 [ 1424.232348] kmem_cache_alloc_trace+0x55/0x320 [ 1424.233504] ? io_tctx_exit_cb+0xf0/0xf0 [ 1424.234547] percpu_ref_init+0xd8/0x3d0 [ 1424.235556] io_uring_setup+0x47a/0x2980 [ 1424.236549] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1424.237749] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1424.239017] ? wait_for_completion_io+0x270/0x270 [ 1424.240241] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1424.241556] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1424.242854] do_syscall_64+0x33/0x40 [ 1424.243793] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1424.245070] RIP: 0033:0x7fc343bc8b19 [ 1424.246001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1424.250309] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1424.251926] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1424.253429] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1424.254926] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1424.256439] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1424.257946] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:20:37 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:20:37 executing program 4: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x18da81, 0x0) io_setup(0x5, &(0x7f0000000000)=0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) io_submit(r1, 0x1, &(0x7f0000000800)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r2, 0x0, 0x0, 0x4}]) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000001c0)='./binderfs/binder0\x00', 0x2, 0x0) io_cancel(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x11, r3, &(0x7f0000000200)="86060089ae88a95bcace6f353f48e15d807a2442d337d31a6e6862bd180e31aaf3c0621d3e90ceaf0d48e9776db2431c15f4d8785339af24592897c35153e8daa96db69c1ab723433d0471e7ff9245e1b8cf9335552ecead0e56d4d8049d29dd9cf7701f230ab461f7c10c4c5df5841fcace702b56964adc976baa415ba0296ad5692dae3cf015a4ee679043034865354143b30211a65da20172016b", 0x9c, 0x7, 0x0, 0x2, r0}, &(0x7f0000000300)) ioctl$SCSI_IOCTL_STOP_UNIT(r0, 0x6) sendmsg$TIPC_CMD_SHOW_STATS(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x880}, 0x4000000) syz_io_uring_setup(0x7720, &(0x7f0000000040)={0x0, 0x3c1f, 0x1, 0x0, 0xd}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100)) syz_genetlink_get_family_id$SEG6(&(0x7f0000000180), r0) 10:20:37 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 12) 10:20:37 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x11, 0x0) [ 1424.353276] FAULT_INJECTION: forcing a failure. [ 1424.353276] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1424.354716] CPU: 1 PID: 10154 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1424.355523] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1424.356486] Call Trace: [ 1424.356800] dump_stack+0x107/0x167 [ 1424.357228] should_fail.cold+0x5/0xa [ 1424.357675] __alloc_pages_nodemask+0x182/0x600 [ 1424.358216] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1424.358914] ? cap_capable+0x1cd/0x230 [ 1424.359378] alloc_pages_current+0x187/0x280 [ 1424.359890] __get_free_pages+0xc/0xa0 [ 1424.360344] io_uring_setup+0xe27/0x2980 [ 1424.360822] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1424.361404] ? wait_for_completion_io+0x270/0x270 [ 1424.361976] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1424.362579] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1424.363201] do_syscall_64+0x33/0x40 [ 1424.363634] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1424.364224] RIP: 0033:0x7fcf2a53eb19 [ 1424.364654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1424.366763] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1424.367655] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1424.368468] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1424.369287] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1424.370104] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1424.370927] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1424.399381] program syz-executor.4 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1424.442306] program syz-executor.4 is using a deprecated SCSI ioctl, please convert it to SG_IO 10:20:52 executing program 3: r0 = openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FIONCLEX(0xffffffffffffffff, 0x5450) openat(r0, 0x0, 0x18000, 0x80) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, r0, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0xb, &(0x7f0000000240)=0x6, 0x4) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0) 10:20:52 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 18) 10:20:52 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x12, 0x0) 10:20:52 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 13) 10:20:52 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 2) 10:20:52 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 11) 10:20:52 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) (fail_nth: 1) 10:20:52 executing program 4: perf_event_open(&(0x7f00000002c0)={0x4, 0x80, 0x1f, 0x0, 0x0, 0x1, 0x0, 0x100000001, 0x903c0, 0xc, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xe05, 0x2, @perf_bp={0x0, 0x2}, 0x0, 0x5, 0x640297cc, 0x7, 0x0, 0x0, 0xff, 0x0, 0x20, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) socketpair(0x2a, 0x6, 0x1, &(0x7f0000000040)={0xffffffffffffffff}) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000997000/0x1000)=nil, 0x1000, 0x300000a, 0x4002093, r2, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0) syz_io_uring_submit(0x0, r7, &(0x7f0000000280)=@IORING_OP_ASYNC_CANCEL={0xe, 0x3, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x4678) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) syz_io_uring_submit(r8, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) [ 1439.681296] FAULT_INJECTION: forcing a failure. [ 1439.681296] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1439.683671] FAULT_INJECTION: forcing a failure. [ 1439.683671] name failslab, interval 1, probability 0, space 0, times 0 [ 1439.684237] CPU: 1 PID: 10170 Comm: syz-executor.6 Not tainted 5.10.247 #1 [ 1439.687184] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1439.688992] Call Trace: [ 1439.689566] dump_stack+0x107/0x167 [ 1439.690356] should_fail.cold+0x5/0xa [ 1439.691195] _copy_from_user+0x2e/0x1b0 [ 1439.692059] __x64_sys_epoll_ctl+0x114/0x1c0 [ 1439.693005] ? do_epoll_ctl+0x2c00/0x2c00 [ 1439.693903] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1439.695040] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.696153] do_syscall_64+0x33/0x40 [ 1439.696953] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1439.698051] RIP: 0033:0x7fc821c17b19 [ 1439.698850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1439.702810] RSP: 002b:00007fc81f18d188 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 1439.704455] RAX: ffffffffffffffda RBX: 00007fc821d2af60 RCX: 00007fc821c17b19 [ 1439.705990] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000005 [ 1439.707529] RBP: 00007fc81f18d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1439.709065] R10: 0000000020000200 R11: 0000000000000246 R12: 0000000000000001 [ 1439.710600] R13: 00007ffd469b9baf R14: 00007fc81f18d300 R15: 0000000000022000 [ 1439.712177] CPU: 0 PID: 10175 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1439.713238] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1439.714498] Call Trace: [ 1439.714870] dump_stack+0x107/0x167 [ 1439.715434] should_fail.cold+0x5/0xa [ 1439.716013] ? percpu_ref_init+0xd8/0x3d0 [ 1439.716641] should_failslab+0x5/0x20 [ 1439.717217] kmem_cache_alloc_trace+0x55/0x320 [ 1439.717914] ? io_async_queue_proc+0x80/0x80 [ 1439.718578] percpu_ref_init+0xd8/0x3d0 [ 1439.719194] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1439.720013] io_uring_setup+0x14f6/0x2980 [ 1439.720648] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1439.721417] ? wait_for_completion_io+0x270/0x270 [ 1439.722163] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1439.722958] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.723743] do_syscall_64+0x33/0x40 [ 1439.724310] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1439.725086] RIP: 0033:0x7fc39eed2b19 [ 1439.725648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1439.728445] RSP: 002b:00007fc39c427108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1439.729599] RAX: ffffffffffffffda RBX: 00007fc39efe6020 RCX: 00007fc39eed2b19 [ 1439.730556] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1439.731634] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1439.732581] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1439.733645] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 syz_io_uring_submit(r4, r7, &(0x7f0000001e40)=@IORING_OP_SENDMSG={0x9, 0x4, 0x0, r3, 0x0, &(0x7f0000001e00)={&(0x7f0000000600)=@pppoe={0x18, 0x0, {0x1, @multicast, 'ip6gretap0\x00'}}, 0x80, &(0x7f0000001d40)=[{&(0x7f00000007c0)="0dbef8d4c8783f46de002a36418581c2d1cd78a2f443c1383551f34eb7eada1bae381c5dad5dc3f88cddae7d97132b4ff58ec22e1121b547f8396bd07ef07177021676c1117f0ffb38c9472bbc981a280b23122d3f171c223d7a774169467429346168f7ee684e5422c9d11295586f1dc2063ee88fe0a2822afadf5ad9a8ce123c52b6bd28f2e23d633743e2012febc8e8a76102262e2ffb5d09248ed99ccb7c118375eba9b53b0322124be532506d70b21e0ed700e7cb06e9217491bed0a5d308ca0752c58f22c8accee3f1ce526e54fce710393bdc748af9f88b0f0ddecdddb63b2eb7509012307da339639a041d96d33446d3243c2bcec7c9ba1d635e0007239a8f811a81c0a89c4b80f178f12328cd8888af6844bd434a3d9515ba9d5334269ecb4ad97cee003678ecacc05b5ff970d914ee3d207e8260478efe0ed74834185c44399cada1904028ddee0cef5bc78c264c477639c90a609fe49c55db1ccc70ab92b88fd345e3d79babffb1cb9668af104b7ebe1a8552d596776d1f21ad7e20e8ed730102a4315fe9b06f0ad4e80b05bc08e77d5e77ca4054c6f7d526ec07d99ff038885ec1efcdc3de7da819ea374efaf11a65f8437ef9f2560ae4dc86a2a5f0879444a8d469557840549b373c7744a379dd946c98fccf64b363f6a958d2408c2dcd02c5c820a4269f0fd7b7722411edc502127b26530a19f020e565eeac0f1f4608792e14627c52f4b84807110722c27d8c3983870a63225748e4a00f41a9ddfa225d24fe5415be181e24dca1e3129e272cc2d3af88255ff15f1421b879db6efc3c66ab40a5fb00bc327693ae53ab81e829f8be4617c9cc03832adb5f688584fa14c0b57fa80b8ad62621d69eed9ae84d87fb500c7b35cbea62e98be744a1cc6ef9db8112122f83140e814a71a20ce217ff95b64a9d6bcbb92e607b4cea217b7d1a678d59b094887f8290ef4ff82aeccd304fa580ff6a450447c31c431e99b7f1df82b44d6547cb05eb6253f949a9e3d91674e62afe6335d21afc694a78cafa61a2d077aafb341347b592e1724079a28e53fc31c02629c8b478aba33484a886d96eb84e7f496556fe227053d5a1ca1ef746ef4534fd84f0e4b388eeda19d12a15421c5b4b33d94613269b53f50b29b91636fed1aef74ca1cd26fdf1ba571f405678bcd5032c2b5fc38c6332b88bae21422178927a086eb51d1f91779ad2ee3a0202aab967e3624abe7b754d042df10e3462597ef9cae5a1a090c4750bc58c66332604ea5143f32177aabe4984571eb5baab195a037359be8223e6c97f89fe511cb3ac37478ac649b9c61ebb43d8116ec3f3533197ba507924d45eadbcbfa4bda45c049589589a1544b6135a85f22fe535b0f9070622fcbe39240d10d11a319657da1919188ae714a4ddeee4744f34d2e2de004842eb4ffb0b1cdc7fe94bdf69db17b2be218eea08465d9296db827f99a03e67fbcd783bbb60e3fff7f67b9252b23befc4af8975c5447febc4661fbd4b07aaafb4581a988caa09cff3253698568719fbc7f2521decb0a4dd6f16cb44e44369f3e3290e451b7fa8f152dec8abf429bc4f8df4f65a636e6626a27ebd946cc73b8531c4ca05ba92a21c848fad0aeb30918758d20e88febfc56c65591d63b492f6fab37376a3e5818ccc76c25fc61af221575a00ff7415f1f8b6941d2a0ae77a1471f34e1057cacde3a17e24c85c0b8283a8d3d9a34526a046abfc9b56a8f145a0ac1010be2385782e41fb9e27bf9ddf10320c1a36a510cdba6f7eb3defc4995ec9163b68455a14304583acf96cbb2ec4a6b5af8d673cf7d9b0b2b781338ad9a2abd33bd8bd3ef500a7ad5b57439717822f3b461154440a7c337f9419f5f6b6827221ac213bf48df41e8353d301a1eeed8215ab08c2ee0423deb42349ed826aa844bbcee1c1bd2655c4812f3be511e53fbb8722c8e64443eeffbc7f3a9e6a23b1901838a78e73f16f65401bc50e7aaaee397d1659d1118e02ef51290b86721212f63354f1fb05624bcb727bc795eb92c4fcbfddf9ed56671e4be85017181083b6bb3d1636fb59135827051670c650dea25ced9d6b05b15464230a6ac15d7906ddc01a19dbf44e5b664bbb6c127bddb18498afd5404e09b2f3677c653bddd7a49f96b367f73f42734b383ee08b22f19fd4224d8ee7dcd0e6861c09b13e0048ea53f7b0315484f98a3dc49c7eb1cd1dc099ec0468b58a118a5646400c8e45a6f21712af9d65dd47d65b4d309137336b74581413ba4aa276425ce265d847202fcfdee206445008739fc1ebdd48d1408b33e5c436c4bd824612ff8f223947357f25dbaf785eb674ac5273de7f14285fb99de2addb10d003d2cbe01bbba207a9bef545e97efecfe2abc22b0221a48280fee3a1df655886d0b61fb022ccdf2015ea2222032f40c25ba540e62369c4dad65aac48bf8a7c8bed223f85c25ee0efc782c49705792a3dc6beeb862c7c053b6010721f434d4b026be03aa23ca15d424db50d213fcfe74f7e96128fcad3a2619d7cf9ba0546b36f389e520ea47a1181399aa2d6e3572e945479af10ae0e5646feb87124e1255a65a6fefde4fd8e41e940e167db5aed104afdd1a46e65f032788823980537d442f7b6ea137d43387e710bccca4d6e4f7bffa4c6a697e09f5f34f24ef466849183ab8cf05d5084a35e8c5c1a2defb8f01f81fc7756ba9cda798cee4d015506e589b2fa8f1895f362891a2f163c10145a0c4cc481d6ea636f9eb3b9889c776b8487c1ade6cf90df256b9214fb97385d9e471a44071bd4314208b441fb19dda935f837169f9440a2a2a463450a1c3c50e8320affde81a4d5de13ef6a6260fe141bc30b5f44b1cae745778bad82336852a84f3617ce2c0614a868e32dd089f9d11dc9c495d5b45e681afaba721133b4e72b7daeb85be67903cafad7e2084cffc480b22445b8ddd22b08cfb3c00596414f0b015ea3f25549a05990bdc70275f08b303d5e44b0d51beacb2c00502cb32eb8afdb723a3a254bbc23c391629b90ec8afd2748c08b4cc2a1a1cd6f8ddca2ec26b5e618a5073e21ed03652b9a2ca409e411b5a9a376dd9cfa9968cf23d05413f4944b66fac0ea65d684a9bc85937e5023ce94aeb306eec9404bb6bed379578e8dafd480454db8bb7e2806ac2d58e16b6f224bc95056f69b067a993e3377c6c95607fc7cd3691362cfc6cb041ce2ecca1761c835ddcbcead6087e5cdae6fb85a7d12eba5a7117fc3ec9bd8088a912402ddab3f2ffc277e5ec2f3d88ecd40029d2921d01579e6cbe7c83cf5c1151e59e33f63a76ac0f7d1a8c7f4bab25aa6af4268eebe88d3213efa4e20343fd43224e98e8a1d7d3eeea491eafdabee72c423a5c0627fabf467309fef8d2cc98d59d6c8657c0f04009c48d9c5cdb4fd3c05628443a9818bb27fabead0f7e8cc27ff018411712b8d0792fc2ba02efca60cf1f80ef6f46cb37b47e5339d3d11e0e2cbd59bf8479c02411e4e2dae44f5a5894fd0ec9fafbe497569aedf68af70a90dd7efec20015b6180a29e4d6ecca462c64b389a5b7ea44840b71193758ff7777b34ccddaedfbae70bfbff06d548e0ea1a58f3011413be8cc7b4a6221cff3b9f464ae713def4d4899c76b24ef9482ded0421c971a114b57327080bbf90cbb82a89e72dabc32168e6b51e376e8a6ca03acb215abadb616ea74952aca776ebe42524cb94b36e3bea1ddd94fc164fb5bbe1b207aa7791ddc0254b6ae4c93a53e0d9cf0cce04b38a371581b8b5a8bada47aedac10ecde3e32ab75ff7055c94c09597057905370505ddd7349041d6f390bba8d1be30408f22dfdf8f6cec9c8540ecb3a872f2733f2452b1645053d00ec93d721d95ea9e3bc3c9d64c7659fa5161d668311a3c5bd9c6e88ec4b22c4071260f0e85a0c406a21629f078bec47b40c3e83e8f6a552cbc111847bf1e441c3cde4f2b47df58c161fa36a5b7e651d58b7f05668d88a916cfb8c27193a67df67dc3be1f18adc964c3b37529c7452220670ff44b35e58d3893fcee15ca1da3122a29f9eb9250a073a3cf9e3c5fc870f7355570bd1db7eb722c93973c6308000d3f6ca98284dd1611c649d1912f4d68d8a217ce4682e61a8812c0fdbc5cc9b9b7bd12d2ae19c199f73683afa10c5d908de5a09b5ccd24b44e218b4dfbbf319fdd414f72f04da4bb6e15c38eb0f8638a800737d08feaf6a7cecaac900ece23fec79a213f5f77dc18b2d5bed05718a4f0435d3b82cacbf46e500a3ad7da6295402fc8165f026da39e8ff55b52ab0e70acfd3859f2270d9734d587cda3319364ea74aa4d69f53087795c2118c4939fa451e1495ecf21e72d7b5118fe0c87c3f603f01a71148eb65e6548b68df237db4275d695ee7cbbe6f889f9761f2505dc658290fd1b62ba967e7fe8b748353eccebb1189221a175206f2e4f535ea69a384ecf5640164f8b0600b90f85db206ef1193a1cfc6b0bffcd6bf0f506aad37e07e18c6220d004c2685c57cb9cd83424c458795a73654d6c95476d6d189f7a54bf33cc1afa85eb667e27df8faf8022974e5be916c93564a7bbe268299a0fd15c55f489da45c3299297957e39ac8ac1db69a2ed391b7afafe5c45d0cc4d0cc4620fde4dbb1d94da5d8bdab2423324f227c177e1e4e06dad547b62daa385c322874b5057a09df402c3e54dd7c3f857ad229e70016fb586f11268230ab87073ca38f3f37460aa86c0dcc7d1bba714d2c458fe2df06551e0e955a8f2aa4f1faf1cc6fa0782f70c94fd026cab0f2c0fa01f9db490e0d354e549f224eb9b3bf9cf9ff44d10f7fdf6e15cf944893090499a046e708a145ad5558ccd13af2788b8484cc4156f0fa7e0ba7a249d96d0b4b88bc49ab33a01f362252b4aa7e584fbb88aee0e32777aa3847d50efbd35cb112ca6dbca1d303af1606b42f91e6999fc2346cc959f4e59187362b7f984d1f42e637b910099bedd3bf20409ac78a21d810aaa471e95236aaa5bfe2914bff63d075fecbdd0bf905c335bb8e1a7823018d3cd8120b16951453334635dfb0936d0f06704742afac5e06ed87e73fdca9d1c926098666b569d479b90f4e678ee80e5d06750dad2ddf436d19c2d419cc13621c5e1ecbd36ee4e4db87bb0f346f937729faa625a2b47a704cb410ecbfa99918086f9a2d1b3029f158b10ceda7a799e37cc44ce632f98aef2414cc6133416bfda498e4621c864848a3edbf9d4331b88f7ee16ba8028069b35a5966d66611d278046d3dd81a10045caff0ed4efb1b927ce3c43fdb9bae9f3900cd525e2815eeb852e7fd3410418ec968b17aff64909d7691fd753a5bdaec96b55738f62856575d70ad936e9a8e22620fe0bf6d661f8d06dba693ecf1b771e7dee0f995abe6c2d5345a6ca417d047bbb56c9371f6fcf51cfb863f0186f0d42681e68a90b19dd61507af04860da1f74a02621f2010b8338c6b92d3263d01e43d663069be342becf5d22ed3bb2dab12baf5476768acd67837854fae4147eaed0233e2629157eb9c3eaf862dce9957b9f47a2bf53d2b138616578ee96d57033040ecb1211d142ad7446b8301ef767231d0facc81da2eb05d266ff2c52af2fe654e9ec2fb54f7d25b5c8078d23717a2f9982424a836fd30c2c539ff6f37b4631e1291fe458c704ad5453c80bd3e206dbe1e186fe221f370a8f7bceb87431b19e2d376bd0947d09f8315021681427bb2cbe614c0ffda3f01c363a8f86add1acd2f429832327317e577dcc2635474d0182f1c1f25b607917f4273e8ffc72845ebd4f7d1bb20c303dc", 0x1000}, {&(0x7f00000017c0)="30f3085a7bd666aeb7120928febc19fc3e691490a98ecb0a23a3bae79ada0c9c153744108f378ee22513fa0a338fbd6ad1fab0c727b0d5efb1d581e0cfd706745e61b958ddff403679174141eb59ab4520ce6f7d46b5bfe101123519d4e4503c60154f22c0d7aaf9fbff88acfd38354be191af1d55b59eeabda09aa741137a858dbd9898d6e341d559d130c38b4a8556269e74ec9112454d341067e09748ca34d32c8a68de5477c39deced330a2e51098867ef38aa5de333e5d016635f6e4d90a14ea4c9646186c1365b4c78882e01f76dbe83c3e56625407a9765ec127a", 0xde}, {&(0x7f00000018c0)="d184ed1e2ade3285802e8fa9625ba0013ef0236f5130e97284de1c7f37955be533d869d4b43da84cba8554a0532692546a4fe347118cbde7ad3a60805c2dc690ac03a3b20b9eabc9900ad974a1b5b2300228fc8277156fdcbbbee0cc09c318d67511810ee265418323cc7dd6ebd28db35fe8aa2c038027c00ac9de1801605b49a7db117591b822012122ee4d6150e30f87525007fe3ddb62ba34b499f20b641e9dbe5a2f0fabe551264d701f7898c933cf058385d9162338ea291b60caf90c83f537cca5868c7042713c7b67ada0591e40848d991e4128e4bb00170b4f99d50b78dd626a7b57", 0xe6}, {&(0x7f00000019c0)="fec7c085dd3f55cb40a32fb2ff48bc8a531fd4e5af7ac9a5d626bc7d8a49e8b19496aed7b3c7401e86e70c30bcdd7812f17864ee9edb5e405f5de18e6a9fcc93784fc576f481e2284ff14ca82bfbb1938b24d7b6553d1497e601ae2e264cbdc2ed3c24e30426316dc6d1d2f4a4d1de3da8ef5151631907a4d2412b9e973b26e34d3d2340f1c3e0ffbbfd5606b421614626a9126cca0280bbba648092b23839ca33c89b32fd9ec55e3784a0409bdbc5bb08bdc859fe661a5498e28796e063ee5d", 0xc0}, {&(0x7f0000001a80)="565cdd5ecf64e60a04ff5dbbd3061d4726ecf72bed27e283c60f903b792c14740c0f1adbf3737e8165688e82788b105fb8e9016e6d63456543183d286d68fd50409a7b", 0x43}, {&(0x7f0000001b00)="3217096515504e673fda3b0b6bfdee6417867088581aec4edf695a3cd5183e91683902cabf5a50912bdf790c86f4cb87643c83f459c96545fba6b6f827424e7909bbc4c2506fe2f7d7bd120696cf87f2b353d2696156fd0c1453d9adc2fc985acb67d46ea0e423aeffb6edb5ebf7b55be5fbb1272a520ccd5151adf16558f7c742935b8809bf0500cd75b99bd7f6b86890b193ae00", 0x95}, {&(0x7f0000000680)}, {&(0x7f0000001bc0)="fe1f6dcf9e01750c5099e6742ab424c8f98d4bc801e9903fec656ccf957d5f7e0b2f6842511a599d05bc1fad3e9172076e3353705173c87046", 0x39}, {&(0x7f0000001c00)="50dd081ab3a056139754e603edd09b04584515d56858c1b705e80f39886aafa566d872b09bf989c1be6a43a31f7af85c2101ef5ca4b9182514c442c3eeb73b9ebf87b873053f3a0272e9f19d94c0434308afa96366bfca500a37eec6720d3096ccf9d980d32ac7785920827eabd915ca7d514a408b039f20b0e485127477106ea9b75d9a525c620f", 0x88}, {&(0x7f0000001cc0)="531b26eba91ce0f902537767d3be1749f21d575178ba5dd76ab4f5097d9d6716b78ea03c43843240f0884fa6b755a9d1fdfb549d3854c643693a7e0045aab538dc8e5f94670b727d517613b654d04d309c590e5cd3b04e9829ee2afb119ad4de3410caa314bf", 0x66}], 0xa, &(0x7f0000002a80)=[{0x40, 0x1, 0x1, "a06cea62d263ca4e320e6da7797d91a8c9a7316349d31d335b107818e6983c279aceccf37712732db7f83ba6"}, {0x88, 0x11, 0x5, "16b54e22a3460023070dd8bcc565584c3a03887c0b1fc94120aa8a41bb06ada56a302c62e5f5b0012dcf3a70587dbbb87d42b33dcf8c9c5754f585bca72cb1c38142982abdbe649abcd4467dc7ce92e5bbf2be3452c8edea27c5c578ae83f36806504bc627b192eeac35133a89863a35d8"}, {0xb8, 0x119, 0x3, "e3a499d6e3f0a9c091e2d9ea0a115705823f2be83917cb9d20c1106e934e6a36940f12d94a000905f2f9fe87a23ee55da07b5f4c2a1473ab112038219e3c3d310ad3673b4d14e6df57f79685065e63d770661194bf29f00b9b7d17d841fa9831a139601b6d3bc1079b9e1f3b277d6d8f646f2d9d48f28b03fa12ee253732229bc482f0bc71a0bef6b9e2cce5160f821dbb35c2ad3da07ef89f3cfce306e026ba164e376cc77f8d"}, {0x1010, 0x11, 0x8, "1fc4206145c044c4b6cbf99ed1c8d392b56d5223113ff9b826dec625c1049aeb9419dc4dbc0b03569400628315b430687fb72b369ed317d2f9948bdba2626384ff66f6f8a74053bdb0184e26afef791ce932e9a1f5a2bdc0302abe8c20e10e74dd7d1aa90db82119b1645896e3272183d38a6b743cb6eb4d044623e30a5ed8df4c6dad2ba7621930155f51a3c82a8f7a8175619fa27c466a29692a3ff58eb6ec67aad1f0421e647cbf0d4d13a69ba65ca2a7011d0fcfa761454e14d49697d085677dca55ec3b07b250d7fcc98612d59ad7ed7f145ba9dfd448428a7e458ef54b131b1aab9b9cd0908dc100f6e1b297dda20385455174b97c1cf6edbc328193a578209b3716b29ce181685121b88e49633f69973d95a1d1bcdc9d6435c56b979f862d80c651c837355e5089db73e7bcfd1ac68bf2030b2da69d95246990ed71f6cdd704653a264f23f1c2d6ac862da41e8bad0c6028d4a238b260197cf6e960d199a5ea66e3a9e08c4dcd811381a59db6a08e409beba5e2dfd816ff146a2aa5e951656f2667faeb3e15f1314ba8d0d686633fd6b37cf22840e1a74dfdd9db641800bcab390c57758162437ddbb79d725a853e8dc29a03af4656aa175f6bac1de6878be019e8adef6872b4e2633ecc2ce09840c8ca5ff22e00b0d7793aafe3b250fa2318938707bb000c6ae1c7bc7799c9b34e682e927bf4c82612c75f59b823feee37c3ae355c103693f538e8546322cc05948ed6f81d4d3b00bc8fcf8f47f3b891dcb18ac8989ce4aa01d4975761301a90439e2085478119014466985e91a2f2c0c7042b70fbaa6aa3819b04904b03bf2d399e83f2ae003ff881d29a4eb809c4e3ab0e52216d985904acfeea45c97c153fecc9fca5dd62076a13f242171b9032cf7cdcfda7effc77e03b9914c99b9224a17c9c0efa7fcde4d3a1cdd3ad0c55d6ed5a377df4cfb0d95830cefded52f84d4ae95ea1dcc918a5ac21cf9dbdc6114fd89fe89b7abb1d61aaae40fb878d2ff171f2001cd0d4fbf4ae9597edc117ac784d456c6f2c7822435f017b41643e5e34c65bc3ba10cd71e46a37a9d65672630174843faa4df6f7b3d574266efb0014c5a5f054d37edcbd5585a8c9ce7f24e98a4acfe97a1100cf9d12fd8616e164e2caa510f10d33a86de52734801a254dad4435aaee3abd56d70fdb023b484bf56e45f5450c55a02a78c760913dce8523f07cdfc871b4368f9082a74aa38b29971c482d7ae9a4f3f32975f668e1c456dd690243bfb31ac5dd12c157f3ee6629d419aaf85a6edf08d496990d04a42a013a915ffca5e2d73549a2bea7a94e5300522be083faba60529607633a71acc4e74d2491f33550414abc5565722d3550435b7cb2de193bd4405d9bf577aac3ab252c778156e1196717bb1211e5e0e040be989e0fb723f8e86255b804ebadff541dc9575ef07195cf12854fd427e7126174c8cde93f0146d9aefd3c4e5dedd4921a18e69c5185093d806e452f0a680c089bab0481cb129a486d400080758b3735fa94b5dceebda47815eea9794f08fb3c92bf1660939dd980b5b11efe21a26194016ef35d7cb9f441b2b0610cbd99799131a8f0f6106e9f6ad283ca903e371932d31c50ad25de05b23c90d8d477cbff382587f7fa46e2e0386147f71306be8c4df7ccc6d972fc86dfdab33f391aa909347505fabf999b29d58535889b407a449c0b09160e8c924cdccdeaef0b0f395cf28e6363637ebc31f61fadc3c07864704c6cd38e4c2eba16e3c33dd57b3011be8c47b85118fef3ef13e6e4a0e5b3b2b38e4d136e8c69efa1ecb8122e1134b9aaeca71516a1484e1271992a2afcf6f685d0288618a589279cc095cb5fe7fc9ee95b1f4a09588e51a2d9117c62f4c5a156cd20472452c63782c6c08f835f82f0cd9c7458c87b38b278b54687d313b1f8df52aef6c08ae4d2482777ad64f37348115d951534984dd18c731e6f06e6b58767f9b61a323ac6fae9b16aa221dd8dc54efb97b6e7f6be16ec395aa975ff09f7e52585d2cb2da4341d9d8e3956d2164106d8426611bb1f7f522609537ba0cb58778f586682da880b505f6415b730e5e3056d3327524389763740d0f760e674f0fdb3cff766a62231d6f6d3316e1bb467ca9a20857e86a79c991fb859d7e280d53bc0c7d8174dbee0ca245d89a3488f0105b4e178f4f286244ff383bf766883e07e913acca70ad798905d2eef909d2a2b47c82ca538f7bec5fcdd1e30c0d691c04a0f8797cc6039a8b8ba94248d47d4a6e21466be57dc75bf20e51c79936e0c8145eb65cbb7b9ecce828a3a965bfafbc45a541a7be0ff8c2aacf625b3fbc2e147da2b757bb1861e560e0de1639f104fc19003a5ba9bfd4d604256f16b239668c5fb488f4c93d5b4638f01280323c408053478e49c335ecb7eb5d24eac37777577d5074736c38e7514c004d76a60393945e9a937485c9348277522e32fa6f667fe15d98983d577228e2873d0a9cbd7b17328233ac7f1ac89026a373dcb4574da41b4c266e65ff1832e7c74d2f793f28b890ab1c6c198b1e8e8b5505ae624e4c2d39d11bef8878185d2011dde73cb85a1dfd20cf59d2f26c6088eaf0af2af08029a78b39bbaf166b1d4a8bf1bf3acf1e7504d91c7d8b0ca5428bb9f9f350a40fa88352f27d44bc1cb17acd8f74a8ac728b76eec017c6dff07ff401bb4659352f1809483da3321692729eb41c1849bf861cba3f9767fd440d7c0302089435765b2a58fb04bc90d6235cf2603e574caa58736616fa158c8cc872c18d689fb17d4bde757e36ea427173113a62c80b3a0aabf86d46a1d7ccf115f0187df74dd5115c1a13ea0c36a82228d31d8e0c5040c34bbb5faad8f707a948e0fc7831d46a8d5cf9798aef606f496e1a6a0f971939d5bb5e119f72877a27f70d65485c74e975e4a03186217499c20bc38471a65121609c7c840d039103c10f7bc12d2143e5a3f759f93a2045c4452589cff62e1780e6470cd3498391a4199034bf36018f2d62cc623111469df266eab1e4c1928437d9942ff3c17a81cc7d1e61b0b30986db30ea8a749a9b9a9864497975c6e0a4403bd7d3948c128132adf2e23060a72825a2cb8abda2a9142e00de8907bc544178b2c0c94b9f56fa3a6822156b4427d79e2d727cd22c73a5811b49a0ab6536de4f61298183b715f4fa4b342dd0acbe07c7682f29ab24ae6cf02ed686d0f694314eea0d751a4e35b5f68cf82d087c94be89b75fab6fe8af923462ef71e11ef86410bb0da030f7d4b2964c0159678efa5a90b12d38be9602dec06179431da2cf02787d1a334ac50aa73dce448315b2b490c087e08dda1c9540e885e9f2030e37be0160bb39ec2ce69f508cd55c2d43d2d26ede8a5248f9a7f990bc4c780c0c658ace461b6d0d4d7d602900e56616ea6ff4c273f6cdf11fa0f309d4ca3e839e9a464f355ed7bb43f46e9cf4c4d26476661ba4d0557f5ece47b1a7adcb4d7e321fd1e73427d063ca103410d3435a42f1afa4e5885b441c4e1caba64719acd2eac8d08410b8f96b92343a85719b3da256ab90037e7922d9b16a580b8ccdd2e1ecc4f7b74d74d959428caba10daae988d98ad9a79a0466602f0ad68c19e9fa9d46d3e158d23ab5b269fe2c1efce5a0ff49aea9e16c89831e67e22724195d4bbc3f9a34654cb98a8f606dcfcfe65191b104f0a413d4873e2d470bb2d966916211220305640c434038a313acea2176e66a34d2924b5e5a24c4db9d45e8cea73f6bb45d1cb81a3c9be1cb81222187c9a1c068814ef0a2e65ce33eb2072234d479e7bd4b81656ee08adb04a0b4b419509b6ba4e28fea369f5811db89b8a3b28e94c8928df6f1ebed28c8e26febcb37e27a838fc14d34b3a658e1aa6812ab0b85382be585d77e89a85f0586cfe918c4b8da5fec71a4116e9b2d83f72cdc9ecefb1104930afbcbdb521dbeec42acf60e7f0e438904eaaa82d8327c0256baac8f96a295dd2b038c78635005c729353ebe3f454ec51e621edb5f0ce2361f8f47689d81063617fe1b0aee1d4a345cdc6268372de87a37519c946654bf2ddd6dfe966d328855363f8e2149a17c62fcf24fd19399deb5d08cbcb3a7b328d845480fd9a357f56298f34d590e8b2c999e2391ea181ece561efddde542eb21f49a5193aacad7548f6b09cc1ae63111fdd5ffd576b7fa2cac5e0c1945fccaa77055993aae0b53999362e3e095707b84f87aea45891ebbe8ab64ecd58c3e362270ebf0a817bfee86f90a8f835010a3a66f1a811380719c229bea584b7547a96eb689d9cdd3033c68fa22b0d9704656618865b9d163916f876aaeafdc115aa0dbf6adea4ac15bed30635afc2ec2533bfc9c46678dffd9e9a43572109be7bc7f9e1262cf7c585b123007a5a282c7d4baaf26609500e2a63fd7b1c61b6c943dc7deb49c6869303b191aad61ee9f117dbf973bd98e7b998fe61c132eedd99287b9d08739791c29cc30d0b297396ef7696a2d26f46434e57aa291a41c8a5fd6dc2cf30eb0c23cef25c44e588a843a877fd25b9fc45a37f54c8bec45238ede534903781db0af5666d8c91c2fa1b2086c86256dbb1d4fcaa18475887c35ae424aca3557123e53a8ecb87a7035b82d0702182ff1a3931d8861b9704708480b3279ad03d258764cb5f80a59596e1d4fc73bf022ae1f6b3de31e6e6ee14b8a0cf768c85831eb31197c500869f21561a08bb94a13934be269222d4bef6cf1a09fafc52b44e654aee1731327f5cf2a1cf09a4446c2066e0b7b843532bafea1bbc7012de568b1dbf30f63fbf3aac2d2bd81f6bea1ecb411518276d83e8e922f980c717753f9c1fdf6860e024c15c34716bb563ce28d70f9bc78375b6f1af5ff24a604cdf45b903ca64bccc26670d8b99227854df426514feb232a741d0e4e85ba272890ec2f0028fdb2f09527c4d11284a1a02804c566751ff080ea00b77eecbc6e65b01fbefdb3032d196df989d8216f830750c5e6cee535c03db10b86d08f33860259fd3a148bf536b853491e0fa202041618aabf01b8484bc37de22705b77a3695b3f6979303a8a5ebee620802543f7a9267e44d40acd586929b0be1056702372cc9ef6c848f3c8a70d21bc2d8778123efc078c1a400e5c271e4bf5a81b9725875d1edb5889037c95e8771aba511529537577456e11795c473055b8b15717289a3416f8dd3520b9c43c2c57ee1fd1bb6dec4a3408608557475d7ebe05b3557b2a312bc80afe3b938d0826daf12ab91a76dd978937200d1b72e63024e32aed50ebbc305c2daedb84463658d27bba07449489650836ad9a7694c808b43e800005e3437e1d54caffe2c1a5d1ae16a16161b55df1a3cd5f217380284109b3de4abbf69e37db8e58fa772bf538549df5b136e1d722c48d9d8e62d2c04df25532330d0676f2c22dcb267aeb2ac470e46a77982932be96452b04373477053fa74480281b55c9d4b5f8ef07e735b157c26bd84093944e9d100279cc4fc3a4252cb1072b3ad9cc45b2a2a4dabba7c4e18b8aef9398465f49bc4e3ce2ad7ccf662f73f2e59fdffafb642122112247b6f5d9077120e42fd6502c9c5bb2dc98fa23270829ccb7c0a1999a534f9d897adddbb1a6835e1f6e9e4c2eeab5f4d6e133d6c40de62a2c553323a6f650035b3221dc510e030cbcd5dafc9e43c702f2ca1e42f5753bce5c09c801271515fa57b98964e8b0ebb669b26c552cef9282587896810d09ebc2ad94a2aba798c4dd40a7904e954c01c310d5e09df08c0b2d1e6cc61c3cf89823bff09a12c61d78bd6c253c"}, {0xc0, 0x123, 0x3b0, "315ef32b2dae71755dd5ce140fa3c1be3cb09d27b336c20954f3e3f7ed1e60b5a439653268efe6d055e551845484204cd2488dc485bc60372661119ac9343d032e59efd8b0d979f7d99aa0949c508b726a9b0b1e23cf05317a8b3ad305c74b492be4ec83259e98206503bffd5528aa9f1b68c8bf4cbcd9a9b076bbd46f86f649cc0abc3d4af6d532664bdd4efbee28da36399fa49aa2341f539833b1ead33469379e41d2ceb831befc8c3e1e210d62"}], 0x1250}, 0x0, 0x48d1, 0x1, {0x0, r1}}, 0x9e57) sendmmsg$inet6(r3, &(0x7f0000000700)=[{{&(0x7f0000000080)={0xa, 0x4e20, 0x7, @empty, 0xfff}, 0x1c, 0xfffffffffffffffd, 0x0, &(0x7f0000000200)=[@flowinfo={{0x14, 0x29, 0xb, 0x6}}, @hopopts={{0x50, 0x29, 0x36, {0x2b, 0x6, '\x00', [@pad1, @jumbo={0xc2, 0x4, 0xfffffffd}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @calipso={0x7, 0x20, {0x2, 0x6, 0xfd, 0x3f, [0xce00, 0x800, 0x0]}}, @ra={0x5, 0x2, 0xc2f5}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x9}}, @pktinfo={{0x24, 0x29, 0x32, {@local}}}, @hoplimit={{0x14, 0x29, 0x34, 0x7852}}], 0xc0}}, {{&(0x7f0000000100)={0xa, 0x4e20, 0x7cc, @ipv4={'\x00', '\xff\xff', @loopback}, 0x6}, 0x1c, &(0x7f0000000340)=[{&(0x7f0000000140)="d0ac5f651c44b619461fa4c3b2b891c85a22249689b1bf5133e60a2ed5d53c3e0d32a66678d92574c514c59c01dd", 0x2e}], 0x1}}, {{&(0x7f0000000380)={0xa, 0x4e23, 0x0, @private0, 0x97}, 0x1c, &(0x7f0000000500)=[{&(0x7f00000003c0)="c168d626bde6fd1eeaf0e0afc26b9de9693f2ab36c4efbea28ce7c9712eb51144a13b1b080051e9364771ce22637aa2a54be8b8cdceae710dafabe9f8f6c4ba3ca3098d0ac2ad938d3013242938acfa1aaeffeac69b38ad5031ea9", 0x5b}, {&(0x7f0000000440)="5a1ffca7104fd777dbce47ac28369030f6d617a7546a77f4166367926634e3dc44b136c2ce2591", 0x27}, {&(0x7f0000000580)="bff55de1b3cd422237e724d2da28b7fcd665a44206f7e3cad95820ffddfb20646754aafc835f16fc4305e93a5d9d899ad4272725b53d025653257e62f5aa15cfb10c9c2ffe7b9e3e39", 0x49}], 0x3, &(0x7f0000000600)}}], 0x3, 0x4000000) syz_io_uring_setup(0x21, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r2, 0x0) [ 1439.749610] FAULT_INJECTION: forcing a failure. [ 1439.749610] name failslab, interval 1, probability 0, space 0, times 0 [ 1439.752131] CPU: 1 PID: 10179 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1439.753634] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1439.755453] Call Trace: [ 1439.756029] dump_stack+0x107/0x167 [ 1439.756829] should_fail.cold+0x5/0xa [ 1439.757662] ? io_uring_setup+0x258/0x2980 [ 1439.758583] should_failslab+0x5/0x20 [ 1439.759426] kmem_cache_alloc_trace+0x55/0x320 [ 1439.760427] io_uring_setup+0x258/0x2980 [ 1439.761312] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1439.762365] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1439.763472] ? wait_for_completion_io+0x270/0x270 [ 1439.764546] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1439.765685] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.766809] do_syscall_64+0x33/0x40 [ 1439.767624] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1439.768738] RIP: 0033:0x7f4a0d16cb19 [ 1439.769544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1439.773487] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1439.775106] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1439.775999] FAULT_INJECTION: forcing a failure. [ 1439.775999] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1439.776606] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1439.776618] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1439.776630] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1439.776642] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1439.782337] CPU: 0 PID: 10182 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1439.783294] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1439.784434] Call Trace: [ 1439.784797] dump_stack+0x107/0x167 [ 1439.785300] should_fail.cold+0x5/0xa [ 1439.785842] __alloc_pages_nodemask+0x182/0x600 [ 1439.786480] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1439.787322] ? cap_capable+0x1cd/0x230 [ 1439.787863] alloc_pages_current+0x187/0x280 [ 1439.788475] __get_free_pages+0xc/0xa0 [ 1439.789013] io_uring_setup+0xf9a/0x2980 [ 1439.789574] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1439.790269] ? wait_for_completion_io+0x270/0x270 [ 1439.790948] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1439.791674] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.792389] do_syscall_64+0x33/0x40 [ 1439.792922] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1439.793645] RIP: 0033:0x7fcf2a53eb19 [ 1439.794146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1439.796682] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1439.797730] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1439.798678] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1439.799663] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1439.800644] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1439.801633] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1439.819871] FAULT_INJECTION: forcing a failure. [ 1439.819871] name failslab, interval 1, probability 0, space 0, times 0 [ 1439.822413] CPU: 1 PID: 10184 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1439.823878] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 10:20:52 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) (fail_nth: 2) [ 1439.825634] Call Trace: [ 1439.826336] dump_stack+0x107/0x167 [ 1439.827124] should_fail.cold+0x5/0xa [ 1439.827934] ? create_object.isra.0+0x3a/0xa30 [ 1439.828903] should_failslab+0x5/0x20 [ 1439.829700] kmem_cache_alloc+0x5b/0x310 [ 1439.830566] create_object.isra.0+0x3a/0xa30 [ 1439.831505] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1439.832594] kmem_cache_alloc_trace+0x151/0x320 [ 1439.833582] ? io_tctx_exit_cb+0xf0/0xf0 [ 1439.834459] percpu_ref_init+0xd8/0x3d0 [ 1439.835307] io_uring_setup+0x47a/0x2980 [ 1439.836172] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1439.837200] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1439.838266] ? wait_for_completion_io+0x270/0x270 [ 1439.839321] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1439.840422] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.841510] do_syscall_64+0x33/0x40 [ 1439.842301] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1439.843387] RIP: 0033:0x7fc343bc8b19 [ 1439.844167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1439.846155] FAULT_INJECTION: forcing a failure. [ 1439.846155] name failslab, interval 1, probability 0, space 0, times 0 [ 1439.848051] RSP: 002b:00007fc34111d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1439.848077] RAX: ffffffffffffffda RBX: 00007fc343cdc020 RCX: 00007fc343bc8b19 [ 1439.848089] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1439.848101] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1439.848113] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1439.848124] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1439.855252] CPU: 0 PID: 10187 Comm: syz-executor.6 Not tainted 5.10.247 #1 [ 1439.856126] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1439.857176] Call Trace: [ 1439.857538] dump_stack+0x107/0x167 [ 1439.858011] should_fail.cold+0x5/0xa [ 1439.858497] ? do_epoll_ctl+0xba2/0x2c00 [ 1439.859013] should_failslab+0x5/0x20 [ 1439.859532] kmem_cache_alloc+0x5b/0x310 [ 1439.860056] do_epoll_ctl+0xba2/0x2c00 [ 1439.860569] ? __might_fault+0xd3/0x180 [ 1439.861081] ? lock_downgrade+0x6d0/0x6d0 [ 1439.861609] ? __ia32_sys_epoll_create+0x1e0/0x1e0 [ 1439.862249] __x64_sys_epoll_ctl+0x13f/0x1c0 [ 1439.862850] ? do_epoll_ctl+0x2c00/0x2c00 [ 1439.863386] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1439.864052] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.864709] do_syscall_64+0x33/0x40 [ 1439.865182] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1439.865830] RIP: 0033:0x7fc821c17b19 [ 1439.866300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1439.868609] RSP: 002b:00007fc81f18d188 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 1439.869565] RAX: ffffffffffffffda RBX: 00007fc821d2af60 RCX: 00007fc821c17b19 [ 1439.870459] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000005 [ 1439.871418] RBP: 00007fc81f18d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1439.872319] R10: 0000000020000200 R11: 0000000000000246 R12: 0000000000000001 [ 1439.873273] R13: 00007ffd469b9baf R14: 00007fc81f18d300 R15: 0000000000022000 10:20:52 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x13, 0x0) 10:20:52 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 14) 10:20:52 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 3) [ 1439.957004] FAULT_INJECTION: forcing a failure. [ 1439.957004] name failslab, interval 1, probability 0, space 0, times 0 [ 1439.958492] CPU: 0 PID: 10191 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1439.959338] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1439.960396] Call Trace: [ 1439.960726] dump_stack+0x107/0x167 [ 1439.961170] should_fail.cold+0x5/0xa [ 1439.961636] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1439.962310] should_failslab+0x5/0x20 [ 1439.962782] kmem_cache_alloc_trace+0x55/0x320 [ 1439.963346] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1439.964001] io_uring_setup+0x14f6/0x2980 [ 1439.964507] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1439.965119] ? wait_for_completion_io+0x270/0x270 [ 1439.965733] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1439.966366] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.966991] do_syscall_64+0x33/0x40 [ 1439.967478] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1439.968096] RIP: 0033:0x7fcf2a53eb19 [ 1439.968550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1439.970770] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1439.971698] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1439.972618] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1439.973473] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1439.974395] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1439.975255] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1439.985390] FAULT_INJECTION: forcing a failure. [ 1439.985390] name failslab, interval 1, probability 0, space 0, times 0 [ 1439.986816] CPU: 0 PID: 10194 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1439.987652] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1439.988639] Call Trace: [ 1439.988955] dump_stack+0x107/0x167 [ 1439.989391] should_fail.cold+0x5/0xa [ 1439.989845] ? create_object.isra.0+0x3a/0xa30 [ 1439.990422] should_failslab+0x5/0x20 [ 1439.990882] kmem_cache_alloc+0x5b/0x310 [ 1439.991406] create_object.isra.0+0x3a/0xa30 [ 1439.991929] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1439.992576] kmem_cache_alloc_trace+0x151/0x320 [ 1439.993134] io_uring_setup+0x258/0x2980 [ 1439.993618] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1439.994194] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1439.994795] ? wait_for_completion_io+0x270/0x270 [ 1439.995389] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1439.996013] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.996629] do_syscall_64+0x33/0x40 [ 1439.997076] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1439.997684] RIP: 0033:0x7f4a0d16cb19 [ 1439.998127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1440.000439] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1440.001341] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1440.002184] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1440.003035] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1440.003883] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1440.004731] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:20:52 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) (fail_nth: 3) 10:20:53 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 12) [ 1440.031095] FAULT_INJECTION: forcing a failure. [ 1440.031095] name failslab, interval 1, probability 0, space 0, times 0 [ 1440.032493] CPU: 0 PID: 10196 Comm: syz-executor.6 Not tainted 5.10.247 #1 [ 1440.033298] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1440.034265] Call Trace: [ 1440.034579] dump_stack+0x107/0x167 [ 1440.035006] should_fail.cold+0x5/0xa [ 1440.035461] ? create_object.isra.0+0x3a/0xa30 [ 1440.035992] should_failslab+0x5/0x20 [ 1440.036460] kmem_cache_alloc+0x5b/0x310 [ 1440.036941] create_object.isra.0+0x3a/0xa30 [ 1440.037449] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1440.038082] kmem_cache_alloc+0x159/0x310 [ 1440.038568] do_epoll_ctl+0xba2/0x2c00 [ 1440.039036] ? __might_fault+0xd3/0x180 [ 1440.039536] ? lock_downgrade+0x6d0/0x6d0 [ 1440.040018] ? __ia32_sys_epoll_create+0x1e0/0x1e0 [ 1440.040638] __x64_sys_epoll_ctl+0x13f/0x1c0 [ 1440.041150] ? do_epoll_ctl+0x2c00/0x2c00 [ 1440.041664] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1440.042277] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1440.042917] do_syscall_64+0x33/0x40 [ 1440.043359] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1440.043952] RIP: 0033:0x7fc821c17b19 [ 1440.044386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1440.046510] RSP: 002b:00007fc81f18d188 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 1440.047395] RAX: ffffffffffffffda RBX: 00007fc821d2af60 RCX: 00007fc821c17b19 [ 1440.048223] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000005 [ 1440.049050] RBP: 00007fc81f18d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1440.049870] R10: 0000000020000200 R11: 0000000000000246 R12: 0000000000000001 [ 1440.050700] R13: 00007ffd469b9baf R14: 00007fc81f18d300 R15: 0000000000022000 10:20:53 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x14, 0x0) 10:20:53 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 15) [ 1440.097430] FAULT_INJECTION: forcing a failure. [ 1440.097430] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1440.100079] CPU: 1 PID: 10198 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1440.101547] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1440.103302] Call Trace: [ 1440.103864] dump_stack+0x107/0x167 [ 1440.104641] should_fail.cold+0x5/0xa [ 1440.105457] __alloc_pages_nodemask+0x182/0x600 [ 1440.106462] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1440.107746] ? cap_capable+0x1cd/0x230 [ 1440.108400] FAULT_INJECTION: forcing a failure. [ 1440.108400] name failslab, interval 1, probability 0, space 0, times 0 [ 1440.108576] alloc_pages_current+0x187/0x280 [ 1440.108601] __get_free_pages+0xc/0xa0 [ 1440.111624] io_uring_setup+0xe27/0x2980 [ 1440.112500] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1440.113565] ? wait_for_completion_io+0x270/0x270 [ 1440.114605] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1440.115723] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1440.116814] do_syscall_64+0x33/0x40 [ 1440.117597] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1440.118688] RIP: 0033:0x7fc343bc8b19 [ 1440.119484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1440.123350] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1440.124952] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1440.126451] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1440.127974] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1440.129470] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1440.130976] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1440.132498] CPU: 0 PID: 10200 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1440.133270] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1440.134240] Call Trace: [ 1440.134543] dump_stack+0x107/0x167 [ 1440.134949] should_fail.cold+0x5/0xa [ 1440.135386] ? create_object.isra.0+0x3a/0xa30 [ 1440.135894] should_failslab+0x5/0x20 [ 1440.136350] kmem_cache_alloc+0x5b/0x310 [ 1440.136803] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1440.137463] create_object.isra.0+0x3a/0xa30 [ 1440.137976] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1440.138537] kmem_cache_alloc_trace+0x151/0x320 [ 1440.139096] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1440.139703] io_uring_setup+0x14f6/0x2980 [ 1440.140191] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1440.140754] ? wait_for_completion_io+0x270/0x270 [ 1440.141336] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1440.141915] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1440.142520] do_syscall_64+0x33/0x40 [ 1440.142933] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1440.143544] RIP: 0033:0x7fcf2a53eb19 [ 1440.143979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1440.146132] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1440.147021] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1440.147862] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1440.148704] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1440.149534] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1440.150356] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:21:09 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 4) 10:21:09 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) (fail_nth: 4) 10:21:09 executing program 4: r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x4) r1 = perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fe, 0x0, @perf_config_ext={0x2}, 0x2000, 0x1, 0xff, 0x0, 0x0, 0x20000004}, 0x0, 0x0, 0xffffffffffffffff, 0x8) r2 = dup2(r0, r0) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000200)={r1, 0x5, 0x1f}) fsconfig$FSCONFIG_SET_PATH_EMPTY(r2, 0x4, &(0x7f0000000180)='/dev/zero\x00', &(0x7f00000001c0)='./file1\x00', r3) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x100) openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/diskstats\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x620a02, 0x0) getsockopt$bt_BT_SNDMTU(r4, 0x112, 0xc, &(0x7f0000000080)=0xffff, &(0x7f00000000c0)=0x2) 10:21:09 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 19) 10:21:09 executing program 3: r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x102) getpgrp(0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r1, 0x0, 0x0, 0x1000002) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000f, 0x1f012, r1, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000f, 0x1f012, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000902000/0x1000)=nil, 0x1000, 0x0, 0x810, 0xffffffffffffffff, 0x0) r3 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fdatasync(r2) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8902, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYRES32=r0, @ANYBLOB="009db9718991ac6ee1a15e255dc2c5d00002080086278df6288f4fc034c1f618eecb3e43633585b9a3e283e73d87227deb56f3cba8969fcd3ed5f3aaa17df9c8dc9ebc2f477169e7d8bd1c7cfda89e6abc15d8d2961d750d9fb146f83dcee942435c1d7032cb880750d25c8eaea024874fbb96810e4b58432329d1bf530b1b3051310bd47c832dd672db28a0c2b0701b79e413bd3e279c5c6a3abc909166523b0ccd8c96454c126b6b198aad2a739742068ac45a0ba669c999e030d11fb834bfe1160789"]) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2000003, 0x1f012, r4, 0x0) fcntl$setpipe(r3, 0x407, 0xfffffffffffffffe) 10:21:09 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 16) 10:21:09 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x15, 0x0) 10:21:09 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 13) [ 1456.697763] FAULT_INJECTION: forcing a failure. [ 1456.697763] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1456.700447] CPU: 1 PID: 10217 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1456.701942] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1456.703972] Call Trace: [ 1456.704679] dump_stack+0x107/0x167 [ 1456.705640] should_fail.cold+0x5/0xa [ 1456.706644] __alloc_pages_nodemask+0x182/0x600 [ 1456.706993] FAULT_INJECTION: forcing a failure. [ 1456.706993] name failslab, interval 1, probability 0, space 0, times 0 [ 1456.707879] ? lock_release+0x680/0x680 [ 1456.707913] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1456.712798] ? lock_downgrade+0x6d0/0x6d0 [ 1456.713889] alloc_pages_current+0x187/0x280 [ 1456.715049] kmalloc_order+0x35/0x160 [ 1456.716058] kmalloc_order_trace+0x14/0xa0 [ 1456.717164] io_uring_setup+0x33c/0x2980 [ 1456.718219] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1456.719487] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1456.720656] ? wait_for_completion_io+0x270/0x270 [ 1456.721723] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1456.722865] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1456.724002] do_syscall_64+0x33/0x40 [ 1456.724819] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1456.725945] RIP: 0033:0x7f4a0d16cb19 [ 1456.726764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1456.730789] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1456.732464] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1456.734035] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1456.735622] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1456.737207] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1456.738771] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1456.740390] CPU: 0 PID: 10220 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1456.741869] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1456.743633] Call Trace: [ 1456.744194] dump_stack+0x107/0x167 [ 1456.744970] should_fail.cold+0x5/0xa [ 1456.745768] ? create_object.isra.0+0x3a/0xa30 [ 1456.746725] should_failslab+0x5/0x20 [ 1456.747534] kmem_cache_alloc+0x5b/0x310 [ 1456.748399] create_object.isra.0+0x3a/0xa30 [ 1456.749315] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1456.750385] kmem_cache_alloc_trace+0x151/0x320 [ 1456.751379] ? io_async_queue_proc+0x80/0x80 [ 1456.752297] percpu_ref_init+0xd8/0x3d0 [ 1456.753139] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1456.754276] io_uring_setup+0x14f6/0x2980 [ 1456.755167] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1456.756230] ? wait_for_completion_io+0x270/0x270 [ 1456.757265] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1456.758362] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1456.759465] do_syscall_64+0x33/0x40 [ 1456.760252] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1456.761339] RIP: 0033:0x7fc39eed2b19 [ 1456.762123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1456.766010] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1456.767617] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1456.769115] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1456.770600] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1456.772110] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1456.773594] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1456.778081] FAULT_INJECTION: forcing a failure. [ 1456.778081] name failslab, interval 1, probability 0, space 0, times 0 [ 1456.780702] CPU: 1 PID: 10223 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1456.782266] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1456.784429] Call Trace: [ 1456.785156] dump_stack+0x107/0x167 [ 1456.786134] should_fail.cold+0x5/0xa [ 1456.787174] ? create_object.isra.0+0x3a/0xa30 [ 1456.788387] should_failslab+0x5/0x20 [ 1456.789401] kmem_cache_alloc+0x5b/0x310 [ 1456.790493] create_object.isra.0+0x3a/0xa30 [ 1456.791698] kmemleak_alloc_percpu+0xa0/0x100 [ 1456.792952] pcpu_alloc+0x4e2/0x1240 [ 1456.794011] ? io_async_queue_proc+0x80/0x80 [ 1456.795205] percpu_ref_init+0x31/0x3d0 [ 1456.796322] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1456.797810] io_uring_setup+0x14f6/0x2980 [ 1456.798932] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1456.800330] ? wait_for_completion_io+0x270/0x270 [ 1456.801653] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1456.803084] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1456.804507] do_syscall_64+0x33/0x40 [ 1456.805528] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1456.806890] RIP: 0033:0x7fcf2a53eb19 [ 1456.807925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1456.812841] RSP: 002b:00007fcf27a93108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1456.814734] RAX: ffffffffffffffda RBX: 00007fcf2a652020 RCX: 00007fcf2a53eb19 [ 1456.816677] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1456.818410] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1456.820322] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1456.822261] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1456.840408] FAULT_INJECTION: forcing a failure. [ 1456.840408] name failslab, interval 1, probability 0, space 0, times 0 [ 1456.842913] CPU: 1 PID: 10229 Comm: syz-executor.6 Not tainted 5.10.247 #1 [ 1456.844442] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1456.846284] Call Trace: [ 1456.846875] dump_stack+0x107/0x167 [ 1456.847689] should_fail.cold+0x5/0xa [ 1456.848531] ? ep_ptable_queue_proc+0xa7/0x330 [ 1456.849550] should_failslab+0x5/0x20 [ 1456.850433] kmem_cache_alloc+0x5b/0x310 [ 1456.851468] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1456.852887] ? ep_show_fdinfo+0x380/0x380 [ 1456.854011] ep_ptable_queue_proc+0xa7/0x330 [ 1456.855191] ? ep_show_fdinfo+0x380/0x380 [ 1456.856319] ep_item_poll+0x258/0x3f0 [ 1456.857354] ? ep_eventpoll_poll+0x170/0x170 [ 1456.858561] do_epoll_ctl+0x1a14/0x2c00 [ 1456.859663] ? lock_downgrade+0x6d0/0x6d0 [ 1456.860679] ? __ia32_sys_epoll_create+0x1e0/0x1e0 [ 1456.861804] ? ep_show_fdinfo+0x380/0x380 [ 1456.862856] __x64_sys_epoll_ctl+0x13f/0x1c0 [ 1456.863920] ? do_epoll_ctl+0x2c00/0x2c00 [ 1456.864937] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1456.866158] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1456.867383] do_syscall_64+0x33/0x40 [ 1456.868277] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1456.869457] RIP: 0033:0x7fc821c17b19 [ 1456.870326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1456.874538] RSP: 002b:00007fc81f16c188 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 1456.876539] RAX: ffffffffffffffda RBX: 00007fc821d2b020 RCX: 00007fc821c17b19 [ 1456.878357] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000005 [ 1456.880128] RBP: 00007fc81f16c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1456.882047] R10: 0000000020000200 R11: 0000000000000246 R12: 0000000000000001 [ 1456.883986] R13: 00007ffd469b9baf R14: 00007fc81f16c300 R15: 0000000000022000 10:21:09 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x16, 0x0) 10:21:09 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 5) 10:21:09 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 20) [ 1456.909095] FAULT_INJECTION: forcing a failure. [ 1456.909095] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1456.912283] CPU: 1 PID: 10225 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1456.914123] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1456.916383] Call Trace: [ 1456.917135] dump_stack+0x107/0x167 [ 1456.918158] should_fail.cold+0x5/0xa [ 1456.919246] __alloc_pages_nodemask+0x182/0x600 [ 1456.920559] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1456.922212] ? cap_capable+0x1cd/0x230 [ 1456.923333] alloc_pages_current+0x187/0x280 [ 1456.924567] __get_free_pages+0xc/0xa0 [ 1456.925623] io_uring_setup+0xf9a/0x2980 [ 1456.926761] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1456.928181] ? wait_for_completion_io+0x270/0x270 [ 1456.929592] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1456.931046] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1456.932484] do_syscall_64+0x33/0x40 [ 1456.933532] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1456.934959] RIP: 0033:0x7fc343bc8b19 [ 1456.936019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1456.941030] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1456.943118] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1456.945096] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1456.947055] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1456.949007] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1456.950822] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:21:09 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) (fail_nth: 5) 10:21:09 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 17) [ 1457.001508] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1457.003631] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1457.005111] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present 10:21:09 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 14) [ 1457.006540] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 1457.008467] print_req_error: 118 callbacks suppressed [ 1457.008487] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1457.027501] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1457.029545] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1457.031258] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1457.032649] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 05 e0 00 00 40 00 [ 1457.034247] blk_update_request: I/O error, dev sr0, sector 6016 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 1457.057688] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1457.059840] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1457.061305] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1457.062713] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 1457.064329] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 0 [ 1457.066435] buffer_io_error: 118 callbacks suppressed [ 1457.066447] Buffer I/O error on dev sr0, logical block 0, async page read [ 1457.069070] Buffer I/O error on dev sr0, logical block 1, async page read [ 1457.070602] Buffer I/O error on dev sr0, logical block 2, async page read [ 1457.072104] Buffer I/O error on dev sr0, logical block 3, async page read [ 1457.073632] Buffer I/O error on dev sr0, logical block 4, async page read [ 1457.075156] Buffer I/O error on dev sr0, logical block 5, async page read [ 1457.076682] Buffer I/O error on dev sr0, logical block 6, async page read [ 1457.078197] Buffer I/O error on dev sr0, logical block 7, async page read [ 1457.124826] FAULT_INJECTION: forcing a failure. [ 1457.124826] name failslab, interval 1, probability 0, space 0, times 0 [ 1457.127286] CPU: 0 PID: 10239 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1457.128755] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1457.130499] Call Trace: [ 1457.131066] dump_stack+0x107/0x167 [ 1457.131861] should_fail.cold+0x5/0xa [ 1457.132674] ? create_object.isra.0+0x3a/0xa30 [ 1457.133651] should_failslab+0x5/0x20 [ 1457.134458] kmem_cache_alloc+0x5b/0x310 [ 1457.135338] create_object.isra.0+0x3a/0xa30 [ 1457.136271] ? kasan_unpoison_shadow+0x33/0x50 [ 1457.137234] kmalloc_order+0xfe/0x160 [ 1457.138045] kmalloc_order_trace+0x14/0xa0 [ 1457.138940] io_uring_setup+0x33c/0x2980 [ 1457.139814] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1457.140837] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1457.141915] ? wait_for_completion_io+0x270/0x270 [ 1457.142969] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1457.144093] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1457.145189] do_syscall_64+0x33/0x40 [ 1457.145976] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1457.147064] RIP: 0033:0x7f4a0d16cb19 [ 1457.147863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1457.151782] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1457.153383] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1457.154883] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1457.156389] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1457.157894] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1457.159403] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1457.166133] FAULT_INJECTION: forcing a failure. [ 1457.166133] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1457.168662] CPU: 0 PID: 10240 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1457.170118] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1457.170235] FAULT_INJECTION: forcing a failure. [ 1457.170235] name failslab, interval 1, probability 0, space 0, times 0 [ 1457.171862] Call Trace: [ 1457.171887] dump_stack+0x107/0x167 [ 1457.171911] should_fail.cold+0x5/0xa [ 1457.171941] _copy_to_user+0x2e/0x180 [ 1457.177279] io_uring_setup+0x11b5/0x2980 [ 1457.178172] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1457.179249] ? wait_for_completion_io+0x270/0x270 [ 1457.180295] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1457.181415] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1457.182504] do_syscall_64+0x33/0x40 [ 1457.183308] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1457.184387] RIP: 0033:0x7fc39eed2b19 [ 1457.185181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1457.189133] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1457.190756] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1457.192275] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1457.193801] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1457.195330] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1457.196855] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1457.198415] CPU: 1 PID: 10243 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1457.200016] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1457.201888] Call Trace: [ 1457.202498] dump_stack+0x107/0x167 [ 1457.203341] should_fail.cold+0x5/0xa [ 1457.204214] ? create_object.isra.0+0x3a/0xa30 [ 1457.205239] should_failslab+0x5/0x20 [ 1457.206108] kmem_cache_alloc+0x5b/0x310 [ 1457.207030] create_object.isra.0+0x3a/0xa30 [ 1457.208042] kmemleak_alloc_percpu+0xa0/0x100 [ 1457.209061] pcpu_alloc+0x4e2/0x1240 [ 1457.209926] ? io_async_queue_proc+0x80/0x80 [ 1457.210926] percpu_ref_init+0x31/0x3d0 [ 1457.211841] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1457.213066] io_uring_setup+0x14f6/0x2980 [ 1457.214018] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1457.215166] ? wait_for_completion_io+0x270/0x270 [ 1457.216285] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1457.217466] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1457.218635] do_syscall_64+0x33/0x40 [ 1457.219493] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1457.220647] RIP: 0033:0x7fcf2a53eb19 [ 1457.221487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1457.225661] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1457.227386] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1457.228990] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1457.230600] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1457.232210] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1457.233813] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:21:10 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 6) [ 1457.250661] FAULT_INJECTION: forcing a failure. [ 1457.250661] name failslab, interval 1, probability 0, space 0, times 0 [ 1457.253111] CPU: 0 PID: 10241 Comm: syz-executor.6 Not tainted 5.10.247 #1 [ 1457.254578] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1457.256287] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1457.256574] Call Trace: [ 1457.256601] dump_stack+0x107/0x167 [ 1457.256629] should_fail.cold+0x5/0xa [ 1457.258770] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1457.259262] ? create_object.isra.0+0x3a/0xa30 [ 1457.260146] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1457.260856] should_failslab+0x5/0x20 [ 1457.260879] kmem_cache_alloc+0x5b/0x310 [ 1457.260910] create_object.isra.0+0x3a/0xa30 [ 1457.262391] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 06 00 00 00 02 00 [ 1457.263299] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1457.263333] kmem_cache_alloc+0x159/0x310 [ 1457.264766] blk_update_request: I/O error, dev sr0, sector 6144 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 0 [ 1457.265523] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1457.266442] Buffer I/O error on dev sr0, logical block 6144, async page read [ 1457.267344] ? ep_show_fdinfo+0x380/0x380 [ 1457.267368] ep_ptable_queue_proc+0xa7/0x330 [ 1457.269050] Buffer I/O error on dev sr0, logical block 6145, async page read [ 1457.270066] ? ep_show_fdinfo+0x380/0x380 [ 1457.270090] ep_item_poll+0x258/0x3f0 [ 1457.280812] ? ep_eventpoll_poll+0x170/0x170 [ 1457.281849] do_epoll_ctl+0x1a14/0x2c00 [ 1457.282728] ? lock_downgrade+0x6d0/0x6d0 [ 1457.283625] ? __ia32_sys_epoll_create+0x1e0/0x1e0 [ 1457.284677] ? ep_show_fdinfo+0x380/0x380 [ 1457.285574] __x64_sys_epoll_ctl+0x13f/0x1c0 [ 1457.286515] ? do_epoll_ctl+0x2c00/0x2c00 [ 1457.287408] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1457.288519] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1457.289624] do_syscall_64+0x33/0x40 [ 1457.290425] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1457.291526] RIP: 0033:0x7fc821c17b19 [ 1457.292328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1457.296302] RSP: 002b:00007fc81f18d188 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 1457.297923] RAX: ffffffffffffffda RBX: 00007fc821d2af60 RCX: 00007fc821c17b19 [ 1457.299455] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000005 [ 1457.300969] RBP: 00007fc81f18d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1457.302482] R10: 0000000020000200 R11: 0000000000000246 R12: 0000000000000001 [ 1457.304012] R13: 00007ffd469b9baf R14: 00007fc81f18d300 R15: 0000000000022000 [ 1457.314978] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1457.317601] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1457.319177] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1457.320662] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 1457.322368] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 0 [ 1457.329012] FAULT_INJECTION: forcing a failure. [ 1457.329012] name failslab, interval 1, probability 0, space 0, times 0 [ 1457.331708] CPU: 1 PID: 10242 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1457.333277] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1457.335133] Call Trace: [ 1457.335749] dump_stack+0x107/0x167 [ 1457.336577] should_fail.cold+0x5/0xa [ 1457.337442] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1457.338718] should_failslab+0x5/0x20 [ 1457.339597] kmem_cache_alloc_trace+0x55/0x320 [ 1457.340633] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1457.341847] io_uring_setup+0x14f6/0x2980 [ 1457.342796] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1457.343952] ? wait_for_completion_io+0x270/0x270 [ 1457.345083] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1457.346271] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1457.347456] do_syscall_64+0x33/0x40 [ 1457.348299] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1457.349451] RIP: 0033:0x7fc343bc8b19 [ 1457.350286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1457.354430] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1457.356149] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1457.357752] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1457.359369] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1457.360674] FAULT_INJECTION: forcing a failure. [ 1457.360674] name failslab, interval 1, probability 0, space 0, times 0 [ 1457.360968] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1457.360989] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1457.366527] CPU: 0 PID: 10248 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1457.368013] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1457.369774] Call Trace: [ 1457.370333] dump_stack+0x107/0x167 10:21:10 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 21) [ 1457.371106] should_fail.cold+0x5/0xa [ 1457.372122] ? io_uring_setup+0x40b/0x2980 [ 1457.373019] should_failslab+0x5/0x20 [ 1457.373823] kmem_cache_alloc_trace+0x55/0x320 [ 1457.374796] io_uring_setup+0x40b/0x2980 [ 1457.375670] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1457.376694] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1457.377765] ? wait_for_completion_io+0x270/0x270 [ 1457.378809] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1457.379939] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1457.381040] do_syscall_64+0x33/0x40 [ 1457.381829] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1457.382912] RIP: 0033:0x7f4a0d16cb19 [ 1457.383714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1457.387589] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1457.389184] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1457.390684] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1457.392184] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1457.393684] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1457.395188] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1457.406237] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1457.408476] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1457.410009] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1457.411510] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 06 00 00 00 02 00 [ 1457.413227] blk_update_request: I/O error, dev sr0, sector 6144 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 0 10:21:10 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x17, 0x0) 10:21:10 executing program 4: r0 = openat$incfs(0xffffffffffffffff, &(0x7f00000000c0)='.pending_reads\x00', 0x2000, 0x14) syz_open_dev$mouse(&(0x7f00000004c0), 0x200, 0x511802) io_submit(0x0, 0x0, &(0x7f0000001680)) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f00000007c0)=ANY=[@ANYBLOB="010000003500000e11a6d344940c9b85f1d5f2d9c70018000000", @ANYRES32=r0, @ANYBLOB="300074f5ae37e923ebd20fbaa5440d6485c73a5d7828ff7f00005e585bae38dd10ae9f368bffe46be1164788842e7e0a5a74ac6f794be92291c493ae925ebd6a537d7c15536f66b9d3f85453187cf7aabe13459ed998d3df65c09e355068b35a9805575d04ff5e7e836b1e7fb6fb10e6dd65511c860745121414c7ad199a9ffec4573075dfeaa6c3dba68a1bcd1723fa548d71d925394248158b93e8695c4000000000"]) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(0xffffffffffffffff, 0x40089413, &(0x7f0000000280)=0xfe) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000240)=0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000100), 0x2}, 0x80, 0x0, 0x2, 0x6, 0x0, 0x7ffd}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r2 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$SG_IO(r3, 0x2285, &(0x7f00000003c0)={0x53, 0xfffffffffffffffe, 0x6, 0x0, @buffer={0x300, 0xae, &(0x7f0000000580)=""/174}, &(0x7f0000000040)="4feb7dc9066b", 0x0, 0x0, 0x0, 0x4, 0x0}) r4 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r4, 0xf503, 0x0) ioctl$TUNSETVNETLE(0xffffffffffffffff, 0x400454dc, &(0x7f0000000180)) r5 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000340), 0x12040) r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r7, 0x8000000) getsockname(r7, &(0x7f00000001c0)=@nl=@unspec, &(0x7f0000000140)=0x80) ioctl$AUTOFS_DEV_IOCTL_VERSION(r5, 0xc0189371, &(0x7f0000000680)={{0x1, 0x1, 0x18, r6}, './file0\x00'}) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f00000002c0)={{0x1, 0x0, 0x0, 0x0, 0x0, 0x39, 0x8}, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7}) [ 1457.434396] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1457.436638] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1457.438241] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1457.439773] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 1457.441495] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 0 [ 1457.450147] FAULT_INJECTION: forcing a failure. [ 1457.450147] name failslab, interval 1, probability 0, space 0, times 0 [ 1457.452598] CPU: 0 PID: 10250 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1457.454073] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1457.455842] Call Trace: [ 1457.456406] dump_stack+0x107/0x167 [ 1457.457185] should_fail.cold+0x5/0xa [ 1457.457999] ? __d_alloc+0x2a/0x990 [ 1457.458779] should_failslab+0x5/0x20 [ 1457.459602] kmem_cache_alloc+0x5b/0x310 [ 1457.460477] __d_alloc+0x2a/0x990 [ 1457.461212] ? find_held_lock+0x2c/0x110 [ 1457.462082] d_alloc_pseudo+0x19/0x70 [ 1457.462903] alloc_file_pseudo+0xce/0x250 [ 1457.463799] ? trace_hardirqs_on+0x5b/0x180 [ 1457.464718] ? alloc_file+0x5a0/0x5a0 [ 1457.465543] anon_inode_getfile+0xc8/0x1f0 [ 1457.466449] io_uring_setup+0x138b/0x2980 [ 1457.467348] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1457.468426] ? wait_for_completion_io+0x270/0x270 [ 1457.469476] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1457.470583] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1457.471689] do_syscall_64+0x33/0x40 [ 1457.472480] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1457.473565] RIP: 0033:0x7fc39eed2b19 [ 1457.474355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1457.478243] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1457.479868] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1457.481383] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1457.482898] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1457.484414] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1457.485934] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1457.494989] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1457.497633] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1457.499219] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1457.500707] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 06 00 00 00 02 00 [ 1457.502419] blk_update_request: I/O error, dev sr0, sector 6144 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 0 10:21:10 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 18) [ 1457.522924] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1457.525177] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1457.526742] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1457.528269] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 1457.529992] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 0 10:21:10 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 7) [ 1457.571480] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1457.573720] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1457.575471] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1457.576963] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 06 00 00 00 02 00 [ 1457.578677] blk_update_request: I/O error, dev sr0, sector 6144 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 0 [ 1457.581734] FAULT_INJECTION: forcing a failure. [ 1457.581734] name failslab, interval 1, probability 0, space 0, times 0 [ 1457.584195] CPU: 0 PID: 10258 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1457.585655] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1457.587414] Call Trace: [ 1457.587982] dump_stack+0x107/0x167 [ 1457.588754] should_fail.cold+0x5/0xa [ 1457.589558] ? create_object.isra.0+0x3a/0xa30 [ 1457.590517] should_failslab+0x5/0x20 [ 1457.591342] kmem_cache_alloc+0x5b/0x310 [ 1457.592206] create_object.isra.0+0x3a/0xa30 [ 1457.593136] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1457.594219] kmem_cache_alloc_trace+0x151/0x320 [ 1457.595220] io_uring_setup+0x40b/0x2980 [ 1457.596077] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1457.597091] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1457.598156] ? wait_for_completion_io+0x270/0x270 [ 1457.599210] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1457.600316] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1457.601402] do_syscall_64+0x33/0x40 [ 1457.602191] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1457.603278] RIP: 0033:0x7f4a0d16cb19 [ 1457.604065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1457.607970] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1457.609579] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1457.611091] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1457.612602] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1457.614110] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1457.615622] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1457.683693] FAULT_INJECTION: forcing a failure. [ 1457.683693] name failslab, interval 1, probability 0, space 0, times 0 [ 1457.686197] CPU: 1 PID: 10261 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1457.687671] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1457.689426] Call Trace: [ 1457.689991] dump_stack+0x107/0x167 [ 1457.690768] should_fail.cold+0x5/0xa [ 1457.691584] ? percpu_ref_init+0xd8/0x3d0 [ 1457.692459] should_failslab+0x5/0x20 [ 1457.693264] kmem_cache_alloc_trace+0x55/0x320 [ 1457.694230] ? io_async_queue_proc+0x80/0x80 [ 1457.695166] percpu_ref_init+0xd8/0x3d0 [ 1457.696039] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1457.697189] io_uring_setup+0x14f6/0x2980 [ 1457.698074] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1457.699154] ? wait_for_completion_io+0x270/0x270 [ 1457.700200] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1457.701316] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1457.702421] do_syscall_64+0x33/0x40 [ 1457.703221] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1457.704306] RIP: 0033:0x7fcf2a53eb19 [ 1457.705099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1457.709008] RSP: 002b:00007fcf27a93108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1457.710617] RAX: ffffffffffffffda RBX: 00007fcf2a652020 RCX: 00007fcf2a53eb19 [ 1457.712139] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1457.713633] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1457.715114] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1457.716614] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1457.858341] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.859730] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.860976] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.862216] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.863487] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.864720] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.865957] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.867198] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.868635] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.869936] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.872559] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.873971] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.875280] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.876520] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.877814] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.879095] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.880340] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.881811] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.883033] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.884287] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.885737] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.886991] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.888286] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.889726] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.891077] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.892369] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.893672] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.894945] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.896224] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.897470] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.898744] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.900021] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.901301] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.902604] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.903866] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.905133] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.906376] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.907677] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.908940] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.910257] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.911505] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.912693] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.913964] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.932037] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.933459] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1457.952487] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1459.228222] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1459.251608] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 10:21:29 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) (fail_nth: 6) 10:21:29 executing program 4: syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000080)="ff4344303031", 0x6, 0x8800}], 0x0, &(0x7f0000000040)) 10:21:29 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 15) 10:21:29 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 22) 10:21:29 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 19) 10:21:29 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 8) 10:21:29 executing program 3: ioctl$PTP_PIN_SETFUNC2(0xffffffffffffffff, 0x40603d10, &(0x7f0000000340)={'\x00', 0x8, 0x3, 0x1000}) r0 = syz_io_uring_setup(0x3a88, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ff4000/0xa000)=nil, &(0x7f0000000140)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f0000000240)=[{&(0x7f0000000700)=""/222, 0xde}], 0x1, 0x1}, 0x0) r3 = getegid() setresgid(r3, r3, 0x0) r4 = getegid() setresgid(r4, r4, 0x0) r5 = getegid() setresgid(r5, r5, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f00000004c0)='system.posix_acl_access\x00', &(0x7f0000000ac0)={{}, {}, [{0x2, 0x4, 0xffffffffffffffff}, {0x2, 0x4}, {0x2, 0x4, 0xee00}], {0x4, 0x2}, [{}, {0x8, 0x2, 0xee01}, {0x8, 0x2, 0xffffffffffffffff}, {}, {0x8, 0x6}, {0x8, 0x6}, {0x8, 0x3, r3}, {0x8, 0x3, 0xffffffffffffffff}, {0x8, 0x3, r4}, {0x8, 0x6, r5}], {0x10, 0x4}, {0x20, 0x2}}, 0x8c, 0x3) r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff6000/0x4000)=nil, 0x4000, 0x0, 0x110, r0, 0x8000000) syz_io_uring_submit(r6, r2, &(0x7f0000000680)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000640)={&(0x7f00000001c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e22, @local}, 0x4, 0x4, 0x0, 0x2}}, 0x80, &(0x7f0000000280)=[{&(0x7f00000003c0)="64e918ecc627df77c8dd6bb070255d7c71985c81ab3bd111a94db108c368edffb49314f61ac1362b37e24d155248e8e053aeb6712a4d7e93cbcd9d0d984063c3eb150737cd1588fda248f1e1cebf417882f0f227972eafa003300a27ae712a72", 0x60}], 0x1, &(0x7f0000000800)=ANY=[@ANYBLOB="08010000000000000a0100000500000033d50d90f61c8da55068b5fa3b429b588236c7b34a02955d0a273aa0ba4dcbed5425d12b0a1a48b706b0d8c74c923652d969ef962ed56b282c41a59c7852ebad52cdc3213135359d81377f77bad5364883e64508b7af0caa4a253c6d0100906446c1309dfc524af36033e1bf5376c34e7a9fb300100173813f9cbb8c1946c4dd58850c538e43c7343f0414d02675b71724b8a2033396a0e08e8ef501acb87b1b546019ac54b2a9141196605c68b3a8aa7e5d525c0916b9fb1888065182b05c8ed3ab1bece3a654c3f68755c6bf0f084e7d4932007ab3ecaba80ddee0cff62ff5858e729473021bc5e87983271e526184e43d950c06a7046f000000000000009800000000000000ee2af4cbff0f000023b27416c1ec45bdee1811376766edb7a251f9408cfaeb9761761b8ea6cfd477c31d3063ab42ece7dfb1e59317f5e83544080a7e02c45a4a1005138eb730bc61b2b15039c4cb9f29aed9dba1e269c706155a9ff009417cd20916495d50b87cfac3d3d1affd0200fa7b1cc721ec6e98d9a73ec3fe86c025c7243635dd538e917ea5345b00000000"], 0x1a0}, 0x0, 0x3404c854}, 0x7) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ftruncate(0xffffffffffffffff, 0x1) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r9 = openat$cgroup_ro(r7, &(0x7f0000000080)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0) io_uring_enter(r9, 0x7f5c, 0x37a7, 0x3, &(0x7f00000000c0)={[0xa9e2]}, 0x8) syz_io_uring_submit(r8, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) io_uring_enter(r0, 0x58ab, 0xc, 0x0, 0x0, 0x0) 10:21:29 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x18, 0x0) [ 1477.009460] FAULT_INJECTION: forcing a failure. [ 1477.009460] name failslab, interval 1, probability 0, space 0, times 0 [ 1477.011104] CPU: 1 PID: 10270 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1477.012077] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1477.013223] Call Trace: [ 1477.013585] dump_stack+0x107/0x167 [ 1477.014091] should_fail.cold+0x5/0xa [ 1477.014617] ? create_object.isra.0+0x3a/0xa30 [ 1477.015236] should_failslab+0x5/0x20 [ 1477.015773] kmem_cache_alloc+0x5b/0x310 [ 1477.016334] create_object.isra.0+0x3a/0xa30 [ 1477.016939] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1477.017643] kmem_cache_alloc_trace+0x151/0x320 [ 1477.018287] ? io_async_queue_proc+0x80/0x80 [ 1477.018891] percpu_ref_init+0xd8/0x3d0 [ 1477.019455] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1477.020199] io_uring_setup+0x14f6/0x2980 [ 1477.020778] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1477.021472] ? wait_for_completion_io+0x270/0x270 [ 1477.022153] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1477.022876] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1477.023601] do_syscall_64+0x33/0x40 [ 1477.024116] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1477.024826] RIP: 0033:0x7fcf2a53eb19 [ 1477.025338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1477.027876] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1477.028925] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1477.029914] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1477.030896] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1477.031884] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1477.032859] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1477.043020] FAULT_INJECTION: forcing a failure. [ 1477.043020] name failslab, interval 1, probability 0, space 0, times 0 [ 1477.043913] FAULT_INJECTION: forcing a failure. [ 1477.043913] name failslab, interval 1, probability 0, space 0, times 0 [ 1477.046004] CPU: 0 PID: 10276 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1477.049221] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1477.051359] Call Trace: [ 1477.052057] dump_stack+0x107/0x167 [ 1477.053004] should_fail.cold+0x5/0xa [ 1477.053998] ? create_object.isra.0+0x3a/0xa30 [ 1477.055187] should_failslab+0x5/0x20 [ 1477.056192] kmem_cache_alloc+0x5b/0x310 [ 1477.057258] create_object.isra.0+0x3a/0xa30 [ 1477.058389] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1477.059724] kmem_cache_alloc+0x159/0x310 [ 1477.060810] __d_alloc+0x2a/0x990 [ 1477.061707] ? find_held_lock+0x2c/0x110 [ 1477.062764] d_alloc_pseudo+0x19/0x70 [ 1477.063769] alloc_file_pseudo+0xce/0x250 [ 1477.064752] ? trace_hardirqs_on+0x5b/0x180 [ 1477.065686] ? alloc_file+0x5a0/0x5a0 [ 1477.066541] anon_inode_getfile+0xc8/0x1f0 [ 1477.067474] io_uring_setup+0x138b/0x2980 [ 1477.068386] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1477.069479] ? wait_for_completion_io+0x270/0x270 [ 1477.070559] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1477.071711] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1477.072832] do_syscall_64+0x33/0x40 [ 1477.073643] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1477.074752] RIP: 0033:0x7fc39eed2b19 [ 1477.075573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1477.079538] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1477.081182] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1477.082735] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1477.084289] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1477.085841] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1477.087398] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1477.088980] CPU: 1 PID: 10278 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1477.089972] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1477.091146] Call Trace: [ 1477.091524] dump_stack+0x107/0x167 [ 1477.092038] should_fail.cold+0x5/0xa [ 1477.092572] ? create_object.isra.0+0x3a/0xa30 [ 1477.093211] should_failslab+0x5/0x20 [ 1477.093747] kmem_cache_alloc+0x5b/0x310 [ 1477.094315] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1477.095154] create_object.isra.0+0x3a/0xa30 [ 1477.095770] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1477.096483] kmem_cache_alloc_trace+0x151/0x320 [ 1477.097136] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1477.097431] FAULT_INJECTION: forcing a failure. [ 1477.097431] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1477.097892] io_uring_setup+0x14f6/0x2980 [ 1477.097912] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1477.097923] ? wait_for_completion_io+0x270/0x270 [ 1477.097955] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1477.097979] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1477.097994] do_syscall_64+0x33/0x40 [ 1477.104777] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1477.105488] RIP: 0033:0x7fc343bc8b19 [ 1477.106005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1477.108562] RSP: 002b:00007fc34111d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1477.109627] RAX: ffffffffffffffda RBX: 00007fc343cdc020 RCX: 00007fc343bc8b19 [ 1477.110615] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1477.111612] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1477.112608] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1477.113607] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1477.114624] CPU: 0 PID: 10279 Comm: syz-executor.6 Not tainted 5.10.247 #1 [ 1477.116166] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1477.117968] Call Trace: [ 1477.118559] dump_stack+0x107/0x167 [ 1477.119370] should_fail.cold+0x5/0xa [ 1477.120221] _copy_to_user+0x2e/0x180 [ 1477.121068] simple_read_from_buffer+0xcc/0x160 [ 1477.122093] proc_fail_nth_read+0x198/0x230 [ 1477.123044] ? proc_sessionid_read+0x230/0x230 [ 1477.124057] ? security_file_permission+0xb1/0xe0 [ 1477.125122] ? proc_sessionid_read+0x230/0x230 [ 1477.126122] vfs_read+0x228/0x620 [ 1477.126908] ksys_read+0x12d/0x260 [ 1477.127700] ? vfs_write+0xb10/0xb10 [ 1477.128533] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1477.129683] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1477.130815] do_syscall_64+0x33/0x40 [ 1477.131648] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1477.132764] RIP: 0033:0x7fc821bca69c [ 1477.133581] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1477.137557] RSP: 002b:00007fc81f18d170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1477.139211] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fc821bca69c [ 1477.140765] RDX: 000000000000000f RSI: 00007fc81f18d1e0 RDI: 0000000000000007 [ 1477.142313] RBP: 00007fc81f18d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1477.143876] R10: 0000000020000200 R11: 0000000000000246 R12: 0000000000000001 [ 1477.145423] R13: 00007ffd469b9baf R14: 00007fc81f18d300 R15: 0000000000022000 [ 1477.229191] FAULT_INJECTION: forcing a failure. [ 1477.229191] name failslab, interval 1, probability 0, space 0, times 0 [ 1477.230763] CPU: 1 PID: 10282 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1477.231672] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1477.232749] Call Trace: [ 1477.233093] dump_stack+0x107/0x167 [ 1477.233561] should_fail.cold+0x5/0xa [ 1477.234050] ? create_object.isra.0+0x3a/0xa30 [ 1477.234635] should_failslab+0x5/0x20 [ 1477.235123] kmem_cache_alloc+0x5b/0x310 [ 1477.235654] create_object.isra.0+0x3a/0xa30 [ 1477.236224] kmemleak_alloc_percpu+0xa0/0x100 [ 1477.236807] pcpu_alloc+0x4e2/0x1240 [ 1477.237294] ? io_tctx_exit_cb+0xf0/0xf0 [ 1477.237814] percpu_ref_init+0x31/0x3d0 [ 1477.238326] io_uring_setup+0x47a/0x2980 [ 1477.238849] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1477.239473] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1477.240120] ? wait_for_completion_io+0x270/0x270 [ 1477.240754] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1477.241425] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1477.242088] do_syscall_64+0x33/0x40 [ 1477.242566] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1477.243224] RIP: 0033:0x7f4a0d16cb19 [ 1477.243709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1477.246065] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1477.247048] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1477.247971] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1477.248878] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1477.249793] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1477.250700] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:21:44 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 16) 10:21:44 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x19, 0x0) [ 1491.807075] FAULT_INJECTION: forcing a failure. [ 1491.807075] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1491.808751] CPU: 1 PID: 10295 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1491.809706] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1491.810841] Call Trace: [ 1491.811207] dump_stack+0x107/0x167 [ 1491.811723] should_fail.cold+0x5/0xa [ 1491.812263] _copy_to_user+0x2e/0x180 10:21:44 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 9) 10:21:44 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 20) 10:21:44 executing program 4: stat(&(0x7f0000000200)='./cgroup/cgroup.procs\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) lremovexattr(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', &(0x7f0000000040)=@known='trusted.overlay.opaque\x00') setreuid(0xffffffffffffffff, r0) r1 = getpid() sched_setaffinity(r1, 0x0, 0x0) setreuid(r0, r0) 10:21:44 executing program 3: getsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, &(0x7f0000000000), 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000500)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file1\x00']) ioctl$AUTOFS_IOC_FAIL(r1, 0x9361, 0x5) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r2, 0x40086607, &(0x7f00000004c0)) 10:21:44 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:21:44 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 23) [ 1491.812837] io_uring_setup+0x11b5/0x2980 [ 1491.813610] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1491.814336] ? wait_for_completion_io+0x270/0x270 [ 1491.815008] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1491.815722] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1491.816416] do_syscall_64+0x33/0x40 [ 1491.816918] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1491.817605] RIP: 0033:0x7fcf2a53eb19 [ 1491.818107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1491.820633] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1491.821654] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1491.822610] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1491.823590] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1491.824552] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1491.825515] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1491.830404] FAULT_INJECTION: forcing a failure. [ 1491.830404] name failslab, interval 1, probability 0, space 0, times 0 [ 1491.831966] CPU: 1 PID: 10302 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1491.832907] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1491.834037] Call Trace: [ 1491.834400] dump_stack+0x107/0x167 [ 1491.834895] should_fail.cold+0x5/0xa [ 1491.835438] ? create_object.isra.0+0x3a/0xa30 [ 1491.836070] should_failslab+0x5/0x20 [ 1491.836582] kmem_cache_alloc+0x5b/0x310 [ 1491.837137] create_object.isra.0+0x3a/0xa30 [ 1491.837742] kmemleak_alloc_percpu+0xa0/0x100 [ 1491.838365] pcpu_alloc+0x4e2/0x1240 [ 1491.838875] ? io_async_queue_proc+0x80/0x80 [ 1491.839474] percpu_ref_init+0x31/0x3d0 [ 1491.840013] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1491.840743] io_uring_setup+0x14f6/0x2980 [ 1491.841308] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1491.841996] ? wait_for_completion_io+0x270/0x270 [ 1491.842670] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1491.843386] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1491.844083] do_syscall_64+0x33/0x40 [ 1491.844598] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1491.845621] RIP: 0033:0x7fc343bc8b19 [ 1491.846213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1491.849469] RSP: 002b:00007fc34111d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1491.850995] RAX: ffffffffffffffda RBX: 00007fc343cdc020 RCX: 00007fc343bc8b19 [ 1491.852409] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1491.853363] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1491.854321] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1491.855562] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1491.863297] FAULT_INJECTION: forcing a failure. [ 1491.863297] name failslab, interval 1, probability 0, space 0, times 0 [ 1491.867173] CPU: 0 PID: 10297 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1491.868786] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1491.870704] Call Trace: [ 1491.871431] dump_stack+0x107/0x167 [ 1491.872280] should_fail.cold+0x5/0xa [ 1491.873165] ? __alloc_file+0x21/0x320 [ 1491.874066] should_failslab+0x5/0x20 [ 1491.874948] kmem_cache_alloc+0x5b/0x310 [ 1491.875910] __alloc_file+0x21/0x320 [ 1491.876772] alloc_empty_file+0x6d/0x170 [ 1491.877715] alloc_file+0x5e/0x5a0 [ 1491.878542] alloc_file_pseudo+0x16a/0x250 10:21:44 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x2, r0, &(0x7f0000000200)) [ 1491.879664] ? alloc_file+0x5a0/0x5a0 [ 1491.880568] anon_inode_getfile+0xc8/0x1f0 [ 1491.881544] io_uring_setup+0x138b/0x2980 [ 1491.882505] ? __do_sys_io_uring_enter+0x1890/0x1890 10:21:44 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 21) [ 1491.883674] ? wait_for_completion_io+0x270/0x270 [ 1491.884852] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1491.886052] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1491.887236] do_syscall_64+0x33/0x40 [ 1491.888107] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1491.889279] RIP: 0033:0x7fc39eed2b19 [ 1491.890130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1491.894365] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1491.896130] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1491.897773] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1491.899435] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1491.901079] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1491.902721] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1491.931525] FAULT_INJECTION: forcing a failure. [ 1491.931525] name failslab, interval 1, probability 0, space 0, times 0 [ 1491.934287] CPU: 0 PID: 10298 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1491.935887] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1491.937784] Call Trace: [ 1491.938398] dump_stack+0x107/0x167 [ 1491.939237] should_fail.cold+0x5/0xa [ 1491.940122] ? create_object.isra.0+0x3a/0xa30 [ 1491.941170] should_failslab+0x5/0x20 [ 1491.942044] kmem_cache_alloc+0x5b/0x310 [ 1491.942987] create_object.isra.0+0x3a/0xa30 [ 1491.944019] kmemleak_alloc_percpu+0xa0/0x100 [ 1491.945062] pcpu_alloc+0x4e2/0x1240 [ 1491.945937] ? io_tctx_exit_cb+0xf0/0xf0 [ 1491.946874] percpu_ref_init+0x31/0x3d0 [ 1491.947806] io_uring_setup+0x47a/0x2980 [ 1491.948739] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1491.949851] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1491.950999] ? wait_for_completion_io+0x270/0x270 [ 1491.952140] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1491.953331] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1491.954506] do_syscall_64+0x33/0x40 [ 1491.955355] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1491.956535] RIP: 0033:0x7f4a0d16cb19 [ 1491.957381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1491.961567] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1491.963303] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1491.964935] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1491.966561] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1491.968189] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1491.969805] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:21:44 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 24) [ 1492.015301] FAULT_INJECTION: forcing a failure. [ 1492.015301] name failslab, interval 1, probability 0, space 0, times 0 [ 1492.016830] CPU: 1 PID: 10314 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1492.017731] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1492.018801] Call Trace: [ 1492.019152] dump_stack+0x107/0x167 [ 1492.019634] should_fail.cold+0x5/0xa [ 1492.020133] ? __d_alloc+0x2a/0x990 [ 1492.020601] should_failslab+0x5/0x20 10:21:45 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 17) [ 1492.021090] kmem_cache_alloc+0x5b/0x310 [ 1492.021757] __d_alloc+0x2a/0x990 [ 1492.022251] ? find_held_lock+0x2c/0x110 [ 1492.022773] d_alloc_pseudo+0x19/0x70 [ 1492.023257] alloc_file_pseudo+0xce/0x250 [ 1492.023803] ? trace_hardirqs_on+0x5b/0x180 [ 1492.024345] ? alloc_file+0x5a0/0x5a0 [ 1492.024862] anon_inode_getfile+0xc8/0x1f0 [ 1492.025417] io_uring_setup+0x138b/0x2980 [ 1492.025966] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1492.026625] ? wait_for_completion_io+0x270/0x270 [ 1492.027252] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1492.027939] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1492.028600] do_syscall_64+0x33/0x40 [ 1492.029083] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1492.029724] RIP: 0033:0x7fcf2a53eb19 [ 1492.030203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1492.032532] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1492.033507] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1492.034401] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1492.035317] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1492.036244] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1492.037159] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:21:45 executing program 4: ioctl$BTRFS_IOC_DEFRAG(0xffffffffffffffff, 0x50009402, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 10:21:45 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x1a, 0x0) [ 1492.072056] FAULT_INJECTION: forcing a failure. [ 1492.072056] name failslab, interval 1, probability 0, space 0, times 0 [ 1492.074539] CPU: 0 PID: 10317 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1492.076029] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1492.077783] Call Trace: [ 1492.078345] dump_stack+0x107/0x167 [ 1492.079118] should_fail.cold+0x5/0xa [ 1492.079962] ? create_object.isra.0+0x3a/0xa30 [ 1492.080935] should_failslab+0x5/0x20 [ 1492.081745] kmem_cache_alloc+0x5b/0x310 [ 1492.082606] create_object.isra.0+0x3a/0xa30 [ 1492.083558] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1492.084637] kmem_cache_alloc+0x159/0x310 [ 1492.085524] __alloc_file+0x21/0x320 [ 1492.086310] alloc_empty_file+0x6d/0x170 [ 1492.087173] alloc_file+0x5e/0x5a0 [ 1492.087960] alloc_file_pseudo+0x16a/0x250 [ 1492.088853] ? alloc_file+0x5a0/0x5a0 [ 1492.089678] anon_inode_getfile+0xc8/0x1f0 [ 1492.090584] io_uring_setup+0x138b/0x2980 [ 1492.091500] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1492.092589] ? wait_for_completion_io+0x270/0x270 [ 1492.093647] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1492.094759] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1492.095891] do_syscall_64+0x33/0x40 [ 1492.096686] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1492.097771] RIP: 0033:0x7fc39eed2b19 [ 1492.098566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1492.102487] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1492.104132] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1492.105654] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1492.107164] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1492.108711] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1492.110231] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:21:45 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 10) 10:21:45 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x420, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x8}, 0xe) r2 = fork() waitid(0x2, r2, 0x0, 0x1, &(0x7f0000000100)) fcntl$lock(r1, 0x24, &(0x7f00000000c0)={0x1, 0x3, 0x948, 0x1, r2}) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x4, &(0x7f0000000080)=0x55, 0x4) connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10) sendmmsg$inet(r0, &(0x7f0000000300)=[{{&(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10, 0x0}}], 0x40001a9, 0x810) socket$netlink(0x10, 0x3, 0xa) stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)) [ 1492.133283] FAULT_INJECTION: forcing a failure. [ 1492.133283] name failslab, interval 1, probability 0, space 0, times 0 [ 1492.134754] CPU: 1 PID: 10324 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1492.135596] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1492.136596] Call Trace: [ 1492.136921] dump_stack+0x107/0x167 [ 1492.137362] should_fail.cold+0x5/0xa [ 1492.137612] FAULT_INJECTION: forcing a failure. [ 1492.137612] name failslab, interval 1, probability 0, space 0, times 0 [ 1492.137832] ? percpu_ref_init+0xd8/0x3d0 [ 1492.140679] should_failslab+0x5/0x20 [ 1492.141139] kmem_cache_alloc_trace+0x55/0x320 [ 1492.141691] ? io_tctx_exit_cb+0xf0/0xf0 [ 1492.142179] percpu_ref_init+0xd8/0x3d0 [ 1492.142663] io_uring_setup+0x47a/0x2980 [ 1492.143151] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1492.143749] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1492.144355] ? wait_for_completion_io+0x270/0x270 [ 1492.144949] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1492.145575] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1492.146191] do_syscall_64+0x33/0x40 [ 1492.146641] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1492.147256] RIP: 0033:0x7f4a0d16cb19 [ 1492.147709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1492.149904] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1492.150820] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1492.151680] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1492.152535] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1492.153392] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1492.154244] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1492.155120] CPU: 0 PID: 10323 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1492.156626] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1492.158384] Call Trace: [ 1492.158944] dump_stack+0x107/0x167 [ 1492.159747] should_fail.cold+0x5/0xa [ 1492.160552] ? create_object.isra.0+0x3a/0xa30 [ 1492.161512] should_failslab+0x5/0x20 [ 1492.162318] kmem_cache_alloc+0x5b/0x310 [ 1492.163179] create_object.isra.0+0x3a/0xa30 [ 1492.164162] kmemleak_alloc_percpu+0xa0/0x100 [ 1492.165121] pcpu_alloc+0x4e2/0x1240 [ 1492.165930] ? io_async_queue_proc+0x80/0x80 [ 1492.166858] percpu_ref_init+0x31/0x3d0 [ 1492.167729] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1492.168871] io_uring_setup+0x14f6/0x2980 [ 1492.169753] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1492.170836] ? wait_for_completion_io+0x270/0x270 [ 1492.171911] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1492.173018] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1492.174114] do_syscall_64+0x33/0x40 [ 1492.174903] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1492.176016] RIP: 0033:0x7fc343bc8b19 [ 1492.176802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1492.180714] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1492.182323] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1492.183855] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1492.185358] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1492.186867] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1492.188398] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:21:45 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 22) [ 1492.218467] FAULT_INJECTION: forcing a failure. [ 1492.218467] name failslab, interval 1, probability 0, space 0, times 0 [ 1492.219874] CPU: 1 PID: 10331 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1492.220674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1492.221631] Call Trace: [ 1492.221947] dump_stack+0x107/0x167 [ 1492.222369] should_fail.cold+0x5/0xa [ 1492.222814] ? create_object.isra.0+0x3a/0xa30 [ 1492.223345] should_failslab+0x5/0x20 [ 1492.223796] kmem_cache_alloc+0x5b/0x310 [ 1492.224271] create_object.isra.0+0x3a/0xa30 [ 1492.224782] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1492.225375] kmem_cache_alloc+0x159/0x310 10:21:45 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x4, r0, &(0x7f0000000200)) [ 1492.225865] __d_alloc+0x2a/0x990 [ 1492.226443] ? find_held_lock+0x2c/0x110 [ 1492.226919] d_alloc_pseudo+0x19/0x70 [ 1492.227361] alloc_file_pseudo+0xce/0x250 [ 1492.227856] ? trace_hardirqs_on+0x5b/0x180 [ 1492.228355] ? alloc_file+0x5a0/0x5a0 [ 1492.228812] anon_inode_getfile+0xc8/0x1f0 [ 1492.229313] io_uring_setup+0x138b/0x2980 [ 1492.229797] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1492.230377] ? wait_for_completion_io+0x270/0x270 [ 1492.230950] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1492.231564] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1492.232169] do_syscall_64+0x33/0x40 [ 1492.232598] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1492.233188] RIP: 0033:0x7fcf2a53eb19 [ 1492.233619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1492.235761] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1492.236638] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1492.237460] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1492.238282] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1492.239100] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1492.239928] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:21:45 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x1b, 0x0) 10:21:45 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d1f4655fd1f4655f0100ffff53ef010001000000d0f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005", 0x9, 0x800}, {&(0x7f0000010e00)="ed41000000040000d0f4655fd1f4655fd1f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000000040)=ANY=[]) mount(&(0x7f0000000040)=@nullb, &(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='nfsd\x00', 0x1000000, &(0x7f0000000100)='\x00') stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)) syz_mount_image$nfs4(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x289b, 0x1, &(0x7f0000000340)=[{&(0x7f0000000280)="a899a99e10cbf92fae981ccc016c5d9c3b9f1104a2a7554613f04326fac3633573ba19140a94c12d6f02b3b5125474866641f6984d24bc715fcf0a07d0a76aad4da145bc250db4f6b918edfe4b3c1e530fda6518c0aa8dc814173ae16d995816673d941aef621c363dafbda6e8e81c739e7b9cfa23324c0f1667785f7e779986d46b8f7642445c55e0a1e920fc4509f9da22692c40722590589594eb6c7da3603027b2b0a26ea9c765194a6232", 0xad, 0xfffffffeffffffff}], 0x2000, &(0x7f0000000440)={[{}, {'&\\-:({([]'}, {'/dev/nullb0\x00'}, {'\xc9\\-'}, {'nfsd\x00'}, {'/dev/nullb0\x00'}, {'ext4\x00'}, {'2)\\&\x82'}, {'ext4\x00'}], [{@dont_appraise}, {@euid_eq={'euid', 0x3d, r0}}, {@subj_type={'subj_type', 0x3d, '&\\.^'}}, {@dont_appraise}]}) 10:21:45 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 25) 10:21:45 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 11) [ 1492.312472] FAULT_INJECTION: forcing a failure. [ 1492.312472] name failslab, interval 1, probability 0, space 0, times 0 [ 1492.313887] CPU: 1 PID: 10343 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1492.314691] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1492.315648] Call Trace: [ 1492.315958] dump_stack+0x107/0x167 [ 1492.316377] should_fail.cold+0x5/0xa [ 1492.316821] ? create_object.isra.0+0x3a/0xa30 [ 1492.317346] should_failslab+0x5/0x20 [ 1492.317787] kmem_cache_alloc+0x5b/0x310 [ 1492.318257] create_object.isra.0+0x3a/0xa30 [ 1492.318764] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1492.319356] kmem_cache_alloc_trace+0x151/0x320 [ 1492.319902] ? io_tctx_exit_cb+0xf0/0xf0 [ 1492.320372] percpu_ref_init+0xd8/0x3d0 [ 1492.320831] io_uring_setup+0x47a/0x2980 [ 1492.321296] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1492.321854] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1492.322433] ? wait_for_completion_io+0x270/0x270 [ 1492.323005] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1492.323630] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1492.324218] do_syscall_64+0x33/0x40 [ 1492.324645] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1492.325229] RIP: 0033:0x7f4a0d16cb19 [ 1492.325659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1492.327784] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1492.328660] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1492.329484] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1492.330312] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1492.331151] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1492.331982] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:21:45 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x1c, 0x0) 10:21:45 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1f4, r0, &(0x7f0000000200)) [ 1492.376605] FAULT_INJECTION: forcing a failure. [ 1492.376605] name failslab, interval 1, probability 0, space 0, times 0 [ 1492.379020] CPU: 0 PID: 10348 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1492.380525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1492.382270] Call Trace: [ 1492.382830] dump_stack+0x107/0x167 [ 1492.383629] should_fail.cold+0x5/0xa [ 1492.384435] ? security_file_alloc+0x34/0x170 [ 1492.385374] should_failslab+0x5/0x20 [ 1492.386182] kmem_cache_alloc+0x5b/0x310 [ 1492.387039] security_file_alloc+0x34/0x170 [ 1492.387971] __alloc_file+0xb7/0x320 [ 1492.388751] alloc_empty_file+0x6d/0x170 [ 1492.389608] alloc_file+0x5e/0x5a0 [ 1492.390358] alloc_file_pseudo+0x16a/0x250 [ 1492.391244] ? alloc_file+0x5a0/0x5a0 [ 1492.392096] anon_inode_getfile+0xc8/0x1f0 [ 1492.392986] io_uring_setup+0x138b/0x2980 [ 1492.393862] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1492.394915] ? wait_for_completion_io+0x270/0x270 [ 1492.395984] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1492.397084] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1492.398161] do_syscall_64+0x33/0x40 [ 1492.398939] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1492.400031] RIP: 0033:0x7fc39eed2b19 [ 1492.400808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1492.404697] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1492.406290] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1492.407807] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1492.409299] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1492.410790] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1492.412303] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:21:45 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x1d, 0x0) 10:21:45 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 18) 10:21:45 executing program 4: keyctl$session_to_parent(0x12) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f00000012c0), 0x1224000, &(0x7f0000001340)) stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)) [ 1492.468773] FAULT_INJECTION: forcing a failure. [ 1492.468773] name failslab, interval 1, probability 0, space 0, times 0 [ 1492.470147] CPU: 1 PID: 10363 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1492.470944] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1492.471952] Call Trace: [ 1492.472272] dump_stack+0x107/0x167 [ 1492.472716] should_fail.cold+0x5/0xa [ 1492.473174] ? percpu_ref_init+0xd8/0x3d0 [ 1492.473674] should_failslab+0x5/0x20 [ 1492.474123] kmem_cache_alloc_trace+0x55/0x320 [ 1492.474673] ? io_async_queue_proc+0x80/0x80 [ 1492.475181] percpu_ref_init+0xd8/0x3d0 [ 1492.475664] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1492.476292] io_uring_setup+0x14f6/0x2980 [ 1492.476776] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1492.477369] ? wait_for_completion_io+0x270/0x270 [ 1492.477945] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1492.478557] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1492.479154] do_syscall_64+0x33/0x40 [ 1492.479597] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1492.480185] RIP: 0033:0x7fc343bc8b19 [ 1492.480614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1492.482734] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1492.483626] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1492.484446] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1492.485277] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1492.486102] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1492.486927] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:21:45 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 23) 10:21:45 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x300, r0, &(0x7f0000000200)) [ 1492.529369] FAULT_INJECTION: forcing a failure. [ 1492.529369] name failslab, interval 1, probability 0, space 0, times 0 [ 1492.530820] CPU: 1 PID: 10368 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1492.531631] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1492.532590] Call Trace: [ 1492.532899] dump_stack+0x107/0x167 [ 1492.533322] should_fail.cold+0x5/0xa [ 1492.533768] ? __alloc_file+0x21/0x320 [ 1492.534217] should_failslab+0x5/0x20 [ 1492.534655] kmem_cache_alloc+0x5b/0x310 [ 1492.535128] __alloc_file+0x21/0x320 [ 1492.535569] alloc_empty_file+0x6d/0x170 [ 1492.536037] alloc_file+0x5e/0x5a0 [ 1492.536450] alloc_file_pseudo+0x16a/0x250 [ 1492.536937] ? alloc_file+0x5a0/0x5a0 [ 1492.537386] anon_inode_getfile+0xc8/0x1f0 [ 1492.537878] io_uring_setup+0x138b/0x2980 [ 1492.538362] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1492.538954] ? wait_for_completion_io+0x270/0x270 [ 1492.539536] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1492.540140] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1492.540736] do_syscall_64+0x33/0x40 [ 1492.541169] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1492.541761] RIP: 0033:0x7fcf2a53eb19 [ 1492.542191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1492.544316] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1492.545190] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1492.546009] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1492.546829] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1492.547669] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1492.548488] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:22:00 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x500, r0, &(0x7f0000000200)) 10:22:00 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 26) 10:22:00 executing program 4: keyctl$session_to_parent(0x12) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f00000012c0), 0x1224000, &(0x7f0000001340)) stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)) 10:22:00 executing program 3: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0xe8b02, 0x0) ioctl$CDROMEJECT(r0, 0x5309) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x8000000) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x8000000) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000001640)=ANY=[@ANYBLOB="0100000001000000180000007c6764b018b1dec249709d82023c7ea4b8c6540ac66df0caba8c118877000000", @ANYRES32=r0, @ANYBLOB="05000000000000002e2f66696c653000"]) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) io_submit(0x0, 0x7, &(0x7f0000001500)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x6, 0xbf65, r0, &(0x7f0000000040)="e41c88042f7b676ea923a3ec7741ffab29e4717af38be066e4613f9ee3f86c44999e658b5aee740543108ec007cf2e3531605aa9fac70e21534451ce599fc8581bb09d0eb888ce646a46303e2d3ae8e306c0c72e561fe7e664aaa021578a5bf9e33efc7e96e4b1d19783cf230a0b56ad900b2ee74505d24ca22650f9cde9000fdac5581ca30ecc78dbc29e92fce8831001a354b6d636541562d1b7d22e58740ab286fc14f056fc1a08c2276114f70a01f9beb1fefd598bd3b81426c9fefa7edc1027431942072c5f9debd71d643c6a2a2cee4330f3f07fb49c67e2acea9de6c708d7", 0xe2, 0x3, 0x0, 0xd736157214577f56, r1}, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x8, 0x1000, 0xffffffffffffffff, &(0x7f0000000180)="1ebc48844a758ca54418", 0xa, 0x100, 0x0, 0x3, r2}, &(0x7f0000001240)={0x0, 0x0, 0x0, 0x9, 0x2, r0, &(0x7f0000000200)="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", 0x1000, 0xfff, 0x0, 0x2, r3}, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x5, r0, &(0x7f0000001280)="f87f645d6f9b4ecf95fd247fb0cc7f54a47fcbf6d4602d47ae24fcf0dc570bf9297617d265168f2d9745612767aec43c9ad138bd71ef40fda87cd50c3389", 0x3e, 0x7, 0x0, 0x3}, &(0x7f0000001380)={0x0, 0x0, 0x0, 0x3, 0x7bc5, r4, &(0x7f0000001300)="b93e476921cee667d2f4b3ddcbeea489aa6199a543a6f781780600923d308edd28258676803889639332a7db14d05bffbb087ca0701ada81021a23eb020ae3a0b36bd35a5282855bb8eb2cecc348495f2ffe7e680e686bd74ffdd4d5be902a0fb39ae8f12b5fe956f9ea70ee7b14a70206b611a1fc", 0x75, 0x341}, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x0, 0x7e, r0, &(0x7f00000013c0)="b52760277834ebeb70e4b49ab9d080ee6494e6e3e3aa06540a3a5f58ddbb1ddfee9ea26723a3b323a4221b2312b10347eda24466417ad9806d878148389a01", 0x3f, 0xead, 0x0, 0x0, r0}, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x2, 0x4, r0, &(0x7f0000001440)="94f2052825f715928a7f09e97b0b9e9b3ed3f40d7005782aaad7e054c66216714610528efbce5401291060918c538668873069b621ee85ea1456105a463ff979c0c586c68ecd7003285705ab67552e0bdad43f688b308155e583a6cc539dea5082109890052d4e2b6ac9a6ac13f7a41dcfc547e4b179d1580d1ddfd56cc14580", 0x80, 0x578, 0x0, 0x2}]) ioctl$FS_IOC_GETFSLABEL(r2, 0x81009431, &(0x7f0000001540)) 10:22:00 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x1e, 0x0) 10:22:00 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 12) 10:22:00 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 19) 10:22:00 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 24) [ 1507.559691] FAULT_INJECTION: forcing a failure. [ 1507.559691] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1507.561482] CPU: 0 PID: 10385 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1507.562513] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1507.563755] Call Trace: [ 1507.564149] dump_stack+0x107/0x167 [ 1507.564724] should_fail.cold+0x5/0xa [ 1507.565359] __alloc_pages_nodemask+0x182/0x600 [ 1507.566045] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1507.566959] ? cap_capable+0x1cd/0x230 [ 1507.567559] alloc_pages_current+0x187/0x280 [ 1507.568215] __get_free_pages+0xc/0xa0 [ 1507.568814] io_uring_setup+0xe27/0x2980 [ 1507.569427] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1507.570176] ? wait_for_completion_io+0x270/0x270 [ 1507.570913] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1507.571698] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1507.572459] do_syscall_64+0x33/0x40 [ 1507.573012] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1507.573765] RIP: 0033:0x7f4a0d16cb19 [ 1507.574318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1507.577024] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1507.578158] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1507.579205] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1507.580266] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1507.581305] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1507.582346] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1507.595046] FAULT_INJECTION: forcing a failure. [ 1507.595046] name failslab, interval 1, probability 0, space 0, times 0 [ 1507.596854] CPU: 0 PID: 10387 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1507.597865] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1507.599069] Call Trace: [ 1507.599461] dump_stack+0x107/0x167 [ 1507.600001] should_fail.cold+0x5/0xa [ 1507.600562] ? create_object.isra.0+0x3a/0xa30 [ 1507.601227] should_failslab+0x5/0x20 [ 1507.601791] kmem_cache_alloc+0x5b/0x310 [ 1507.602383] create_object.isra.0+0x3a/0xa30 [ 1507.603023] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1507.603784] kmem_cache_alloc+0x159/0x310 [ 1507.604401] __alloc_file+0x21/0x320 [ 1507.604946] alloc_empty_file+0x6d/0x170 [ 1507.605549] alloc_file+0x5e/0x5a0 [ 1507.606068] alloc_file_pseudo+0x16a/0x250 [ 1507.606691] ? alloc_file+0x5a0/0x5a0 [ 1507.607262] anon_inode_getfile+0xc8/0x1f0 [ 1507.607896] io_uring_setup+0x138b/0x2980 [ 1507.608510] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1507.609247] ? wait_for_completion_io+0x270/0x270 [ 1507.609960] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1507.610497] FAULT_INJECTION: forcing a failure. [ 1507.610497] name failslab, interval 1, probability 0, space 0, times 0 [ 1507.610725] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1507.610744] do_syscall_64+0x33/0x40 [ 1507.610767] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1507.615137] RIP: 0033:0x7fcf2a53eb19 [ 1507.615696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1507.618331] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1507.619440] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1507.620483] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1507.621519] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1507.622556] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1507.623591] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1507.624648] CPU: 1 PID: 10390 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1507.626135] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1507.627902] Call Trace: [ 1507.628469] dump_stack+0x107/0x167 [ 1507.629243] should_fail.cold+0x5/0xa [ 1507.630049] ? create_object.isra.0+0x3a/0xa30 [ 1507.631020] should_failslab+0x5/0x20 [ 1507.631833] kmem_cache_alloc+0x5b/0x310 [ 1507.632694] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1507.633856] create_object.isra.0+0x3a/0xa30 [ 1507.634779] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1507.635861] kmem_cache_alloc+0x159/0x310 [ 1507.636741] security_file_alloc+0x34/0x170 [ 1507.637648] __alloc_file+0xb7/0x320 [ 1507.638430] alloc_empty_file+0x6d/0x170 [ 1507.639283] alloc_file+0x5e/0x5a0 [ 1507.640043] alloc_file_pseudo+0x16a/0x250 [ 1507.640927] ? alloc_file+0x5a0/0x5a0 [ 1507.641748] anon_inode_getfile+0xc8/0x1f0 [ 1507.642648] io_uring_setup+0x138b/0x2980 [ 1507.643541] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1507.644602] ? wait_for_completion_io+0x270/0x270 [ 1507.645652] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1507.646750] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1507.647853] do_syscall_64+0x33/0x40 [ 1507.648639] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1507.649716] RIP: 0033:0x7fc39eed2b19 [ 1507.650502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1507.654376] RSP: 002b:00007fc39c427108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1507.655991] RAX: ffffffffffffffda RBX: 00007fc39efe6020 RCX: 00007fc39eed2b19 [ 1507.657490] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1507.658992] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1507.660503] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1507.661990] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1507.674535] FAULT_INJECTION: forcing a failure. [ 1507.674535] name failslab, interval 1, probability 0, space 0, times 0 [ 1507.676404] CPU: 0 PID: 10379 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1507.677373] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1507.678549] Call Trace: [ 1507.678936] dump_stack+0x107/0x167 [ 1507.679479] should_fail.cold+0x5/0xa [ 1507.680030] ? create_object.isra.0+0x3a/0xa30 [ 1507.680690] should_failslab+0x5/0x20 [ 1507.681239] kmem_cache_alloc+0x5b/0x310 [ 1507.681829] create_object.isra.0+0x3a/0xa30 [ 1507.682451] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1507.683163] kmem_cache_alloc_trace+0x151/0x320 [ 1507.683839] ? io_async_queue_proc+0x80/0x80 [ 1507.684458] percpu_ref_init+0xd8/0x3d0 [ 1507.685031] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1507.685790] io_uring_setup+0x14f6/0x2980 [ 1507.686385] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1507.687104] ? wait_for_completion_io+0x270/0x270 [ 1507.687805] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1507.688540] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1507.689263] do_syscall_64+0x33/0x40 [ 1507.689791] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1507.690509] RIP: 0033:0x7fc343bc8b19 [ 1507.691052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1507.693653] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1507.694739] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1507.695745] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1507.696755] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1507.697765] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1507.698787] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:22:17 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x18, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x4, 0x50}]}, 0x18}}, 0x0) 10:22:17 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 20) 10:22:17 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x21, 0x0) 10:22:17 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 13) 10:22:17 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:22:17 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 25) 10:22:17 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 27) 10:22:17 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="24000000660001012dbd70a4a305dec1661c407b000000001e0000001d4095a600a0eab51f24f4074cfb000000"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x10000000) getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, &(0x7f0000000400)={'broute\x00', 0x0, 0x0, 0x0, [0xcb3, 0x1, 0x6, 0xfffffffffffffff8, 0xfa, 0x10000]}, &(0x7f0000000480)=0x78) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xd6}], 0x2, 0x0, 0x1}, 0x0) syz_io_uring_submit(0x0, r4, &(0x7f0000000280)=@IORING_OP_ASYNC_CANCEL={0xe, 0x3, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x4678) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r6 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x7, 0xfffffffffffffffc, &(0x7f0000000240)=[{0x0}, {&(0x7f0000000700)=""/214, 0xfffffffffffffecd}], 0x2}, 0x0) syz_io_uring_submit(0x0, r8, &(0x7f0000000280)=@IORING_OP_ASYNC_CANCEL={0xe, 0x3, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x4678) r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) syz_io_uring_submit(r9, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) syz_io_uring_submit(r5, r8, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x4, 0x0, r10, 0x0, &(0x7f00000005c0)={&(0x7f0000000200)=@l2, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000280)=""/250, 0xfa}, {&(0x7f0000000380)=""/18, 0x12}, {&(0x7f00000003c0)}, {&(0x7f0000000400)}, {&(0x7f0000000440)}], 0x5, &(0x7f0000000540)=""/91, 0x5b}, 0x0, 0x0, 0x1}, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x8000000) sendmsg$NL80211_CMD_SET_PMKSA(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022dbd7000fedbdf25340000000c00607f105b05eb920e00001400550003118db3d2c2c43cf69fbc84ebd46f080600fd000200000008001f01090000000600fd0005000000140055001ea27c2da81f00000081d93a7582756e"], 0x60}, 0x1, 0x0, 0x0, 0x41}, 0x2) [ 1524.911058] FAULT_INJECTION: forcing a failure. [ 1524.911058] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1524.912857] CPU: 1 PID: 10398 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1524.913835] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1524.915008] Call Trace: [ 1524.915398] dump_stack+0x107/0x167 [ 1524.915930] should_fail.cold+0x5/0xa [ 1524.916484] _copy_to_user+0x2e/0x180 [ 1524.917030] io_uring_setup+0x11b5/0x2980 [ 1524.917626] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1524.918353] ? wait_for_completion_io+0x270/0x270 [ 1524.919065] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1524.919826] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1524.920563] do_syscall_64+0x33/0x40 [ 1524.921104] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1524.921844] RIP: 0033:0x7fc343bc8b19 [ 1524.922376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1524.925004] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1524.926104] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1524.927130] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1524.928164] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1524.929180] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1524.930199] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1524.934621] FAULT_INJECTION: forcing a failure. [ 1524.934621] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1524.935446] FAULT_INJECTION: forcing a failure. [ 1524.935446] name failslab, interval 1, probability 0, space 0, times 0 [ 1524.937216] CPU: 0 PID: 10414 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1524.940217] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1524.941988] Call Trace: [ 1524.942559] dump_stack+0x107/0x167 [ 1524.943345] should_fail.cold+0x5/0xa [ 1524.944179] __alloc_pages_nodemask+0x182/0x600 [ 1524.945178] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1524.946471] ? cap_capable+0x1cd/0x230 [ 1524.947314] alloc_pages_current+0x187/0x280 [ 1524.948266] __get_free_pages+0xc/0xa0 [ 1524.949103] io_uring_setup+0xf9a/0x2980 [ 1524.949980] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1524.951057] ? wait_for_completion_io+0x270/0x270 [ 1524.952124] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1524.953244] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1524.954339] do_syscall_64+0x33/0x40 [ 1524.955132] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1524.956230] RIP: 0033:0x7f4a0d16cb19 [ 1524.957027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1524.960936] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1524.962556] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1524.964079] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1524.965597] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1524.967111] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1524.968640] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1524.970186] CPU: 1 PID: 10406 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1524.971165] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1524.972350] Call Trace: [ 1524.972724] dump_stack+0x107/0x167 [ 1524.973247] should_fail.cold+0x5/0xa [ 1524.973786] ? io_uring_alloc_task_context+0x99/0x6a0 [ 1524.974501] should_failslab+0x5/0x20 [ 1524.975030] kmem_cache_alloc_trace+0x55/0x320 [ 1524.975686] io_uring_alloc_task_context+0x99/0x6a0 [ 1524.976066] FAULT_INJECTION: forcing a failure. [ 1524.976066] name failslab, interval 1, probability 0, space 0, times 0 [ 1524.976386] ? io_import_iovec+0x1120/0x1120 [ 1524.979242] ? lock_downgrade+0x6d0/0x6d0 [ 1524.979825] ? do_raw_spin_lock+0x121/0x260 [ 1524.980420] ? rwlock_bug.part.0+0x90/0x90 [ 1524.981013] __io_uring_add_tctx_node+0x2c6/0x520 [ 1524.981687] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1524.982414] ? alloc_fd+0x2e7/0x670 [ 1524.982929] io_uring_setup+0x1fbb/0x2980 [ 1524.983511] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1524.984220] ? wait_for_completion_io+0x270/0x270 [ 1524.984910] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1524.985637] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1524.986356] do_syscall_64+0x33/0x40 [ 1524.986876] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1524.987600] RIP: 0033:0x7fc39eed2b19 [ 1524.988119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1524.990673] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1524.991750] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1524.992745] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1524.993731] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1524.994731] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1524.995730] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1524.996740] CPU: 0 PID: 10412 Comm: syz-executor.7 Not tainted 5.10.247 #1 10:22:17 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2000000000000000, 0x1, &(0x7f0000000200)=[{&(0x7f00000000c0)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000d9f4655fd9f4655f0100ffff53ef", 0x3a, 0x200}], 0x0, &(0x7f0000000140)=ANY=[@ANYRESHEX=0x0]) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x8000000) openat(r0, &(0x7f0000000040)='./file0\x00', 0x34080, 0x100) [ 1524.998446] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1525.000705] Call Trace: [ 1525.001351] dump_stack+0x107/0x167 [ 1525.002243] should_fail.cold+0x5/0xa [ 1525.003174] ? security_file_alloc+0x34/0x170 [ 1525.004262] should_failslab+0x5/0x20 [ 1525.005185] kmem_cache_alloc+0x5b/0x310 [ 1525.006170] security_file_alloc+0x34/0x170 [ 1525.007209] __alloc_file+0xb7/0x320 [ 1525.008120] alloc_empty_file+0x6d/0x170 [ 1525.009111] alloc_file+0x5e/0x5a0 [ 1525.009983] alloc_file_pseudo+0x16a/0x250 [ 1525.011005] ? alloc_file+0x5a0/0x5a0 [ 1525.011962] anon_inode_getfile+0xc8/0x1f0 [ 1525.012991] io_uring_setup+0x138b/0x2980 [ 1525.014005] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1525.015230] ? wait_for_completion_io+0x270/0x270 [ 1525.016435] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1525.017706] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1525.018960] do_syscall_64+0x33/0x40 [ 1525.019869] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1525.021106] RIP: 0033:0x7fcf2a53eb19 [ 1525.022010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1525.026482] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1525.028341] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1525.030063] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1525.031791] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1525.033520] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1525.035239] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:22:18 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x22, 0x0) 10:22:18 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)={0xf2}) 10:22:18 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 26) 10:22:18 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 21) 10:22:18 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 14) [ 1525.136157] FAULT_INJECTION: forcing a failure. [ 1525.136157] name failslab, interval 1, probability 0, space 0, times 0 [ 1525.137676] CPU: 1 PID: 10422 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1525.138589] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1525.139683] Call Trace: [ 1525.140036] dump_stack+0x107/0x167 [ 1525.140514] should_fail.cold+0x5/0xa [ 1525.141023] ? __d_alloc+0x2a/0x990 [ 1525.141508] should_failslab+0x5/0x20 [ 1525.142010] kmem_cache_alloc+0x5b/0x310 [ 1525.142541] __d_alloc+0x2a/0x990 [ 1525.142992] ? find_held_lock+0x2c/0x110 [ 1525.143535] d_alloc_pseudo+0x19/0x70 [ 1525.144047] alloc_file_pseudo+0xce/0x250 [ 1525.144591] ? trace_hardirqs_on+0x5b/0x180 [ 1525.145155] ? alloc_file+0x5a0/0x5a0 [ 1525.145679] anon_inode_getfile+0xc8/0x1f0 [ 1525.146232] io_uring_setup+0x138b/0x2980 [ 1525.146788] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1525.147463] ? wait_for_completion_io+0x270/0x270 [ 1525.148126] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1525.148817] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1525.149509] do_syscall_64+0x33/0x40 [ 1525.149994] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1525.150661] RIP: 0033:0x7fc343bc8b19 [ 1525.151146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1525.153560] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1525.154549] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1525.155471] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1525.156423] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1525.157347] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1525.158275] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1525.168385] FAULT_INJECTION: forcing a failure. [ 1525.168385] name failslab, interval 1, probability 0, space 0, times 0 [ 1525.169878] CPU: 1 PID: 10426 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1525.170766] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1525.171838] Call Trace: [ 1525.172187] dump_stack+0x107/0x167 [ 1525.172681] should_fail.cold+0x5/0xa [ 1525.173191] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1525.173921] should_failslab+0x5/0x20 [ 1525.174420] kmem_cache_alloc_trace+0x55/0x320 [ 1525.175023] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1525.175744] io_uring_setup+0x14f6/0x2980 [ 1525.176294] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1525.176964] ? wait_for_completion_io+0x270/0x270 [ 1525.177617] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1525.178310] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1525.178966] do_syscall_64+0x33/0x40 [ 1525.179454] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1525.180134] RIP: 0033:0x7f4a0d16cb19 [ 1525.180622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1525.183038] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1525.184047] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1525.184981] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1525.185915] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1525.186819] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1525.187763] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1525.190679] FAULT_INJECTION: forcing a failure. [ 1525.190679] name failslab, interval 1, probability 0, space 0, times 0 [ 1525.192189] CPU: 1 PID: 10424 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1525.193089] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1525.194160] Call Trace: [ 1525.194498] dump_stack+0x107/0x167 [ 1525.194974] should_fail.cold+0x5/0xa [ 1525.195469] ? create_object.isra.0+0x3a/0xa30 [ 1525.196065] should_failslab+0x5/0x20 [ 1525.196557] kmem_cache_alloc+0x5b/0x310 [ 1525.197084] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1525.197795] create_object.isra.0+0x3a/0xa30 [ 1525.198364] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1525.199024] kmem_cache_alloc+0x159/0x310 [ 1525.199572] security_file_alloc+0x34/0x170 [ 1525.200145] __alloc_file+0xb7/0x320 [ 1525.200627] alloc_empty_file+0x6d/0x170 [ 1525.201153] alloc_file+0x5e/0x5a0 [ 1525.201618] alloc_file_pseudo+0x16a/0x250 [ 1525.202169] ? alloc_file+0x5a0/0x5a0 [ 1525.202675] anon_inode_getfile+0xc8/0x1f0 [ 1525.203231] io_uring_setup+0x138b/0x2980 [ 1525.203779] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1525.204430] ? wait_for_completion_io+0x270/0x270 [ 1525.205063] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1525.205739] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1525.206407] do_syscall_64+0x33/0x40 [ 1525.206888] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1525.207547] RIP: 0033:0x7fcf2a53eb19 [ 1525.208039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1525.210415] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1525.211399] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1525.212329] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1525.213246] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1525.214163] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1525.215078] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:22:18 executing program 4: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x8000000) perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0x1f, 0x9, 0x1, 0x0, 0x0, 0x101, 0x4, 0x4, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x1, @perf_config_ext={0x5, 0x2}, 0xd72c23d678b744c2, 0x101, 0x2, 0x2, 0x6, 0x6, 0x2, 0x0, 0x10000, 0x0, 0x80000001}, 0xffffffffffffffff, 0x4, r0, 0x1) socket$netlink(0x10, 0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='fd/4\x00') 10:22:18 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 28) [ 1525.248714] FAULT_INJECTION: forcing a failure. [ 1525.248714] name failslab, interval 1, probability 0, space 0, times 0 [ 1525.250251] CPU: 1 PID: 10435 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1525.251136] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1525.252225] Call Trace: [ 1525.252570] dump_stack+0x107/0x167 [ 1525.253043] should_fail.cold+0x5/0xa [ 1525.253539] ? create_object.isra.0+0x3a/0xa30 [ 1525.254136] should_failslab+0x5/0x20 [ 1525.254630] kmem_cache_alloc+0x5b/0x310 [ 1525.255168] create_object.isra.0+0x3a/0xa30 [ 1525.255744] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1525.256413] kmem_cache_alloc_trace+0x151/0x320 [ 1525.257033] io_uring_alloc_task_context+0x99/0x6a0 [ 1525.257681] ? io_import_iovec+0x1120/0x1120 [ 1525.258255] ? lock_downgrade+0x6d0/0x6d0 [ 1525.258791] ? do_raw_spin_lock+0x121/0x260 [ 1525.259347] ? rwlock_bug.part.0+0x90/0x90 [ 1525.259903] __io_uring_add_tctx_node+0x2c6/0x520 [ 1525.260533] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1525.261217] ? alloc_fd+0x2e7/0x670 [ 1525.261693] io_uring_setup+0x1fbb/0x2980 [ 1525.262233] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1525.262893] ? wait_for_completion_io+0x270/0x270 [ 1525.263530] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1525.264216] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1525.264883] do_syscall_64+0x33/0x40 [ 1525.265366] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1525.266028] RIP: 0033:0x7fc39eed2b19 [ 1525.266505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1525.268911] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1525.269893] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1525.270813] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1525.271734] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1525.272645] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1525.273561] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:22:35 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 29) 10:22:35 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)={0xf200}) 10:22:35 executing program 4: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x8000000) perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0x1f, 0x9, 0x1, 0x0, 0x0, 0x101, 0x4, 0x4, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x1, @perf_config_ext={0x5, 0x2}, 0xd72c23d678b744c2, 0x101, 0x2, 0x2, 0x6, 0x6, 0x2, 0x0, 0x10000, 0x0, 0x80000001}, 0xffffffffffffffff, 0x4, r0, 0x1) socket$netlink(0x10, 0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='fd/4\x00') 10:22:35 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x23, 0x0) 10:22:35 executing program 3: r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendfile(r1, r0, 0x0, 0x4000007ffffffc) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/srcutree', 0x30000, 0x152) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r3, 0x8000000) getsockopt$IP6T_SO_GET_ENTRIES(r3, 0x29, 0x41, &(0x7f0000000480)=ANY=[@ANYBLOB="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"/4132], &(0x7f00000014c0)=0x1024) r4 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000440)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) r5 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r5, &(0x7f0000000040)='reno\x00', 0x5) copy_file_range(r4, 0x0, r5, 0x0, 0x800, 0x0) pwritev(r2, &(0x7f00000003c0)=[{&(0x7f0000000080)="a0e662a6f1e76731c9ffa299ca50aff5f1518fe8852d56b1462d226b505f900e884e0799e32e666aa75ce789aa56d5c06365f3e2b5ed8bf80cb6010b581edf5e3f211dbd9ed992ffc8586b4c0492f156ef4fb81eb9271a54b9c26dc6c016a5e236f597b2292973ecf9b8de044d11c3c2c38d1640307b948abeb55d9dc49b1b1d995dd23aa399d5ba6650cc3bd7272cf7a2e2c38916de31ffd3df014e0e96ddf7a486", 0xa2}, {&(0x7f0000000140)="2f5c68a3ab0f53760e8ef27285b888626cf33d3a88e1cdd419ea30f031f69416e55ceac927955c3be760ba81dbaca657304f10bb3f094df628ee100f237c9cd114c797692b212e17288346e137ab992d2c2fb70a62152bb6ac46", 0x5a}, {&(0x7f00000001c0)="46436a39d763da332a880635966979889be52af318a21cc4c9f5b1591e22d88697157d527e9223f91054d2deacf2e85732973e9e3904a8561dcdceaa28912ab0c1f707835df1bef9accc726d302f511774767f1c44d6f484a153bd28ad814f856dea423693bf0e78d9cdfc503f15906ee015699c112952bad0971321fa13867014fd707ecd326efc05b64c1dc4c6dd79085cf3e9afa6f0d46d48f4a62a522d427428f82879f16a56931bb997e6dcc53efab2c3e4bfb951c436945e863eb67ab3543e75d8d2818f767733ee810cb80cac0e032783a4de0ee87d5e0746cc50acca9006bc7163fdc1777d5361d72916c42137fe172a1b2f7c", 0xf7}, {&(0x7f00000002c0)="4d64ef070121ca8c2c9b014bb7f01f9180dd028f9f64dfcbb7ad779415a99292b89568fc0c645aa444437b853c693ac3b0b88afc350fccf4a50bc9e9219567edde4072cffdf9951b1b0aa784e1e8b212bba7590f07", 0x55}, {&(0x7f0000000340)="aaaa3a6f3392141c3eeb0fd116b4be655de74d0ed6971d6ba36c1e9ed3df6df31798e7daed30e3292c8c5fc7649707c443cf06b8853a447aede8e15e797a52caebfb77d9e970085ed42b7c03e7fa36a73586e978", 0x54}], 0x5, 0x6, 0x8) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r6, 0x8000000) openat2(r6, &(0x7f0000001500)='./file0\x00', &(0x7f0000001540)={0x100, 0x11c, 0x4}, 0x18) 10:22:35 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 15) 10:22:35 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 22) 10:22:35 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 27) [ 1542.455332] FAULT_INJECTION: forcing a failure. [ 1542.455332] name failslab, interval 1, probability 0, space 0, times 0 [ 1542.457137] FAULT_INJECTION: forcing a failure. [ 1542.457137] name failslab, interval 1, probability 0, space 0, times 0 [ 1542.457978] CPU: 1 PID: 10450 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1542.462127] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1542.463952] Call Trace: [ 1542.464534] dump_stack+0x107/0x167 [ 1542.465334] should_fail.cold+0x5/0xa [ 1542.466171] ? io_uring_alloc_task_context+0x99/0x6a0 [ 1542.467297] should_failslab+0x5/0x20 [ 1542.468140] kmem_cache_alloc_trace+0x55/0x320 [ 1542.469149] io_uring_alloc_task_context+0x99/0x6a0 [ 1542.470239] ? io_import_iovec+0x1120/0x1120 [ 1542.471202] ? lock_downgrade+0x6d0/0x6d0 [ 1542.472116] ? do_raw_spin_lock+0x121/0x260 [ 1542.473057] ? rwlock_bug.part.0+0x90/0x90 [ 1542.473987] __io_uring_add_tctx_node+0x2c6/0x520 [ 1542.475041] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1542.476255] ? alloc_fd+0x2e7/0x670 [ 1542.477063] io_uring_setup+0x1fbb/0x2980 [ 1542.477977] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1542.479081] ? wait_for_completion_io+0x270/0x270 [ 1542.480167] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1542.481311] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1542.482441] do_syscall_64+0x33/0x40 [ 1542.483255] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1542.484381] RIP: 0033:0x7fcf2a53eb19 [ 1542.485192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1542.489222] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1542.490890] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1542.492453] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1542.494007] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1542.495558] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1542.497118] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1542.498706] CPU: 0 PID: 10448 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1542.500506] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1542.502639] Call Trace: [ 1542.503322] dump_stack+0x107/0x167 [ 1542.504280] should_fail.cold+0x5/0xa [ 1542.505264] ? create_object.isra.0+0x3a/0xa30 [ 1542.506437] should_failslab+0x5/0x20 [ 1542.507416] kmem_cache_alloc+0x5b/0x310 [ 1542.508490] create_object.isra.0+0x3a/0xa30 [ 1542.509471] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1542.510587] kmem_cache_alloc+0x159/0x310 [ 1542.511500] __d_alloc+0x2a/0x990 [ 1542.512264] ? find_held_lock+0x2c/0x110 [ 1542.513153] d_alloc_pseudo+0x19/0x70 [ 1542.513981] alloc_file_pseudo+0xce/0x250 [ 1542.514880] ? trace_hardirqs_on+0x5b/0x180 [ 1542.515826] ? alloc_file+0x5a0/0x5a0 [ 1542.516674] anon_inode_getfile+0xc8/0x1f0 [ 1542.517599] io_uring_setup+0x138b/0x2980 [ 1542.518512] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1542.519609] ? wait_for_completion_io+0x270/0x270 [ 1542.520699] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1542.521838] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1542.522966] do_syscall_64+0x33/0x40 [ 1542.523785] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1542.524899] RIP: 0033:0x7fc343bc8b19 [ 1542.525707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1542.529703] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1542.531356] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1542.532916] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1542.534416] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1542.535981] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1542.537529] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1542.554442] FAULT_INJECTION: forcing a failure. [ 1542.554442] name failslab, interval 1, probability 0, space 0, times 0 [ 1542.557016] CPU: 1 PID: 10451 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1542.558522] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1542.560333] Call Trace: [ 1542.560912] dump_stack+0x107/0x167 [ 1542.561708] should_fail.cold+0x5/0xa [ 1542.562540] ? create_object.isra.0+0x3a/0xa30 [ 1542.563531] should_failslab+0x5/0x20 [ 1542.564367] kmem_cache_alloc+0x5b/0x310 [ 1542.565251] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1542.566561] create_object.isra.0+0x3a/0xa30 [ 1542.567515] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1542.568631] kmem_cache_alloc_trace+0x151/0x320 [ 1542.569652] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1542.570837] io_uring_setup+0x14f6/0x2980 [ 1542.571756] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1542.572860] ? wait_for_completion_io+0x270/0x270 [ 1542.573937] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1542.575077] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1542.576212] do_syscall_64+0x33/0x40 [ 1542.577024] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1542.578141] RIP: 0033:0x7f4a0d16cb19 [ 1542.578954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1542.582968] RSP: 002b:00007f4a0a6c1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1542.584632] RAX: ffffffffffffffda RBX: 00007f4a0d280020 RCX: 00007f4a0d16cb19 [ 1542.586188] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1542.587745] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1542.589302] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1542.590854] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1542.608462] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35144 sclass=netlink_route_socket pid=10456 comm=syz-executor.3 10:22:35 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 28) 10:22:35 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xce, 0x0, @perf_bp={0x0}, 0x2484, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x400448e1, 0x0) r1 = dup2(r0, r0) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6) [ 1542.641550] FAULT_INJECTION: forcing a failure. [ 1542.641550] name failslab, interval 1, probability 0, space 0, times 0 [ 1542.644137] CPU: 0 PID: 10445 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1542.645645] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1542.647448] Call Trace: [ 1542.648035] dump_stack+0x107/0x167 [ 1542.648833] should_fail.cold+0x5/0xa [ 1542.649669] ? create_object.isra.0+0x3a/0xa30 [ 1542.650661] should_failslab+0x5/0x20 [ 1542.651491] kmem_cache_alloc+0x5b/0x310 [ 1542.652398] create_object.isra.0+0x3a/0xa30 [ 1542.653366] kmemleak_alloc_percpu+0xa0/0x100 [ 1542.654347] pcpu_alloc+0x4e2/0x1240 [ 1542.655179] __percpu_counter_init+0x10d/0x2d0 [ 1542.656187] io_uring_alloc_task_context+0xcc/0x6a0 [ 1542.657279] ? io_import_iovec+0x1120/0x1120 [ 1542.658239] ? lock_downgrade+0x6d0/0x6d0 [ 1542.659144] ? do_raw_spin_lock+0x121/0x260 [ 1542.660090] ? rwlock_bug.part.0+0x90/0x90 [ 1542.661025] __io_uring_add_tctx_node+0x2c6/0x520 [ 1542.662080] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1542.663221] ? alloc_fd+0x2e7/0x670 [ 1542.664035] io_uring_setup+0x1fbb/0x2980 [ 1542.664948] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1542.666053] ? wait_for_completion_io+0x270/0x270 [ 1542.667128] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1542.668281] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1542.669406] do_syscall_64+0x33/0x40 [ 1542.670217] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1542.671335] RIP: 0033:0x7fc39eed2b19 [ 1542.672151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1542.676163] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1542.677821] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1542.679374] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1542.680933] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1542.682487] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1542.684046] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:22:35 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)={0xf2000000}) [ 1542.708324] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=34247 sclass=netlink_route_socket pid=10456 comm=syz-executor.3 [ 1542.721640] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=53893 sclass=netlink_route_socket pid=10456 comm=syz-executor.3 10:22:35 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 16) [ 1542.731355] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=53481 sclass=netlink_route_socket pid=10456 comm=syz-executor.3 10:22:35 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x24, 0x0) [ 1542.777101] FAULT_INJECTION: forcing a failure. [ 1542.777101] name failslab, interval 1, probability 0, space 0, times 0 [ 1542.779629] CPU: 1 PID: 10471 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1542.781141] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1542.782941] Call Trace: [ 1542.783518] dump_stack+0x107/0x167 [ 1542.784327] should_fail.cold+0x5/0xa [ 1542.785158] ? create_object.isra.0+0x3a/0xa30 [ 1542.786150] should_failslab+0x5/0x20 [ 1542.786982] kmem_cache_alloc+0x5b/0x310 [ 1542.787886] create_object.isra.0+0x3a/0xa30 [ 1542.788839] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1542.789949] kmem_cache_alloc_trace+0x151/0x320 [ 1542.790969] io_uring_alloc_task_context+0x99/0x6a0 [ 1542.792070] ? io_import_iovec+0x1120/0x1120 [ 1542.793029] ? lock_downgrade+0x6d0/0x6d0 [ 1542.793929] ? do_raw_spin_lock+0x121/0x260 [ 1542.794865] ? rwlock_bug.part.0+0x90/0x90 [ 1542.795805] __io_uring_add_tctx_node+0x2c6/0x520 [ 1542.796859] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1542.797997] ? alloc_fd+0x2e7/0x670 [ 1542.798801] io_uring_setup+0x1fbb/0x2980 [ 1542.799724] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1542.800826] ? wait_for_completion_io+0x270/0x270 [ 1542.801907] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1542.803048] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1542.804185] do_syscall_64+0x33/0x40 [ 1542.804995] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1542.806115] RIP: 0033:0x7fcf2a53eb19 [ 1542.806830] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35656 sclass=netlink_route_socket pid=10456 comm=syz-executor.3 [ 1542.806927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1542.813595] RSP: 002b:00007fcf27a93108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1542.815250] RAX: ffffffffffffffda RBX: 00007fcf2a652020 RCX: 00007fcf2a53eb19 [ 1542.816826] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1542.818378] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1542.819931] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1542.821320] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10456 comm=syz-executor.3 [ 1542.821478] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:22:35 executing program 4: r0 = fork() ptrace(0x10, r0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000005c0)='ns\x00') r2 = dup(r1) r3 = openat(r2, &(0x7f0000000040)='./file1\x00', 0x40, 0xa1) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000000140)={{0x1, 0x1, 0x18, r4}, './file1\x00'}) fchmodat(r2, &(0x7f0000000200)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0xfb, 0x9, 0x0, 0x9, 0x0, 0x7, 0x810, 0x8, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3dbc, 0x0, @perf_config_ext={0x0, 0x2}, 0x1001, 0x464d, 0x6, 0x6, 0xad1, 0x800, 0xf499, 0x0, 0x80}, r0, 0x10, r2, 0x8) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x14}}, 0x0, 0x6, 0xffffffffffffffff, 0x8) r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r6, 0xc0189378, &(0x7f00000000c0)=ANY=[@ANYBLOB="84db9aa16b15e1121b23e43bfb0813c96f4a0c", @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00le1\x00']) copy_file_range(r6, 0x0, r5, 0x0, 0x10001, 0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r8 = gettid() rt_sigqueueinfo(r8, 0x21, &(0x7f0000000400)={0x0, 0x0, 0x8}) ptrace(0x11, r8) sendfile(r5, r7, 0x0, 0x20d315) [ 1542.844930] FAULT_INJECTION: forcing a failure. [ 1542.844930] name failslab, interval 1, probability 0, space 0, times 0 [ 1542.847368] CPU: 1 PID: 10477 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1542.848890] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1542.850691] Call Trace: [ 1542.851269] dump_stack+0x107/0x167 [ 1542.852076] should_fail.cold+0x5/0xa [ 1542.852907] ? create_object.isra.0+0x3a/0xa30 [ 1542.853904] should_failslab+0x5/0x20 [ 1542.854731] kmem_cache_alloc+0x5b/0x310 [ 1542.855619] create_object.isra.0+0x3a/0xa30 [ 1542.856592] kmemleak_alloc_percpu+0xa0/0x100 [ 1542.857576] pcpu_alloc+0x4e2/0x1240 [ 1542.858393] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=33608 sclass=netlink_route_socket pid=10456 comm=syz-executor.3 [ 1542.858410] ? io_async_queue_proc+0x80/0x80 [ 1542.858437] percpu_ref_init+0x31/0x3d0 [ 1542.862857] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1542.864039] io_uring_setup+0x14f6/0x2980 [ 1542.864950] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1542.866044] ? wait_for_completion_io+0x270/0x270 [ 1542.867118] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1542.867689] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35140 sclass=netlink_route_socket pid=10456 comm=syz-executor.3 [ 1542.868259] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1542.868284] do_syscall_64+0x33/0x40 [ 1542.868309] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1542.873920] RIP: 0033:0x7f4a0d16cb19 [ 1542.874726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1542.878720] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1542.880376] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1542.881927] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1542.883472] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1542.885034] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1542.886581] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1542.943932] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=51 sclass=netlink_route_socket pid=10456 comm=syz-executor.3 [ 1542.946613] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=64 sclass=netlink_route_socket pid=10456 comm=syz-executor.3 10:22:49 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x25, 0x0) 10:22:49 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)={0x0, 0xf2}) 10:22:49 executing program 4: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='pagemap\x00') readv(r0, &(0x7f0000000640), 0x0) 10:22:49 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x40806685, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, 0x0) r1 = syz_open_pts(r0, 0x400) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1) ioctl$SG_IO(r0, 0x127f, &(0x7f00000003c0)={0xe00, 0x0, 0x0, 0x0, @buffer={0x300, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) pipe2(&(0x7f0000000000), 0x88800) io_submit(0x0, 0x1, &(0x7f0000000800)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3, r0}]) 10:22:49 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 23) 10:22:49 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 29) 10:22:49 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 17) 10:22:49 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 30) [ 1556.989708] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1556.990611] print_req_error: 157 callbacks suppressed [ 1556.990625] blk_update_request: I/O error, dev sr0, sector 7 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1556.995509] FAULT_INJECTION: forcing a failure. [ 1556.995509] name failslab, interval 1, probability 0, space 0, times 0 [ 1556.997214] CPU: 0 PID: 10502 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1556.998206] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1556.999400] Call Trace: [ 1556.999789] dump_stack+0x107/0x167 [ 1557.000331] should_fail.cold+0x5/0xa [ 1557.000880] ? create_object.isra.0+0x3a/0xa30 [ 1557.001532] should_failslab+0x5/0x20 [ 1557.002104] kmem_cache_alloc+0x5b/0x310 [ 1557.002704] create_object.isra.0+0x3a/0xa30 [ 1557.003366] kmemleak_alloc_percpu+0xa0/0x100 [ 1557.003994] pcpu_alloc+0x4e2/0x1240 [ 1557.004437] __percpu_counter_init+0x10d/0x2d0 [ 1557.004964] io_uring_alloc_task_context+0xcc/0x6a0 [ 1557.005538] ? io_import_iovec+0x1120/0x1120 [ 1557.006045] ? lock_downgrade+0x6d0/0x6d0 [ 1557.006522] ? do_raw_spin_lock+0x121/0x260 [ 1557.007012] ? rwlock_bug.part.0+0x90/0x90 [ 1557.007498] __io_uring_add_tctx_node+0x2c6/0x520 [ 1557.008054] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1557.008650] ? alloc_fd+0x2e7/0x670 [ 1557.009076] io_uring_setup+0x1fbb/0x2980 [ 1557.009554] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1557.010133] ? wait_for_completion_io+0x270/0x270 [ 1557.010697] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1557.011300] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1557.011898] do_syscall_64+0x33/0x40 [ 1557.012327] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1557.012908] RIP: 0033:0x7fc39eed2b19 [ 1557.013332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1557.015419] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1557.016306] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1557.017119] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1557.017932] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1557.018747] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1557.019555] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1557.027820] FAULT_INJECTION: forcing a failure. [ 1557.027820] name failslab, interval 1, probability 0, space 0, times 0 [ 1557.029130] CPU: 0 PID: 10503 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1557.029924] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1557.030872] Call Trace: [ 1557.031191] dump_stack+0x107/0x167 [ 1557.031609] should_fail.cold+0x5/0xa [ 1557.032058] ? create_object.isra.0+0x3a/0xa30 [ 1557.032579] should_failslab+0x5/0x20 [ 1557.033016] kmem_cache_alloc+0x5b/0x310 [ 1557.033489] create_object.isra.0+0x3a/0xa30 [ 1557.033998] kmemleak_alloc_percpu+0xa0/0x100 [ 1557.034517] pcpu_alloc+0x4e2/0x1240 [ 1557.034953] ? io_async_queue_proc+0x80/0x80 [ 1557.035464] percpu_ref_init+0x31/0x3d0 [ 1557.035934] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1557.036551] io_uring_setup+0x14f6/0x2980 [ 1557.037032] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1557.037614] ? wait_for_completion_io+0x270/0x270 [ 1557.038185] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1557.038789] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1557.039381] do_syscall_64+0x33/0x40 [ 1557.039818] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1557.040415] RIP: 0033:0x7f4a0d16cb19 [ 1557.040846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1557.042966] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1557.043850] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1557.044674] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1557.045487] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1557.046301] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1557.047113] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:22:50 executing program 4: ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee01}}, './file0/../file0\x00'}) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, &(0x7f0000000440)={'filter\x00', 0xfc, "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"}, &(0x7f00000001c0)=0x120) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x4, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f00000002c0)='./file0/../file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x1001000, &(0x7f0000000000)=ANY=[@ANYRESDEC]) r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$SCSI_IOCTL_STOP_UNIT(r1, 0x40081271) mount$bind(&(0x7f0000000400)='./file0/../file0\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x20, 0x0) [ 1557.050404] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.051094] blk_update_request: I/O error, dev sr0, sector 263 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1557.054956] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.055648] blk_update_request: I/O error, dev sr0, sector 519 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1557.057292] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.058036] blk_update_request: I/O error, dev sr0, sector 775 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1557.059901] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.060647] blk_update_request: I/O error, dev sr0, sector 1031 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 10:22:50 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)={0x0, 0xf200}) [ 1557.062996] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.063772] blk_update_request: I/O error, dev sr0, sector 1287 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1557.065107] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.065765] blk_update_request: I/O error, dev sr0, sector 1543 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1557.067524] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.068277] blk_update_request: I/O error, dev sr0, sector 1799 op 0x1:(WRITE) flags 0x0 phys_seg 32 prio class 0 [ 1557.070000] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.070642] FAULT_INJECTION: forcing a failure. [ 1557.070642] name failslab, interval 1, probability 0, space 0, times 0 [ 1557.070670] CPU: 1 PID: 10509 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1557.070691] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1557.071996] blk_update_request: I/O error, dev sr0, sector 2055 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1557.073455] Call Trace: [ 1557.073483] dump_stack+0x107/0x167 [ 1557.073508] should_fail.cold+0x5/0xa [ 1557.075666] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.076664] ? __alloc_file+0x21/0x320 [ 1557.076684] should_failslab+0x5/0x20 [ 1557.076707] kmem_cache_alloc+0x5b/0x310 [ 1557.077028] blk_update_request: I/O error, dev sr0, sector 2311 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1557.077767] __alloc_file+0x21/0x320 [ 1557.077789] alloc_empty_file+0x6d/0x170 [ 1557.083249] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.083835] alloc_file+0x5e/0x5a0 [ 1557.083860] alloc_file_pseudo+0x16a/0x250 [ 1557.084457] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.085123] ? alloc_file+0x5a0/0x5a0 [ 1557.085163] anon_inode_getfile+0xc8/0x1f0 [ 1557.090090] io_uring_setup+0x138b/0x2980 [ 1557.090656] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.090981] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1557.091766] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.092632] ? wait_for_completion_io+0x270/0x270 [ 1557.092683] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1557.093372] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.094227] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1557.094253] do_syscall_64+0x33/0x40 [ 1557.096669] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.097027] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1557.097625] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.098538] RIP: 0033:0x7fc343bc8b19 [ 1557.098560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1557.098576] RSP: 002b:00007fc34111d108 EFLAGS: 00000202 [ 1557.099635] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.100247] ORIG_RAX: 00000000000001a9 [ 1557.100264] RAX: ffffffffffffffda RBX: 00007fc343cdc020 RCX: 00007fc343bc8b19 [ 1557.100871] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.104549] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1557.104561] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1557.104573] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1557.104585] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:22:50 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 18) 10:22:50 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 31) [ 1557.131728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.132490] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.133595] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.134307] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.135121] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.135361] FAULT_INJECTION: forcing a failure. [ 1557.135361] name failslab, interval 1, probability 0, space 0, times 0 [ 1557.138231] CPU: 1 PID: 10507 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1557.139718] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1557.141523] Call Trace: [ 1557.141647] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.142102] dump_stack+0x107/0x167 [ 1557.142843] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.143477] should_fail.cold+0x5/0xa [ 1557.144214] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.144894] ? create_object.isra.0+0x3a/0xa30 [ 1557.144915] should_failslab+0x5/0x20 [ 1557.145633] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.146472] kmem_cache_alloc+0x5b/0x310 [ 1557.147023] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.148022] create_object.isra.0+0x3a/0xa30 [ 1557.148054] kmemleak_alloc_percpu+0xa0/0x100 [ 1557.151464] pcpu_alloc+0x4e2/0x1240 [ 1557.152269] __percpu_counter_init+0x10d/0x2d0 [ 1557.153238] io_uring_alloc_task_context+0xcc/0x6a0 [ 1557.154288] ? io_import_iovec+0x1120/0x1120 [ 1557.154295] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.154402] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.155220] ? lock_downgrade+0x6d0/0x6d0 [ 1557.155245] ? do_raw_spin_lock+0x121/0x260 [ 1557.156131] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.156937] ? rwlock_bug.part.0+0x90/0x90 [ 1557.156965] __io_uring_add_tctx_node+0x2c6/0x520 [ 1557.157580] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.158330] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1557.159043] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.159792] ? alloc_fd+0x2e7/0x670 [ 1557.159839] io_uring_setup+0x1fbb/0x2980 [ 1557.165219] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1557.166295] ? wait_for_completion_io+0x270/0x270 [ 1557.166655] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.167358] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1557.168066] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.169037] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1557.169062] do_syscall_64+0x33/0x40 [ 1557.169780] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.170737] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1557.170754] RIP: 0033:0x7fcf2a53eb19 [ 1557.171285] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.172296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1557.172308] RSP: 002b:00007fcf27a93108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1557.173036] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.173686] RAX: ffffffffffffffda RBX: 00007fcf2a652020 RCX: 00007fcf2a53eb19 [ 1557.173698] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1557.173714] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1557.177064] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.178274] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1557.178286] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1557.188901] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.189906] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.190921] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.191673] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.192413] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.193171] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.193904] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.194710] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.195747] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.196490] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.197473] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.198223] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.198991] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.199755] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.200490] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.203777] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.204729] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.205457] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.206376] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.207215] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.208385] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.209226] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.209984] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.211032] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.211825] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.213097] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.213870] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.214986] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.215927] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.216836] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.217620] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.218823] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.219760] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.220498] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.221261] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.222060] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.222824] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 10:22:50 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x26, 0x0) 10:22:50 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 24) [ 1557.242453] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.243962] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.245237] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.246489] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.247715] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.247972] FAULT_INJECTION: forcing a failure. [ 1557.247972] name failslab, interval 1, probability 0, space 0, times 0 [ 1557.248954] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.250159] CPU: 0 PID: 10516 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1557.252021] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1557.252986] Call Trace: [ 1557.253297] dump_stack+0x107/0x167 [ 1557.253722] should_fail.cold+0x5/0xa [ 1557.254162] ? create_object.isra.0+0x3a/0xa30 [ 1557.254689] should_failslab+0x5/0x20 [ 1557.255138] kmem_cache_alloc+0x5b/0x310 [ 1557.255614] create_object.isra.0+0x3a/0xa30 [ 1557.256129] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1557.256721] kmem_cache_alloc+0x159/0x310 [ 1557.257202] __alloc_file+0x21/0x320 [ 1557.257637] alloc_empty_file+0x6d/0x170 [ 1557.258107] alloc_file+0x5e/0x5a0 [ 1557.258528] alloc_file_pseudo+0x16a/0x250 [ 1557.259016] ? alloc_file+0x5a0/0x5a0 [ 1557.259469] anon_inode_getfile+0xc8/0x1f0 [ 1557.259989] io_uring_setup+0x138b/0x2980 [ 1557.260474] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1557.261060] ? wait_for_completion_io+0x270/0x270 [ 1557.261635] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1557.262242] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1557.262845] do_syscall_64+0x33/0x40 [ 1557.263277] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1557.263881] RIP: 0033:0x7fc343bc8b19 [ 1557.264315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1557.266441] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1557.267326] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1557.268153] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1557.268980] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1557.269810] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1557.270639] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1557.271817] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.272590] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.273381] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.274131] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.291508] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.292677] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.293420] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.294592] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.296333] FAULT_INJECTION: forcing a failure. [ 1557.296333] name failslab, interval 1, probability 0, space 0, times 0 [ 1557.297650] CPU: 0 PID: 10519 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1557.298446] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1557.299404] Call Trace: [ 1557.299710] dump_stack+0x107/0x167 [ 1557.300147] should_fail.cold+0x5/0xa [ 1557.300591] ? percpu_ref_init+0xd8/0x3d0 [ 1557.301072] should_failslab+0x5/0x20 [ 1557.301509] kmem_cache_alloc_trace+0x55/0x320 [ 1557.302040] ? io_async_queue_proc+0x80/0x80 [ 1557.302546] percpu_ref_init+0xd8/0x3d0 [ 1557.303011] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1557.303636] io_uring_setup+0x14f6/0x2980 [ 1557.304133] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1557.304727] ? wait_for_completion_io+0x270/0x270 [ 1557.305303] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1557.305905] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1557.306504] do_syscall_64+0x33/0x40 [ 1557.306935] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1557.307525] RIP: 0033:0x7f4a0d16cb19 [ 1557.307964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1557.310100] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1557.310984] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1557.311807] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1557.312642] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1557.312897] EXT4-fs (sda): re-mounted. Opts: (null) [ 1557.313474] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1557.313482] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1557.320907] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.321697] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.322478] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.323223] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.324097] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.331028] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.331248] FAULT_INJECTION: forcing a failure. [ 1557.331248] name failslab, interval 1, probability 0, space 0, times 0 [ 1557.334002] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.334227] CPU: 1 PID: 10522 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1557.334928] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 10:22:50 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 30) [ 1557.336198] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1557.336205] Call Trace: [ 1557.336233] dump_stack+0x107/0x167 [ 1557.336259] should_fail.cold+0x5/0xa [ 1557.340744] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 1557.341808] should_failslab+0x5/0x20 [ 1557.342460] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.342584] kmem_cache_alloc_trace+0x55/0x320 [ 1557.342614] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1557.343314] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.344154] ? io_import_iovec+0x1120/0x1120 [ 1557.344176] ? lock_downgrade+0x6d0/0x6d0 [ 1557.344196] ? do_raw_spin_lock+0x121/0x260 [ 1557.348392] ? rwlock_bug.part.0+0x90/0x90 [ 1557.349280] __io_uring_add_tctx_node+0x2c6/0x520 [ 1557.349878] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.350269] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1557.350291] ? alloc_fd+0x2e7/0x670 [ 1557.351034] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.351980] io_uring_setup+0x1fbb/0x2980 [ 1557.352013] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1557.354786] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.355311] ? wait_for_completion_io+0x270/0x270 [ 1557.356918] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1557.358000] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1557.358285] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.359054] do_syscall_64+0x33/0x40 [ 1557.359077] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1557.360949] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.361464] RIP: 0033:0x7fc39eed2b19 [ 1557.362822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1557.363353] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.366571] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1557.366595] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1557.366607] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1557.366623] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1557.372671] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.373179] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1557.373196] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1557.380976] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.383128] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.383976] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.391929] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.392698] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.395687] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.396429] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.400344] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.402322] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.403123] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.403894] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.405073] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.405904] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.406878] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.407986] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.408813] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.409961] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.410763] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.411506] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.413856] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.414642] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.415999] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.416895] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.417705] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.418845] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.420181] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.420961] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.422153] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.423312] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.424418] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.425687] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 10:22:50 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 25) [ 1557.438576] FAULT_INJECTION: forcing a failure. [ 1557.438576] name failslab, interval 1, probability 0, space 0, times 0 [ 1557.439924] CPU: 0 PID: 10529 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1557.440721] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1557.441668] Call Trace: [ 1557.441981] dump_stack+0x107/0x167 [ 1557.442487] should_fail.cold+0x5/0xa [ 1557.442986] ? security_file_alloc+0x34/0x170 [ 1557.443503] should_failslab+0x5/0x20 [ 1557.443955] kmem_cache_alloc+0x5b/0x310 [ 1557.444425] security_file_alloc+0x34/0x170 [ 1557.444933] __alloc_file+0xb7/0x320 [ 1557.445365] alloc_empty_file+0x6d/0x170 [ 1557.445838] alloc_file+0x5e/0x5a0 [ 1557.446255] alloc_file_pseudo+0x16a/0x250 [ 1557.446742] ? alloc_file+0x5a0/0x5a0 [ 1557.447194] anon_inode_getfile+0xc8/0x1f0 [ 1557.447687] io_uring_setup+0x138b/0x2980 [ 1557.448177] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1557.448759] ? wait_for_completion_io+0x270/0x270 [ 1557.449335] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1557.449940] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1557.450532] do_syscall_64+0x33/0x40 [ 1557.450964] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1557.451550] RIP: 0033:0x7fc343bc8b19 [ 1557.451991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1557.454103] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1557.454980] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1557.455801] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1557.456640] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1557.457459] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1557.458287] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:22:50 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 19) [ 1557.466285] FAULT_INJECTION: forcing a failure. [ 1557.466285] name failslab, interval 1, probability 0, space 0, times 0 [ 1557.467125] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.467698] CPU: 0 PID: 10528 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1557.469763] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1557.470856] Call Trace: [ 1557.471165] dump_stack+0x107/0x167 [ 1557.471590] should_fail.cold+0x5/0xa [ 1557.472042] ? create_object.isra.0+0x3a/0xa30 [ 1557.472570] should_failslab+0x5/0x20 [ 1557.473017] kmem_cache_alloc+0x5b/0x310 [ 1557.473494] create_object.isra.0+0x3a/0xa30 [ 1557.474010] kmemleak_alloc_percpu+0xa0/0x100 [ 1557.474528] pcpu_alloc+0x4e2/0x1240 [ 1557.474976] __percpu_counter_init+0x10d/0x2d0 [ 1557.475508] io_uring_alloc_task_context+0xcc/0x6a0 [ 1557.476091] ? io_import_iovec+0x1120/0x1120 [ 1557.476602] ? lock_downgrade+0x6d0/0x6d0 [ 1557.477079] ? do_raw_spin_lock+0x121/0x260 [ 1557.477578] ? rwlock_bug.part.0+0x90/0x90 [ 1557.478070] __io_uring_add_tctx_node+0x2c6/0x520 [ 1557.478628] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1557.479234] ? alloc_fd+0x2e7/0x670 [ 1557.479664] io_uring_setup+0x1fbb/0x2980 [ 1557.480160] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1557.480742] ? wait_for_completion_io+0x270/0x270 [ 1557.481318] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1557.481932] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1557.482533] do_syscall_64+0x33/0x40 [ 1557.482973] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1557.483565] RIP: 0033:0x7fcf2a53eb19 [ 1557.484004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1557.486119] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1557.486996] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1557.487825] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1557.488652] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1557.489475] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1557.490300] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1557.498546] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.499892] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.501129] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.502354] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.507703] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.508470] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.509280] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.527608] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.528352] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.529163] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.529941] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.530880] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.531665] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.537891] FAULT_INJECTION: forcing a failure. [ 1557.537891] name failslab, interval 1, probability 0, space 0, times 0 [ 1557.540470] CPU: 1 PID: 10532 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1557.541892] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1557.543590] Call Trace: [ 1557.544150] dump_stack+0x107/0x167 [ 1557.544899] should_fail.cold+0x5/0xa [ 1557.545679] ? create_object.isra.0+0x3a/0xa30 [ 1557.546618] should_failslab+0x5/0x20 [ 1557.547406] kmem_cache_alloc+0x5b/0x310 [ 1557.548297] create_object.isra.0+0x3a/0xa30 [ 1557.548668] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.549197] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1557.549971] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.550849] kmem_cache_alloc_trace+0x151/0x320 [ 1557.550876] ? io_async_queue_proc+0x80/0x80 [ 1557.553359] percpu_ref_init+0xd8/0x3d0 [ 1557.554195] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1557.555298] io_uring_setup+0x14f6/0x2980 [ 1557.556195] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1557.557224] ? wait_for_completion_io+0x270/0x270 [ 1557.558272] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1557.559337] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1557.560408] do_syscall_64+0x33/0x40 [ 1557.561180] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1557.562226] RIP: 0033:0x7f4a0d16cb19 [ 1557.562987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1557.566877] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1557.568451] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1557.569913] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1557.571368] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1557.572827] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1557.574289] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1557.590591] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.591897] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.593161] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.595243] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.596487] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.597911] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.599154] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.599971] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.600800] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.601534] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.605652] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.606394] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.608698] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.609461] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.610344] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.614694] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.615429] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.616273] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.620689] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.621420] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.622840] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.623633] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.630569] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.631299] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.632122] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.634981] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.635743] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.636490] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.637819] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.638753] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.639907] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.640725] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.641842] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.642648] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.643750] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.644489] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.645661] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.646803] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.647635] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.648749] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.649522] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.650650] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.651419] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.652271] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.653376] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.654511] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.655327] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.656441] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.657530] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.658782] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.659912] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.660729] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.661907] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.662751] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.663841] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.664928] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.665771] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.666584] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.667727] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.668448] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.669740] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.670484] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.671639] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.672418] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.673520] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.674805] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.675933] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.676722] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.677609] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.678701] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.679427] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.680531] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.681702] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.682851] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.683966] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.684746] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.685641] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.686745] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.687465] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.688630] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.689760] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.690892] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.691730] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.692485] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.693645] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.694766] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.698397] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.699219] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.700054] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.701127] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.702395] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.703191] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.704288] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.705176] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.706344] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.707113] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.708176] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.709266] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.710347] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.711194] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.712322] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.713458] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.714713] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.715880] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.717086] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.717879] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.718728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.719445] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.720662] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.721401] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.722661] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.723868] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.724757] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.725867] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.726665] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.727428] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.728531] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.730300] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.731124] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.732201] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.733295] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.734126] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.735306] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.736197] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.737305] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.738442] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.739646] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.740767] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.741908] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.742740] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.743860] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.744676] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.745971] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.746832] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.747594] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.748652] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.749412] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.750525] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.751728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.752464] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.753678] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.754833] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.755657] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.756761] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.757865] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.758677] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.759792] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.760615] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.762082] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.762937] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.763713] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.764973] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.765883] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.766647] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.767900] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.768747] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.770001] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.770772] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.771598] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.772697] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.773420] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.774485] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.775707] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.776445] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.779083] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.780193] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.780960] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.799469] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.800772] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.802035] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.803254] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.804937] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.806840] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.808597] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.810102] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.811525] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.812463] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.813305] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.814903] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.816301] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.817683] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.818406] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.819283] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.820091] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.821508] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.822252] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.823073] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.823892] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.824626] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.825373] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.826227] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.827060] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.827804] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.828567] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.829247] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.830008] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.830860] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.831686] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.832377] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.833213] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.833947] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.834717] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.835388] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.836168] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.836983] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.837718] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.838460] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.839195] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.840030] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.841601] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.843020] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.844185] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.845242] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.846275] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.847270] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.848283] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.849003] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.849845] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.851430] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.852779] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.854083] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.856277] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.857976] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.859362] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.860887] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.862263] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.863761] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.865263] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.866745] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.868140] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.869656] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.871049] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.872434] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.873859] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.875192] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.876740] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.878146] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.879510] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.880959] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.882324] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.883726] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.884462] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.885286] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.886629] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.887948] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.889247] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.890104] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.891596] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.892858] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.894125] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.894865] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.895858] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.897425] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.898324] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.899979] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.902041] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.903331] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.904407] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.905143] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.905884] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.906620] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.907333] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.908645] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.909405] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.910137] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.911197] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.912922] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.914638] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.916683] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.917363] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.918254] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.918992] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.920730] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.921440] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.922260] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.922977] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.923871] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.925540] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.927407] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.945384] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.947094] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.948888] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.950800] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.952523] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.954423] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.956191] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.958071] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.959997] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.961928] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.963896] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.965760] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.967431] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.969497] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.971467] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.973377] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.975304] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.977239] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.979037] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.981029] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.982826] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.984833] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.986825] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.988678] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.990538] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.992471] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.994350] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.996198] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.997886] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1557.999937] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.001899] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.006833] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.008602] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.010738] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.012494] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.014303] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.015943] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.017878] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.019884] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.021865] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.023656] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.025497] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.027341] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.029243] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.030896] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.032912] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.034963] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.036858] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.038661] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.040710] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.042473] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.044305] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.045989] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.047939] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.049859] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.051698] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.053670] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.055492] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.057314] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.059109] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.060796] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.062756] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.064599] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.066478] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.068298] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.070131] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.071962] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.073835] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.075604] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.077505] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.079315] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.081208] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.082968] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.084868] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.086525] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.088414] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.090041] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.092062] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.093980] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.095898] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.097668] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.099435] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.101214] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.102995] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.104666] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.109061] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.110927] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.112707] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.114590] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.116271] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.117942] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.119628] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.121223] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.122952] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.124726] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.126340] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.128021] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.129773] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.131426] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.133152] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.134757] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.136728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.138429] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.140106] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.141937] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.143658] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.145374] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.147025] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.148727] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.150470] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.152163] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.153862] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.155525] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.157319] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.158993] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.160792] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.162364] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.164179] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.165921] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.167664] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.169297] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.170953] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.172701] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.174402] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.175992] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.177830] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.179519] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.181170] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.182891] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.184525] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.186217] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.187877] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.189495] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.191264] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.192919] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.194652] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.196828] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.198390] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.199915] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.201459] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.202891] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.204597] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.206156] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.208463] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.211959] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.213454] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.215100] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.216913] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.218324] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.219981] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.221492] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.222977] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.224479] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.226032] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.227521] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.229098] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.230525] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.232249] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.233860] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.235346] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.237022] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.238521] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.240063] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.241760] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.243164] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.244811] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.246376] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.247882] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.249467] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.250957] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.252494] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.253993] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.255485] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.257087] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.258717] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.260220] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.261749] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.263316] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.264827] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.266384] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.267813] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.269475] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.270991] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.272609] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.274152] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.275755] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.277236] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.278791] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.280231] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.281923] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.283424] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.284958] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.286451] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.288007] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.289496] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.291061] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.292499] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.294143] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.295745] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.297233] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.298832] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.300336] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.301880] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.303373] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.304880] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.306463] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.307986] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.309593] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.313797] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.315296] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.316962] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.318751] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.320211] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.321843] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.323349] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.324858] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.326430] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.327937] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.329465] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.330961] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.332466] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.334094] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.335710] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.337195] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.338907] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.340414] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.341983] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.343473] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.345068] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.346771] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.348287] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.349801] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.351378] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.352873] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.354399] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.355908] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.357387] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.358974] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.360494] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.362040] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.363536] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.365145] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.366757] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.368236] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.369772] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.371345] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.372862] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.374418] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.375944] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.377496] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.378982] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.380597] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.382077] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.383712] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.385291] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.386858] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.388365] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.389893] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.391396] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.392931] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.394367] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.396035] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.397679] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.399160] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.400760] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.402251] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.403857] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.405359] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.406837] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.408440] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.409973] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.411543] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.415854] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.417365] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.419011] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.420841] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.422278] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.423919] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.425428] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.426927] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.428444] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.430002] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.431500] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.433078] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.434513] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.436226] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.437849] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.439340] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.441025] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.442525] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.444106] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.445812] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.447228] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.448883] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.450398] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.451965] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.453474] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.455072] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.456692] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.458176] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.459717] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.461308] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.462850] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.464421] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.465933] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.467494] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.469005] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.470636] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.472134] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.473772] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.475348] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.476866] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.478437] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.479964] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.481521] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.483032] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.484588] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.486172] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.487807] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.489330] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.490943] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.492510] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.494061] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.495683] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.497132] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.498751] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.500350] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.501863] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.503459] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.504981] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.506544] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.508153] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.509708] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1558.511174] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 10:23:08 executing program 3: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_STOP_P2P_DEVICE(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x20, r0, 0x300, 0x70bd2d, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x8}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x40) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000001500)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) write$P9_RREADLINK(r1, &(0x7f0000000100)=ANY=[], 0x10) ftruncate(r1, 0x7000000) openat(0xffffffffffffffff, &(0x7f00000003c0)='./file1\x00', 0x513000, 0x80) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r3, 0x2ff, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_START_SCHED_SCAN(r1, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)={0x5c, r3, 0x1, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x1, 0x38}}}}, [@NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0xfffffffb}, @NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0x4, 0x1}}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_BSSID={0xa}, @NL80211_ATTR_MAC={0xa}]}, 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0) 10:23:08 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x27, 0x0) 10:23:08 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 20) 10:23:08 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 31) 10:23:08 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)={0x0, 0xf2000000}) 10:23:08 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 26) 10:23:08 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 32) 10:23:08 executing program 4: r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x0) stat(&(0x7f0000000080)='mnt/encrypted_dir\x00', &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {r1, r2}}, 'mnt/encrypted_dir\x00'}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f0000000200)={{0x1, 0x1, 0x18, r4, {0x8001}}, 'mnt/encrypted_dir\x00'}) rename(&(0x7f0000000180)='mnt/encrypted_dir\x00', &(0x7f0000000640)='./file0\x00') r5 = socket$inet_udp(0x2, 0x2, 0x0) sendfile(r0, r5, &(0x7f00000000c0)=0x523186b2, 0x6) [ 1575.687245] FAULT_INJECTION: forcing a failure. [ 1575.687245] name failslab, interval 1, probability 0, space 0, times 0 [ 1575.689745] CPU: 1 PID: 10549 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1575.690308] FAULT_INJECTION: forcing a failure. [ 1575.690308] name failslab, interval 1, probability 0, space 0, times 0 [ 1575.691200] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1575.691209] Call Trace: [ 1575.691237] dump_stack+0x107/0x167 [ 1575.691261] should_fail.cold+0x5/0xa [ 1575.691291] ? create_object.isra.0+0x3a/0xa30 [ 1575.698380] should_failslab+0x5/0x20 [ 1575.699190] kmem_cache_alloc+0x5b/0x310 [ 1575.700051] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1575.701237] create_object.isra.0+0x3a/0xa30 [ 1575.702171] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1575.703250] kmem_cache_alloc+0x159/0x310 [ 1575.704150] security_file_alloc+0x34/0x170 [ 1575.705067] __alloc_file+0xb7/0x320 [ 1575.705853] alloc_empty_file+0x6d/0x170 [ 1575.706728] alloc_file+0x5e/0x5a0 [ 1575.707487] alloc_file_pseudo+0x16a/0x250 [ 1575.708414] ? alloc_file+0x5a0/0x5a0 [ 1575.709239] anon_inode_getfile+0xc8/0x1f0 [ 1575.710139] io_uring_setup+0x138b/0x2980 [ 1575.711022] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1575.712113] ? wait_for_completion_io+0x270/0x270 [ 1575.713172] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1575.714300] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1575.715399] do_syscall_64+0x33/0x40 [ 1575.716198] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1575.717293] RIP: 0033:0x7fc343bc8b19 [ 1575.718078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1575.721990] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1575.723588] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1575.725101] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1575.726616] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1575.728123] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1575.729622] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1575.731157] CPU: 0 PID: 10552 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1575.732651] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1575.734412] Call Trace: [ 1575.734978] dump_stack+0x107/0x167 [ 1575.735748] should_fail.cold+0x5/0xa [ 1575.736561] ? create_object.isra.0+0x3a/0xa30 [ 1575.737525] should_failslab+0x5/0x20 [ 1575.738345] kmem_cache_alloc+0x5b/0x310 [ 1575.739208] create_object.isra.0+0x3a/0xa30 [ 1575.740153] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1575.741245] kmem_cache_alloc_trace+0x151/0x320 [ 1575.742243] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1575.743378] FAULT_INJECTION: forcing a failure. [ 1575.743378] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1575.743482] ? io_import_iovec+0x1120/0x1120 [ 1575.746785] ? lock_downgrade+0x6d0/0x6d0 [ 1575.747652] ? do_raw_spin_lock+0x121/0x260 [ 1575.748573] ? rwlock_bug.part.0+0x90/0x90 [ 1575.749473] __io_uring_add_tctx_node+0x2c6/0x520 [ 1575.750491] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1575.751592] ? alloc_fd+0x2e7/0x670 [ 1575.752381] io_uring_setup+0x1fbb/0x2980 [ 1575.753270] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1575.754347] ? wait_for_completion_io+0x270/0x270 [ 1575.755391] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1575.756510] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1575.757601] do_syscall_64+0x33/0x40 [ 1575.758389] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1575.759469] RIP: 0033:0x7fc39eed2b19 [ 1575.760257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1575.764139] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1575.765753] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1575.767246] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1575.768766] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1575.770284] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1575.771787] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1575.773338] CPU: 1 PID: 10540 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1575.774847] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1575.776592] Call Trace: [ 1575.777157] dump_stack+0x107/0x167 [ 1575.777922] should_fail.cold+0x5/0xa [ 1575.778732] _copy_to_user+0x2e/0x180 [ 1575.779549] io_uring_setup+0x11b5/0x2980 [ 1575.780443] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1575.781512] ? wait_for_completion_io+0x270/0x270 [ 1575.782568] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1575.783675] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1575.784781] do_syscall_64+0x33/0x40 [ 1575.785581] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1575.786667] RIP: 0033:0x7f4a0d16cb19 [ 1575.787450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1575.791329] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1575.792943] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1575.794439] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1575.795940] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1575.797459] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1575.798958] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1575.855506] FAULT_INJECTION: forcing a failure. [ 1575.855506] name failslab, interval 1, probability 0, space 0, times 0 [ 1575.858090] CPU: 0 PID: 10557 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1575.859539] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1575.861290] Call Trace: [ 1575.861860] dump_stack+0x107/0x167 [ 1575.862630] should_fail.cold+0x5/0xa [ 1575.863442] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 1575.864563] should_failslab+0x5/0x20 [ 1575.865375] kmem_cache_alloc_trace+0x55/0x320 [ 1575.866344] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1575.867414] ? io_import_iovec+0x1120/0x1120 [ 1575.868352] ? lock_downgrade+0x6d0/0x6d0 [ 1575.869216] ? do_raw_spin_lock+0x121/0x260 [ 1575.870125] ? rwlock_bug.part.0+0x90/0x90 [ 1575.871024] __io_uring_add_tctx_node+0x2c6/0x520 [ 1575.872041] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1575.873139] ? alloc_fd+0x2e7/0x670 [ 1575.873925] io_uring_setup+0x1fbb/0x2980 [ 1575.874806] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1575.875861] ? wait_for_completion_io+0x270/0x270 [ 1575.876910] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1575.878014] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1575.879098] do_syscall_64+0x33/0x40 [ 1575.879883] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1575.880970] RIP: 0033:0x7fcf2a53eb19 [ 1575.881741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1575.885605] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1575.887213] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1575.888708] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1575.890214] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1575.891696] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1575.893207] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:23:08 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)={0x0, 0xf200000000000000}) 10:23:08 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x28, 0x0) 10:23:08 executing program 4: ioctl$BLKPG(0xffffffffffffffff, 0x1269, &(0x7f0000000100)={0x8001, 0x8001, 0xe1, &(0x7f00000004c0)="c2e5e0948b47c902449972b8220aa790c5c08ddce9ad59c8a02564faf2eadb3a0ad999cde1c583c3ebc8807eddae98d1e4a7da56984867da306d5857c7ea1f9e3e6045ce36b80bc8bbf744f5580d50ea2b3291392f0b6e26d822ef83c3ea0dca41bbaa334589d77f6ee908ef200b43b667354858f882aa28145fc4a025d3991911d84c5cbe04f63031f469a1108ed392820fbeebfb561e0354ee3b65f4b6f70add18f6e36ce99c72c65829e32e837dab2eb27d6e6267890b06e5c7905480c1db481b6e7a3368c9d3ee3b9de64c6d075c277d58a142cde2f4adb531c3c6cfb61d45"}) syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x4, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x63, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000000280)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004d41e4db6da516739b510fd22b84b24710b375c0ea2ecfa25e5ef076b86462ff9e7772a93821ca41e587b10159a60cac08751654fa62fed582384e702fe409ece00dfad4d7220470d932f1393286002d00298afc2be145fd9f8363fa1a4fc60cca5097942a88a25374f4aed075298dd", 0x8c, 0x2100}], 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="646174615f6572723d61626f72742c62736467726f757073fc646174613d6f7264657265642c00"]) open_tree(0xffffffffffffffff, &(0x7f00000001c0)='.\x00', 0x800) openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x4000, 0x104) 10:23:08 executing program 3: keyctl$update(0x2, 0x0, &(0x7f0000000000)="a7", 0x1) keyctl$read(0xb, 0x0, &(0x7f00000000c0)=""/43, 0x2b) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000580)) getsockopt$IP6T_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x29, 0x44, &(0x7f0000000280)={'icmp6\x00'}, &(0x7f0000000380)=0x1e) timer_settime(0x0, 0x0, 0x0, 0x0) timer_gettime(0x0, &(0x7f00000002c0)) timer_delete(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x405e, 0x122, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x7, 0x3f}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) timer_gettime(0x0, &(0x7f0000000400)) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x4, 0x1) timer_delete(0x0) timer_gettime(0x0, &(0x7f0000000100)) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1}, &(0x7f0000000340)) r0 = fcntl$getown(0xffffffffffffffff, 0x9) timer_create(0x3, &(0x7f0000000040)={0x0, 0x41, 0x4, @tid=r0}, &(0x7f0000000140)=0x0) timer_gettime(r1, &(0x7f0000000240)) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000440)={@private2, @private0, @loopback, 0x3, 0x33, 0x1, 0x400, 0x1f00, 0x80010118}) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 10:23:08 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 33) 10:23:09 executing program 6: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1576.032238] FAULT_INJECTION: forcing a failure. [ 1576.032238] name failslab, interval 1, probability 0, space 0, times 0 [ 1576.034663] CPU: 1 PID: 10572 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1576.036125] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1576.037856] Call Trace: [ 1576.038416] dump_stack+0x107/0x167 [ 1576.039189] should_fail.cold+0x5/0xa [ 1576.040002] ? io_wq_create+0xeb/0xc00 [ 1576.040821] should_failslab+0x5/0x20 [ 1576.041627] __kmalloc+0x72/0x390 [ 1576.042376] io_wq_create+0xeb/0xc00 [ 1576.043184] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1576.044266] ? io_import_iovec+0x1120/0x1120 [ 1576.045213] ? io_apoll_task_func+0x2d0/0x2d0 [ 1576.046166] ? __io_req_find_next+0x300/0x300 [ 1576.047108] ? do_raw_spin_lock+0x121/0x260 [ 1576.048038] ? rwlock_bug.part.0+0x90/0x90 [ 1576.048950] __io_uring_add_tctx_node+0x2c6/0x520 [ 1576.049970] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1576.051079] ? alloc_fd+0x2e7/0x670 [ 1576.051865] io_uring_setup+0x1fbb/0x2980 [ 1576.052767] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1576.053834] ? wait_for_completion_io+0x270/0x270 [ 1576.054884] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1576.055993] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1576.057071] do_syscall_64+0x33/0x40 [ 1576.057866] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1576.058949] RIP: 0033:0x7fc39eed2b19 [ 1576.059736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1576.063612] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1576.065252] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1576.066760] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1576.068300] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1576.069798] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1576.071302] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:23:09 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x29, 0x0) 10:23:09 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 21) 10:23:09 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x9, 0xf0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r0, &(0x7f0000000040)='reno\x00', 0x5) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r1, &(0x7f0000000040)='reno\x00', 0x5) ioctl$FICLONE(r0, 0x40049409, r1) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f00000005c0)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}}) 10:23:09 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 34) 10:23:09 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 27) 10:23:09 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 32) [ 1576.209096] FAULT_INJECTION: forcing a failure. [ 1576.209096] name failslab, interval 1, probability 0, space 0, times 0 [ 1576.211612] CPU: 0 PID: 10581 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1576.213066] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1576.214812] Call Trace: [ 1576.215374] dump_stack+0x107/0x167 [ 1576.216168] should_fail.cold+0x5/0xa [ 1576.216970] ? __d_alloc+0x2a/0x990 [ 1576.217749] should_failslab+0x5/0x20 [ 1576.218547] kmem_cache_alloc+0x5b/0x310 [ 1576.219423] __d_alloc+0x2a/0x990 [ 1576.220164] ? find_held_lock+0x2c/0x110 [ 1576.221023] d_alloc_pseudo+0x19/0x70 [ 1576.221824] alloc_file_pseudo+0xce/0x250 [ 1576.222691] ? trace_hardirqs_on+0x5b/0x180 [ 1576.223599] ? alloc_file+0x5a0/0x5a0 [ 1576.224431] anon_inode_getfile+0xc8/0x1f0 [ 1576.225325] io_uring_setup+0x138b/0x2980 [ 1576.226225] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1576.227283] ? wait_for_completion_io+0x270/0x270 [ 1576.228331] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1576.229432] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1576.230514] do_syscall_64+0x33/0x40 [ 1576.231293] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1576.232384] RIP: 0033:0x7f4a0d16cb19 [ 1576.233171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1576.237060] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1576.238684] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1576.240191] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1576.241699] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1576.243207] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1576.244717] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:23:09 executing program 6: r0 = epoll_create1(0x0) epoll_wait(r0, &(0x7f00000000c0)=[{}, {}, {}], 0x3, 0xffff) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = gettid() timer_create(0x0, &(0x7f0000000080)={0x0, 0x1c, 0x4, @tid=r3}, &(0x7f0000000040)) syz_open_procfs(r3, &(0x7f0000000040)='status\x00') r4 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f00000001c0)) write$binfmt_elf64(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="7f454c4604037f81400000000000000002003e0004000000ac030000000000004000000000000000460200000000000036af00000600380002000900d18a060005000000030000008100000000000000b9440200000000000000000800000100000001800000000000000600000000000000360100000000000006000070060000005d252a7ba64dea0400000000000000000700000000000000090000000000000001000000000000008f000000000000003903238539492e5ddee1ea8db9bc9acf7a0516397681356300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000000000000002e1d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009866cbfd00000000000000000000000000000000000000000000000000001414823dd531d61700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f1f5d94668234b94c71ff667ca9d2462000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000024db4c58b7dcef291f7613af13d427ebbb904ddc28992079aa770347438f783e5a10dadb26b2334a8cb5046dc950ce93d349c8d159ad1e6e29734b6efeb2ec91f10e7de155302f12c2528e5ea11a31c1417c7f5033c42a68889c9b03f052c83c6918abf6da2d60b05556eead44b73e2a86d6bf04283ff5d3f826407b5d8bcc94881399aa5255a98a"], 0x3c8) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1576.269634] FAULT_INJECTION: forcing a failure. [ 1576.269634] name failslab, interval 1, probability 0, space 0, times 0 [ 1576.272072] CPU: 1 PID: 10584 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1576.273543] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1576.275289] Call Trace: [ 1576.275849] dump_stack+0x107/0x167 [ 1576.276635] should_fail.cold+0x5/0xa [ 1576.277448] ? create_object.isra.0+0x3a/0xa30 [ 1576.278411] should_failslab+0x5/0x20 [ 1576.279218] kmem_cache_alloc+0x5b/0x310 [ 1576.280095] create_object.isra.0+0x3a/0xa30 [ 1576.281033] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1576.282109] __kmalloc+0x16e/0x390 [ 1576.282871] io_wq_create+0xeb/0xc00 [ 1576.283674] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1576.284755] ? io_import_iovec+0x1120/0x1120 [ 1576.285688] ? io_apoll_task_func+0x2d0/0x2d0 [ 1576.286626] ? __io_req_find_next+0x300/0x300 [ 1576.286786] FAULT_INJECTION: forcing a failure. [ 1576.286786] name failslab, interval 1, probability 0, space 0, times 0 [ 1576.287577] ? do_raw_spin_lock+0x121/0x260 [ 1576.287598] ? rwlock_bug.part.0+0x90/0x90 [ 1576.287627] __io_uring_add_tctx_node+0x2c6/0x520 [ 1576.292747] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1576.293850] ? alloc_fd+0x2e7/0x670 [ 1576.294644] io_uring_setup+0x1fbb/0x2980 [ 1576.295537] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1576.296622] ? wait_for_completion_io+0x270/0x270 [ 1576.297663] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1576.298769] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1576.299865] do_syscall_64+0x33/0x40 [ 1576.300660] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1576.301739] RIP: 0033:0x7fc39eed2b19 [ 1576.302531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1576.306408] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1576.308013] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1576.309515] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1576.311014] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1576.312534] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1576.314035] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1576.315576] CPU: 0 PID: 10586 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1576.317068] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1576.318811] Call Trace: [ 1576.319379] dump_stack+0x107/0x167 [ 1576.320161] should_fail.cold+0x5/0xa [ 1576.320982] ? io_uring_alloc_task_context+0x99/0x6a0 [ 1576.322088] should_failslab+0x5/0x20 [ 1576.322897] kmem_cache_alloc_trace+0x55/0x320 [ 1576.323911] io_uring_alloc_task_context+0x99/0x6a0 [ 1576.324984] ? io_import_iovec+0x1120/0x1120 [ 1576.325918] ? lock_downgrade+0x6d0/0x6d0 [ 1576.326802] ? do_raw_spin_lock+0x121/0x260 [ 1576.327719] ? rwlock_bug.part.0+0x90/0x90 [ 1576.328632] __io_uring_add_tctx_node+0x2c6/0x520 [ 1576.329656] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1576.330775] ? alloc_fd+0x2e7/0x670 [ 1576.331567] io_uring_setup+0x1fbb/0x2980 [ 1576.332471] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1576.333544] ? wait_for_completion_io+0x270/0x270 [ 1576.334593] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1576.335699] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1576.336801] do_syscall_64+0x33/0x40 [ 1576.337588] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1576.338658] RIP: 0033:0x7fc343bc8b19 [ 1576.339448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1576.343304] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1576.344929] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1576.346431] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1576.347935] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1576.349487] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1576.351013] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:23:09 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2a, 0x0) [ 1576.414739] FAULT_INJECTION: forcing a failure. [ 1576.414739] name failslab, interval 1, probability 0, space 0, times 0 [ 1576.417325] CPU: 1 PID: 10594 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1576.418802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1576.420543] Call Trace: [ 1576.421104] dump_stack+0x107/0x167 [ 1576.421875] should_fail.cold+0x5/0xa [ 1576.422685] ? create_object.isra.0+0x3a/0xa30 [ 1576.423668] should_failslab+0x5/0x20 [ 1576.424487] kmem_cache_alloc+0x5b/0x310 [ 1576.425371] create_object.isra.0+0x3a/0xa30 [ 1576.426300] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1576.427370] kmem_cache_alloc_trace+0x151/0x320 [ 1576.428375] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1576.429448] ? io_import_iovec+0x1120/0x1120 [ 1576.430379] ? lock_downgrade+0x6d0/0x6d0 [ 1576.431256] ? do_raw_spin_lock+0x121/0x260 [ 1576.432173] ? rwlock_bug.part.0+0x90/0x90 [ 1576.433080] __io_uring_add_tctx_node+0x2c6/0x520 [ 1576.434099] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1576.435199] ? alloc_fd+0x2e7/0x670 [ 1576.435990] io_uring_setup+0x1fbb/0x2980 [ 1576.436880] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1576.437945] ? wait_for_completion_io+0x270/0x270 [ 1576.438987] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1576.440101] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1576.441208] do_syscall_64+0x33/0x40 [ 1576.441993] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1576.443078] RIP: 0033:0x7fcf2a53eb19 [ 1576.443875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1576.447751] RSP: 002b:00007fcf27a93108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1576.449385] RAX: ffffffffffffffda RBX: 00007fcf2a652020 RCX: 00007fcf2a53eb19 [ 1576.450901] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1576.452420] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1576.453945] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1576.455455] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:23:09 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 28) 10:23:09 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 22) [ 1576.506986] FAULT_INJECTION: forcing a failure. [ 1576.506986] name failslab, interval 1, probability 0, space 0, times 0 [ 1576.509435] CPU: 0 PID: 10599 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1576.510869] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1576.512589] Call Trace: [ 1576.513140] dump_stack+0x107/0x167 [ 1576.513902] should_fail.cold+0x5/0xa [ 1576.514692] ? create_object.isra.0+0x3a/0xa30 [ 1576.515642] should_failslab+0x5/0x20 [ 1576.516434] kmem_cache_alloc+0x5b/0x310 [ 1576.517285] create_object.isra.0+0x3a/0xa30 [ 1576.518195] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1576.519255] kmem_cache_alloc+0x159/0x310 [ 1576.520130] __d_alloc+0x2a/0x990 [ 1576.520855] ? find_held_lock+0x2c/0x110 [ 1576.521702] d_alloc_pseudo+0x19/0x70 [ 1576.522500] alloc_file_pseudo+0xce/0x250 [ 1576.523350] ? trace_hardirqs_on+0x5b/0x180 [ 1576.524243] ? alloc_file+0x5a0/0x5a0 [ 1576.525050] anon_inode_getfile+0xc8/0x1f0 [ 1576.525941] io_uring_setup+0x138b/0x2980 [ 1576.526805] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1576.527865] ? wait_for_completion_io+0x270/0x270 [ 1576.528897] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1576.529980] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1576.531062] do_syscall_64+0x33/0x40 [ 1576.531832] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1576.532911] RIP: 0033:0x7f4a0d16cb19 10:23:09 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 35) [ 1576.533684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1576.537745] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1576.539319] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1576.540792] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1576.542242] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1576.543692] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1576.545158] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1576.566194] FAULT_INJECTION: forcing a failure. [ 1576.566194] name failslab, interval 1, probability 0, space 0, times 0 [ 1576.568735] CPU: 1 PID: 10603 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1576.570229] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1576.571991] Call Trace: [ 1576.572554] dump_stack+0x107/0x167 [ 1576.573331] should_fail.cold+0x5/0xa [ 1576.574143] ? create_object.isra.0+0x3a/0xa30 [ 1576.575110] should_failslab+0x5/0x20 [ 1576.575910] kmem_cache_alloc+0x5b/0x310 [ 1576.576781] create_object.isra.0+0x3a/0xa30 [ 1576.577703] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1576.578783] kmem_cache_alloc_trace+0x151/0x320 [ 1576.579784] io_uring_alloc_task_context+0x99/0x6a0 [ 1576.580862] ? io_import_iovec+0x1120/0x1120 [ 1576.581786] ? lock_downgrade+0x6d0/0x6d0 [ 1576.582651] ? do_raw_spin_lock+0x121/0x260 [ 1576.583562] ? rwlock_bug.part.0+0x90/0x90 [ 1576.584468] __io_uring_add_tctx_node+0x2c6/0x520 [ 1576.585486] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1576.586584] ? alloc_fd+0x2e7/0x670 [ 1576.587369] io_uring_setup+0x1fbb/0x2980 [ 1576.588262] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1576.589333] ? wait_for_completion_io+0x270/0x270 [ 1576.590376] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1576.591480] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1576.592577] do_syscall_64+0x33/0x40 [ 1576.593366] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1576.594463] RIP: 0033:0x7fc343bc8b19 [ 1576.595249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1576.599159] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1576.600777] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1576.602278] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1576.603781] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1576.605284] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1576.606789] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:23:09 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 23) [ 1576.681554] FAULT_INJECTION: forcing a failure. [ 1576.681554] name failslab, interval 1, probability 0, space 0, times 0 [ 1576.684218] CPU: 1 PID: 10607 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1576.685678] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1576.687412] Call Trace: [ 1576.687984] dump_stack+0x107/0x167 [ 1576.688759] should_fail.cold+0x5/0xa [ 1576.689560] ? io_wq_create+0x6ef/0xc00 [ 1576.690399] should_failslab+0x5/0x20 [ 1576.691212] kmem_cache_alloc_node_trace+0x59/0x340 [ 1576.692284] io_wq_create+0x6ef/0xc00 [ 1576.693105] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1576.694182] ? io_import_iovec+0x1120/0x1120 [ 1576.695113] ? io_apoll_task_func+0x2d0/0x2d0 [ 1576.696059] ? __io_req_find_next+0x300/0x300 [ 1576.697010] ? do_raw_spin_lock+0x121/0x260 [ 1576.697916] ? rwlock_bug.part.0+0x90/0x90 [ 1576.698816] __io_uring_add_tctx_node+0x2c6/0x520 [ 1576.699829] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1576.700933] ? alloc_fd+0x2e7/0x670 [ 1576.701719] io_uring_setup+0x1fbb/0x2980 [ 1576.702602] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1576.703659] ? wait_for_completion_io+0x270/0x270 [ 1576.704715] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1576.705810] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1576.706902] do_syscall_64+0x33/0x40 [ 1576.707680] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1576.708765] RIP: 0033:0x7fc39eed2b19 [ 1576.709565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1576.713419] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1576.715014] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1576.716530] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1576.718024] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1576.719546] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1576.721059] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1576.753840] FAULT_INJECTION: forcing a failure. [ 1576.753840] name failslab, interval 1, probability 0, space 0, times 0 [ 1576.756026] CPU: 0 PID: 10609 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1576.757307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1576.758848] Call Trace: [ 1576.759342] dump_stack+0x107/0x167 [ 1576.760031] should_fail.cold+0x5/0xa [ 1576.760744] ? __alloc_file+0x21/0x320 [ 1576.761473] should_failslab+0x5/0x20 [ 1576.762175] kmem_cache_alloc+0x5b/0x310 [ 1576.762932] __alloc_file+0x21/0x320 [ 1576.763621] alloc_empty_file+0x6d/0x170 [ 1576.764379] alloc_file+0x5e/0x5a0 [ 1576.765053] alloc_file_pseudo+0x16a/0x250 [ 1576.765830] ? alloc_file+0x5a0/0x5a0 [ 1576.766543] anon_inode_getfile+0xc8/0x1f0 [ 1576.767322] io_uring_setup+0x138b/0x2980 [ 1576.768095] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1576.769041] ? wait_for_completion_io+0x270/0x270 [ 1576.769952] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1576.770910] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1576.771853] do_syscall_64+0x33/0x40 [ 1576.772559] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1576.773507] RIP: 0033:0x7f4a0d16cb19 [ 1576.774182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1576.777577] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1576.778991] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1576.780313] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1576.781621] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1576.782922] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1576.784235] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:23:29 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000040), 0x4) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:23:29 executing program 3: ioctl$sock_ipv6_tunnel_SIOCDEL6RD(0xffffffffffffffff, 0x89fa, &(0x7f0000000580)={'syztnl2\x00', &(0x7f0000000500)={'sit0\x00', 0x0, 0x4, 0x7, 0x1, 0xb60, 0x20, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private2, 0x0, 0x700, 0xc20, 0x2}}) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000700)=[{{&(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x10, &(0x7f00000001c0)=[{&(0x7f00000000c0)="d19770249be890c9794949815a7f6738181a66", 0x13}], 0x1, &(0x7f0000000200)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x7}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x8}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @broadcast, @dev={0xac, 0x14, 0x14, 0xe}}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x80}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @loopback, @loopback}}}, @ip_retopts={{0x60, 0x0, 0x7, {[@lsrr={0x83, 0xb, 0x97, [@dev={0xac, 0x14, 0x14, 0x1a}, @private=0xa010100]}, @lsrr={0x83, 0xf, 0x82, [@rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x24}, @broadcast]}, @timestamp={0x44, 0x28, 0x5b, 0x0, 0xc, [0x8, 0x7, 0x5, 0x8000, 0xb287, 0x1f, 0x1, 0x5, 0x5]}, @end, @timestamp_prespec={0x44, 0xc, 0xa, 0x3, 0x7, [{@remote, 0x40}]}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private=0xa010101, @loopback}}}], 0x108}}, {{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000340)="816acef63e05258b5575c1f39a820cb384fc01623087", 0x16}, {&(0x7f0000000380)="c470ddb6aa63b0c410d5b00a1b1716abe149d644ec9718c934a3294260337ffc0a2ece9b976262c99af6ed947e", 0x2d}], 0x2, 0xfffffffffffffffe}}, {{&(0x7f0000000400)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000440)="2125cfc2d36d42dabec925eec0f2d57a12787cdeb11a4425cecd5b987a19639e7409055f58e6287872068f91f5708522d06eea45f5e3cbbd4c255f331b0794ccfecedb913e3975537dea8a3af97fc50c527efefe3f946344b8db6e40b017756704534ec09cec51dcce6845ea", 0x6c}], 0x1, &(0x7f00000005c0)=[@ip_ttl={{0x14, 0x0, 0x2, 0x8000}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x7}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x1}}, @ip_retopts={{0x50, 0x0, 0x7, {[@ra={0x94, 0x4, 0x1}, @timestamp={0x44, 0x24, 0xd3, 0x0, 0x5, [0x1, 0x100, 0x0, 0x7fff, 0x2, 0x6, 0x10001, 0x200]}, @end, @cipso={0x86, 0x15, 0x3, [{0x2, 0xf, "997bc057d79d20a889621ac372"}]}]}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x7}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @rand_addr=0x64010102, @broadcast}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x2b}, @loopback}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r0, @multicast1, @remote}}}], 0x110}}], 0x3, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffbfffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, 0x0, 0x10001, 0x0) fstat(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r4, 0x8000000) setsockopt$inet_tcp_buf(r4, 0x6, 0x1a, &(0x7f0000000140)="dec2caa67a11fcf607d4a4f845f3adb7cfd27669cd842883ba9d7e45c2220460142ae970a440c1f13e5eb21d2e2c5a6a0135a95d22a5db71995075e0e0c6e5d0f22c248f99002f709479a34e3872e4d406f0611c57438a2c48", 0x59) sendfile(r1, r3, 0x0, 0x20d311) 10:23:29 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 36) 10:23:29 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 33) 10:23:29 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2b, 0x0) 10:23:29 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 29) 10:23:29 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) getsockopt$IPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000080)={'nat\x00', 0x0, [0x2, 0x7, 0xffff8000, 0x2, 0x61]}, &(0x7f0000000100)=0x54) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r4 = fork() stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)) ptrace(0x10, r4) dup(0xffffffffffffffff) setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000000040)=0x3f, 0x4) bind$packet(r1, &(0x7f0000000240)={0x11, 0x8, r3, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) sendfile(r1, r0, 0x0, 0x500000001) 10:23:29 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 24) [ 1596.899873] FAULT_INJECTION: forcing a failure. [ 1596.899873] name failslab, interval 1, probability 0, space 0, times 0 [ 1596.902297] CPU: 1 PID: 10619 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1596.903745] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1596.905492] Call Trace: [ 1596.906050] dump_stack+0x107/0x167 [ 1596.906886] should_fail.cold+0x5/0xa [ 1596.907693] ? create_object.isra.0+0x3a/0xa30 [ 1596.908661] should_failslab+0x5/0x20 [ 1596.909454] kmem_cache_alloc+0x5b/0x310 [ 1596.910317] create_object.isra.0+0x3a/0xa30 [ 1596.911233] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1596.912308] kmem_cache_alloc_trace+0x151/0x320 [ 1596.913289] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1596.914350] ? io_import_iovec+0x1120/0x1120 [ 1596.915284] ? lock_downgrade+0x6d0/0x6d0 [ 1596.916154] ? do_raw_spin_lock+0x121/0x260 [ 1596.917070] ? rwlock_bug.part.0+0x90/0x90 [ 1596.917965] __io_uring_add_tctx_node+0x2c6/0x520 [ 1596.918977] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1596.920063] ? alloc_fd+0x2e7/0x670 [ 1596.920864] io_uring_setup+0x1fbb/0x2980 [ 1596.921746] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1596.922801] ? wait_for_completion_io+0x270/0x270 [ 1596.923832] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1596.924936] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1596.926026] do_syscall_64+0x33/0x40 [ 1596.926802] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1596.927872] RIP: 0033:0x7fcf2a53eb19 [ 1596.928655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1596.932511] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1596.934108] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1596.935689] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1596.937189] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1596.938702] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1596.940215] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1596.970294] FAULT_INJECTION: forcing a failure. [ 1596.970294] name failslab, interval 1, probability 0, space 0, times 0 [ 1596.970946] FAULT_INJECTION: forcing a failure. [ 1596.970946] name failslab, interval 1, probability 0, space 0, times 0 [ 1596.972764] CPU: 1 PID: 10629 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1596.972780] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1596.972801] Call Trace: [ 1596.979218] dump_stack+0x107/0x167 [ 1596.980017] should_fail.cold+0x5/0xa [ 1596.980855] ? create_object.isra.0+0x3a/0xa30 [ 1596.981851] should_failslab+0x5/0x20 [ 1596.982679] kmem_cache_alloc+0x5b/0x310 [ 1596.983638] create_object.isra.0+0x3a/0xa30 [ 1596.984610] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1596.985726] kmem_cache_alloc+0x159/0x310 [ 1596.986628] __alloc_file+0x21/0x320 [ 1596.987440] alloc_empty_file+0x6d/0x170 [ 1596.988333] alloc_file+0x5e/0x5a0 [ 1596.989117] alloc_file_pseudo+0x16a/0x250 [ 1596.990038] ? alloc_file+0x5a0/0x5a0 [ 1596.990887] anon_inode_getfile+0xc8/0x1f0 [ 1596.991807] io_uring_setup+0x138b/0x2980 [ 1596.992751] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1596.993883] ? wait_for_completion_io+0x270/0x270 [ 1596.994964] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1596.996115] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1596.997236] do_syscall_64+0x33/0x40 [ 1596.998049] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1596.999161] RIP: 0033:0x7f4a0d16cb19 [ 1596.999966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1597.003956] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1597.005614] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1597.007157] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1597.008708] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1597.010249] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1597.011794] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1597.013347] CPU: 0 PID: 10631 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1597.014935] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1597.016794] Call Trace: [ 1597.017405] dump_stack+0x107/0x167 [ 1597.018229] should_fail.cold+0x5/0xa [ 1597.019099] ? create_object.isra.0+0x3a/0xa30 [ 1597.020194] should_failslab+0x5/0x20 [ 1597.021077] kmem_cache_alloc+0x5b/0x310 [ 1597.021997] create_object.isra.0+0x3a/0xa30 [ 1597.023015] kmemleak_alloc_percpu+0xa0/0x100 [ 1597.024067] pcpu_alloc+0x4e2/0x1240 [ 1597.024954] __percpu_counter_init+0x10d/0x2d0 [ 1597.025994] io_uring_alloc_task_context+0xcc/0x6a0 [ 1597.027109] ? io_import_iovec+0x1120/0x1120 [ 1597.028119] ? lock_downgrade+0x6d0/0x6d0 [ 1597.029057] ? do_raw_spin_lock+0x121/0x260 [ 1597.030025] ? rwlock_bug.part.0+0x90/0x90 [ 1597.030979] __io_uring_add_tctx_node+0x2c6/0x520 [ 1597.032073] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1597.033255] ? alloc_fd+0x2e7/0x670 [ 1597.034122] io_uring_setup+0x1fbb/0x2980 [ 1597.035040] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1597.036196] ? wait_for_completion_io+0x270/0x270 [ 1597.037304] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1597.038503] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1597.039690] do_syscall_64+0x33/0x40 [ 1597.040564] entry_SYSCALL_64_after_hwframe+0x67/0xd1 10:23:30 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) r4 = open(&(0x7f0000000040)='./file0\x00', 0x100, 0x0) r5 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r5, &(0x7f0000000040)='reno\x00', 0x5) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000080)={0x8}) [ 1597.041727] RIP: 0033:0x7fc343bc8b19 [ 1597.042794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1597.046940] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1597.048647] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1597.050274] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1597.051899] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1597.053537] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1597.055144] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1597.071756] FAULT_INJECTION: forcing a failure. [ 1597.071756] name failslab, interval 1, probability 0, space 0, times 0 [ 1597.074212] CPU: 1 PID: 10635 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1597.075675] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1597.077445] Call Trace: [ 1597.078053] dump_stack+0x107/0x167 [ 1597.078823] should_fail.cold+0x5/0xa [ 1597.079635] ? create_object.isra.0+0x3a/0xa30 [ 1597.080610] should_failslab+0x5/0x20 [ 1597.081415] kmem_cache_alloc+0x5b/0x310 [ 1597.082283] ? io_wq_create+0x114/0xc00 [ 1597.083130] create_object.isra.0+0x3a/0xa30 [ 1597.084052] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1597.085134] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1597.086212] io_wq_create+0x6ef/0xc00 [ 1597.087021] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1597.088106] ? io_import_iovec+0x1120/0x1120 [ 1597.089043] ? io_apoll_task_func+0x2d0/0x2d0 [ 1597.089991] ? __io_req_find_next+0x300/0x300 [ 1597.090941] ? do_raw_spin_lock+0x121/0x260 [ 1597.091839] ? rwlock_bug.part.0+0x90/0x90 [ 1597.092746] __io_uring_add_tctx_node+0x2c6/0x520 [ 1597.093757] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1597.094857] ? alloc_fd+0x2e7/0x670 [ 1597.095635] io_uring_setup+0x1fbb/0x2980 [ 1597.096545] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1597.097675] ? wait_for_completion_io+0x270/0x270 [ 1597.098719] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1597.099820] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1597.100916] do_syscall_64+0x33/0x40 [ 1597.101704] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1597.102784] RIP: 0033:0x7fc39eed2b19 [ 1597.103559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1597.107414] RSP: 002b:00007fc39c406108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1597.109025] RAX: ffffffffffffffda RBX: 00007fc39efe60e0 RCX: 00007fc39eed2b19 [ 1597.110513] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1597.112003] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1597.113512] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1597.115024] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:23:30 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 34) 10:23:30 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1597.287202] FAULT_INJECTION: forcing a failure. [ 1597.287202] name failslab, interval 1, probability 0, space 0, times 0 [ 1597.289673] CPU: 1 PID: 10648 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1597.291134] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1597.292889] Call Trace: [ 1597.293450] dump_stack+0x107/0x167 [ 1597.294223] should_fail.cold+0x5/0xa [ 1597.295027] ? create_object.isra.0+0x3a/0xa30 [ 1597.295995] should_failslab+0x5/0x20 [ 1597.296819] kmem_cache_alloc+0x5b/0x310 [ 1597.297682] create_object.isra.0+0x3a/0xa30 [ 1597.298607] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1597.299681] __kmalloc+0x16e/0x390 [ 1597.300456] io_wq_create+0xeb/0xc00 [ 1597.301256] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1597.302320] ? io_import_iovec+0x1120/0x1120 [ 1597.303240] ? io_apoll_task_func+0x2d0/0x2d0 [ 1597.304192] ? __io_req_find_next+0x300/0x300 [ 1597.305148] __io_uring_add_tctx_node+0x2c6/0x520 [ 1597.306157] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1597.307267] ? alloc_fd+0x2e7/0x670 [ 1597.308039] io_uring_setup+0x1fbb/0x2980 [ 1597.308938] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1597.309997] ? wait_for_completion_io+0x270/0x270 [ 1597.311025] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1597.312137] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1597.313232] do_syscall_64+0x33/0x40 [ 1597.314022] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1597.315094] RIP: 0033:0x7fcf2a53eb19 [ 1597.315873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1597.319736] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1597.321349] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1597.322838] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1597.324340] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1597.325837] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1597.327334] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:23:47 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100002, 0x4, &(0x7f0000000200)=[{&(0x7f0000000140)="200080000002000019000000800100000f000000d96900000100000005000000400004000040000020000000d9f4655fd9f465fcb9f020ff53ef010001000000d9f4655f000000000000000001000000100000000b0000000004000008000000f2c201001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000085f42d27379e44ba9a8dcb77402e9f71010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="02000000030000000400000018000f000300040000000000000000000f00c2b4", 0x20, 0x800}, {&(0x7f0000011600)="ed41000000080000d9f4655fd9f4655fd9f4655f000000000000040040", 0x1d, 0x2400}], 0x2, &(0x7f0000000600)=ANY=[]) 10:23:47 executing program 3: perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x4347, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd130, 0x0, @perf_config_ext, 0x924}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) timer_create(0x3, 0x0, &(0x7f0000000040)=0x0) timer_settime(0x0, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) timer_delete(0x0) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r3 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r3, &(0x7f0000000040)='reno\x00', 0x5) ioctl$FIGETBSZ(r3, 0x2, &(0x7f0000000000)) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) timer_delete(r2) syz_io_uring_setup(0x62de, &(0x7f0000003480)={0x0, 0x0, 0x10, 0x0, 0x23}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000080)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000780)=@IORING_OP_SEND={0x1a, 0x3, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000280)="e6d47ed4e2077d0a74197bf6da2a77911ad8be8083be7345f6128e6ed5d5c4afc79c18f33d740386bc42c5b2bf704ce2ec231942348c1bf08f5d849d6f55b0a58b8de2f0accdb8d88f47ad07037fcb6946d41b02a1fbb7d873aaa03cd628a9f002a744bd47feb8864630fc8f86eceb4f18bb0ccb6fee3121d1649dbe37a469001a153ba7f59a72fefab6db50a7a57efdac30c68459f29ede22a8fb0d9fcdf5479465ab5d14b9ebe7bfcc68256c26cf50f09485da7338f864621857107717", 0xbe, 0x91}, 0x7) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1) 10:23:47 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 35) 10:23:47 executing program 6: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:23:47 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2c, 0x0) 10:23:47 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 25) 10:23:47 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 30) 10:23:47 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 37) [ 1614.430248] FAULT_INJECTION: forcing a failure. [ 1614.430248] name failslab, interval 1, probability 0, space 0, times 0 [ 1614.432900] CPU: 0 PID: 10666 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1614.434450] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1614.436297] Call Trace: [ 1614.436947] dump_stack+0x107/0x167 [ 1614.437852] should_fail.cold+0x5/0xa [ 1614.438799] ? create_object.isra.0+0x3a/0xa30 [ 1614.438966] FAULT_INJECTION: forcing a failure. [ 1614.438966] name failslab, interval 1, probability 0, space 0, times 0 [ 1614.439928] should_failslab+0x5/0x20 [ 1614.439960] kmem_cache_alloc+0x5b/0x310 [ 1614.444328] create_object.isra.0+0x3a/0xa30 [ 1614.445424] kmemleak_alloc_percpu+0xa0/0x100 [ 1614.446530] pcpu_alloc+0x4e2/0x1240 [ 1614.447484] __percpu_counter_init+0x10d/0x2d0 [ 1614.448624] io_uring_alloc_task_context+0xcc/0x6a0 [ 1614.449853] ? io_import_iovec+0x1120/0x1120 [ 1614.450953] ? lock_downgrade+0x6d0/0x6d0 [ 1614.451968] ? do_raw_spin_lock+0x121/0x260 [ 1614.453043] ? rwlock_bug.part.0+0x90/0x90 [ 1614.454090] __io_uring_add_tctx_node+0x2c6/0x520 [ 1614.455290] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1614.456602] ? alloc_fd+0x2e7/0x670 [ 1614.457515] io_uring_setup+0x1fbb/0x2980 [ 1614.458547] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1614.459785] ? wait_for_completion_io+0x270/0x270 [ 1614.461019] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1614.462321] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1614.463609] do_syscall_64+0x33/0x40 [ 1614.464551] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1614.465916] RIP: 0033:0x7fc343bc8b19 [ 1614.466931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1614.471466] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1614.473347] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1614.475086] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1614.476863] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1614.478615] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1614.480387] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1614.482181] CPU: 1 PID: 10663 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1614.483710] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1614.485512] Call Trace: [ 1614.486095] dump_stack+0x107/0x167 [ 1614.486889] should_fail.cold+0x5/0xa [ 1614.487719] ? create_object.isra.0+0x3a/0xa30 [ 1614.488717] should_failslab+0x5/0x20 [ 1614.489541] kmem_cache_alloc+0x5b/0x310 [ 1614.490434] create_object.isra.0+0x3a/0xa30 [ 1614.491384] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1614.492501] kmem_cache_alloc+0x159/0x310 [ 1614.493404] __alloc_file+0x21/0x320 [ 1614.494213] alloc_empty_file+0x6d/0x170 [ 1614.494885] FAULT_INJECTION: forcing a failure. [ 1614.494885] name failslab, interval 1, probability 0, space 0, times 0 [ 1614.495099] alloc_file+0x5e/0x5a0 [ 1614.498756] alloc_file_pseudo+0x16a/0x250 [ 1614.499670] ? alloc_file+0x5a0/0x5a0 [ 1614.500523] anon_inode_getfile+0xc8/0x1f0 [ 1614.501445] io_uring_setup+0x138b/0x2980 [ 1614.502353] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1614.503447] ? wait_for_completion_io+0x270/0x270 [ 1614.504526] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1614.505660] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1614.506777] do_syscall_64+0x33/0x40 [ 1614.507584] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1614.508705] RIP: 0033:0x7f4a0d16cb19 [ 1614.509515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1614.513490] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1614.515136] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1614.516692] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1614.518232] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1614.519769] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1614.521317] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1614.522889] CPU: 0 PID: 10665 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1614.524139] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1614.525614] Call Trace: [ 1614.526091] dump_stack+0x107/0x167 [ 1614.526741] should_fail.cold+0x5/0xa [ 1614.527421] ? create_object.isra.0+0x3a/0xa30 [ 1614.528246] should_failslab+0x5/0x20 [ 1614.528928] kmem_cache_alloc+0x5b/0x310 [ 1614.529649] ? io_wq_create+0x114/0xc00 [ 1614.530362] create_object.isra.0+0x3a/0xa30 [ 1614.531138] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1614.532039] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1614.532957] io_wq_create+0x6ef/0xc00 [ 1614.533641] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1614.534537] ? io_import_iovec+0x1120/0x1120 [ 1614.535318] ? io_apoll_task_func+0x2d0/0x2d0 [ 1614.536120] ? __io_req_find_next+0x300/0x300 [ 1614.536926] ? do_raw_spin_lock+0x121/0x260 [ 1614.537695] ? rwlock_bug.part.0+0x90/0x90 [ 1614.538450] __io_uring_add_tctx_node+0x2c6/0x520 [ 1614.539305] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1614.540246] ? alloc_fd+0x2e7/0x670 [ 1614.540904] io_uring_setup+0x1fbb/0x2980 10:23:47 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = open(&(0x7f0000000040)='./file0\x00', 0x4000, 0x21) ioctl$AUTOFS_DEV_IOCTL_VERSION(r3, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) r4 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1614.541652] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1614.542764] ? wait_for_completion_io+0x270/0x270 [ 1614.543569] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1614.544447] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1614.545297] do_syscall_64+0x33/0x40 [ 1614.545915] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1614.546752] RIP: 0033:0x7fc39eed2b19 [ 1614.547354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1614.550344] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1614.551684] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1614.552892] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1614.554100] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1614.555296] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1614.556532] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:23:47 executing program 4: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:23:47 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2d, 0x0) [ 1614.665689] FAULT_INJECTION: forcing a failure. [ 1614.665689] name failslab, interval 1, probability 0, space 0, times 0 [ 1614.668120] CPU: 1 PID: 10664 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1614.669588] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1614.671323] Call Trace: [ 1614.671884] dump_stack+0x107/0x167 [ 1614.672659] should_fail.cold+0x5/0xa [ 1614.673462] ? io_wq_create+0x6ef/0xc00 [ 1614.674291] should_failslab+0x5/0x20 [ 1614.675093] kmem_cache_alloc_node_trace+0x59/0x340 [ 1614.676143] io_wq_create+0x6ef/0xc00 [ 1614.676983] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1614.678055] ? io_import_iovec+0x1120/0x1120 [ 1614.678983] ? io_apoll_task_func+0x2d0/0x2d0 [ 1614.679926] ? __io_req_find_next+0x300/0x300 [ 1614.680867] ? do_raw_spin_lock+0x121/0x260 [ 1614.681778] ? rwlock_bug.part.0+0x90/0x90 [ 1614.682673] __io_uring_add_tctx_node+0x2c6/0x520 [ 1614.683687] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1614.684793] ? alloc_fd+0x2e7/0x670 [ 1614.685568] io_uring_setup+0x1fbb/0x2980 [ 1614.686454] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1614.687512] ? wait_for_completion_io+0x270/0x270 [ 1614.688562] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1614.689666] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1614.690752] do_syscall_64+0x33/0x40 [ 1614.691544] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1614.692627] RIP: 0033:0x7fcf2a53eb19 [ 1614.693409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1614.697294] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1614.698905] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1614.700406] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1614.701911] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1614.703418] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1614.704937] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:24:05 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 31) 10:24:05 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 36) 10:24:05 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2e, 0x0) 10:24:05 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 38) 10:24:05 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x4010, r3, 0x8000000) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, &(0x7f0000000040)={0x20000000}) r5 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f00000001c0)) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = accept4$packet(r3, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000380)=0x14, 0x80000) epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r7, &(0x7f00000003c0)={0x20000000}) r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r8, 0x8000000) r9 = socket$nl_netfilter(0x10, 0x3, 0xc) epoll_ctl$EPOLL_CTL_DEL(r8, 0x2, r9) [ 1632.587218] FAULT_INJECTION: forcing a failure. [ 1632.587218] name failslab, interval 1, probability 0, space 0, times 0 [ 1632.589655] CPU: 1 PID: 10692 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1632.591112] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1632.592852] Call Trace: [ 1632.593410] dump_stack+0x107/0x167 [ 1632.594179] should_fail.cold+0x5/0xa [ 1632.594990] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 1632.596090] should_failslab+0x5/0x20 [ 1632.596911] kmem_cache_alloc_trace+0x55/0x320 [ 1632.597872] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1632.598938] ? io_import_iovec+0x1120/0x1120 [ 1632.599870] ? lock_downgrade+0x6d0/0x6d0 [ 1632.600746] ? do_raw_spin_lock+0x121/0x260 [ 1632.601647] ? rwlock_bug.part.0+0x90/0x90 [ 1632.602541] __io_uring_add_tctx_node+0x2c6/0x520 [ 1632.603555] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1632.604906] ? alloc_fd+0x2e7/0x670 [ 1632.605688] io_uring_setup+0x1fbb/0x2980 [ 1632.606568] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1632.607634] ? wait_for_completion_io+0x270/0x270 ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, &(0x7f00000002c0)={0x4, &(0x7f0000000240)=[{0x1, 0x69, &(0x7f0000000080)="0045de67d564f5a042e9270d733e2027399124ba6808a44500a546ef67f9c97d120c4a28fa552915f48dd992169406c3ac79812ee15933d367a2b9318cf23f9cd2036d0fda8eb6961c062d3846cbedc264f7b985cc2d8c055b9e8c8ceaf2527fb83793a197dcc0a8dc", 0x0, 0x1}, {0x1000, 0x1000, &(0x7f0000000b80)="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", 0x1, 0x1}, {0x7, 0xff2, &(0x7f0000001b80)="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"}, {0x0, 0xac, &(0x7f0000000100)="29acb9e9693abf2251d3ae0ec49b0806bbbf14b081b726aa30892d0e6f445b118f89fcd2690642487e050314d9f103fda274cefa2619d73fe8f753cce47ee7f8f623269f526399d39a4fba6f6a015223dfa7ebcde0849306bc22bdcf081ba61fa66d339cd683f6e0deb8f9140d9739e5d959ca19a98704b320a6f8775a6e8e2158b72f6accaca46b129a79f3a3ed4f8185c1ac82847623008d170c77b6b8e2068d0a6e591fb99d9111be3a74", 0x1, 0x30b3a45176f0928c}]}) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:24:05 executing program 4: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:24:05 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 26) 10:24:05 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) getpgrp(0x0) pidfd_open(0x0, 0x0) mq_notify(0xffffffffffffffff, 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000000240)={0x0, 0xb, 0x4, @tid=r1}, &(0x7f0000000040)) pidfd_open(r1, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x3, r1, 0x2, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x6}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8902, 0x0) ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(0xffffffffffffffff, 0x8008f511, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2000003, 0x1f012, r2, 0x0) signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_io_uring_setup(0x19b8, &(0x7f0000003480), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000200)) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)) [ 1632.608751] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1632.610029] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1632.611131] do_syscall_64+0x33/0x40 [ 1632.611988] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1632.613104] RIP: 0033:0x7fc343bc8b19 [ 1632.613879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1632.615055] FAULT_INJECTION: forcing a failure. [ 1632.615055] name failslab, interval 1, probability 0, space 0, times 0 [ 1632.617647] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1632.617672] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1632.617684] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1632.617695] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1632.617715] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1632.627178] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1632.628726] CPU: 0 PID: 10705 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1632.630060] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1632.631518] Call Trace: [ 1632.631995] dump_stack+0x107/0x167 [ 1632.632664] should_fail.cold+0x5/0xa [ 1632.633339] ? create_object.isra.0+0x3a/0xa30 [ 1632.634152] should_failslab+0x5/0x20 [ 1632.634822] kmem_cache_alloc+0x5b/0x310 [ 1632.635544] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1632.636537] create_object.isra.0+0x3a/0xa30 [ 1632.637308] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1632.638203] kmem_cache_alloc+0x159/0x310 [ 1632.638943] security_file_alloc+0x34/0x170 [ 1632.639703] __alloc_file+0xb7/0x320 [ 1632.640355] alloc_empty_file+0x6d/0x170 [ 1632.641087] alloc_file+0x5e/0x5a0 [ 1632.641719] alloc_file_pseudo+0x16a/0x250 [ 1632.642477] ? alloc_file+0x5a0/0x5a0 [ 1632.643162] anon_inode_getfile+0xc8/0x1f0 [ 1632.643918] io_uring_setup+0x138b/0x2980 [ 1632.644677] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1632.645570] ? wait_for_completion_io+0x270/0x270 [ 1632.646431] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1632.647350] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1632.648258] do_syscall_64+0x33/0x40 [ 1632.648932] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1632.649825] RIP: 0033:0x7f4a0d16cb19 [ 1632.650467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1632.653684] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1632.655004] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1632.656241] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1632.657503] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1632.658732] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1632.659961] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1632.675162] FAULT_INJECTION: forcing a failure. [ 1632.675162] name failslab, interval 1, probability 0, space 0, times 0 [ 1632.677248] CPU: 0 PID: 10694 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1632.678442] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1632.679881] Call Trace: [ 1632.680338] dump_stack+0x107/0x167 [ 1632.680993] should_fail.cold+0x5/0xa [ 1632.681654] ? create_object.isra.0+0x3a/0xa30 [ 1632.682440] should_failslab+0x5/0x20 [ 1632.683100] kmem_cache_alloc+0x5b/0x310 [ 1632.683806] ? io_wq_create+0x114/0xc00 [ 1632.684519] create_object.isra.0+0x3a/0xa30 [ 1632.685288] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1632.686182] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1632.687065] io_wq_create+0x6ef/0xc00 [ 1632.687730] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1632.688625] ? io_import_iovec+0x1120/0x1120 [ 1632.689378] ? io_apoll_task_func+0x2d0/0x2d0 [ 1632.690157] ? __io_req_find_next+0x300/0x300 [ 1632.690926] ? do_raw_spin_lock+0x121/0x260 [ 1632.691661] ? rwlock_bug.part.0+0x90/0x90 [ 1632.692407] __io_uring_add_tctx_node+0x2c6/0x520 [ 1632.693249] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1632.694146] ? alloc_fd+0x2e7/0x670 [ 1632.694784] io_uring_setup+0x1fbb/0x2980 [ 1632.695504] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1632.696340] FAULT_INJECTION: forcing a failure. [ 1632.696340] name failslab, interval 1, probability 0, space 0, times 0 [ 1632.696409] ? wait_for_completion_io+0x270/0x270 [ 1632.696449] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1632.700476] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1632.701384] do_syscall_64+0x33/0x40 [ 1632.702039] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1632.702933] RIP: 0033:0x7fcf2a53eb19 [ 1632.703606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1632.706829] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1632.708163] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1632.709426] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1632.710673] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1632.711922] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1632.713184] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1632.714463] CPU: 1 PID: 10693 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1632.715962] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1632.717759] Call Trace: [ 1632.718335] dump_stack+0x107/0x167 [ 1632.719122] should_fail.cold+0x5/0xa [ 1632.719946] ? create_object.isra.0+0x3a/0xa30 [ 1632.720936] should_failslab+0x5/0x20 [ 1632.721755] kmem_cache_alloc+0x5b/0x310 [ 1632.722651] create_object.isra.0+0x3a/0xa30 [ 1632.723598] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1632.724709] kmem_cache_alloc_trace+0x151/0x320 [ 1632.725718] __io_uring_add_tctx_node+0x15c/0x520 [ 1632.726755] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1632.727876] ? alloc_fd+0x2e7/0x670 [ 1632.728683] io_uring_setup+0x1fbb/0x2980 [ 1632.729582] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1632.730672] ? wait_for_completion_io+0x270/0x270 [ 1632.731731] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1632.732865] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1632.733976] do_syscall_64+0x33/0x40 [ 1632.734777] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1632.735873] RIP: 0033:0x7fc39eed2b19 [ 1632.736685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1632.740603] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1632.742230] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1632.743747] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1632.745284] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1632.746807] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1632.748326] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:24:05 executing program 4: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:24:05 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) preadv(r1, &(0x7f0000000180)=[{&(0x7f0000000040)=""/17, 0x11}, {&(0x7f0000000080)=""/51, 0x33}, {&(0x7f00000000c0)=""/187, 0xbb}], 0x3, 0x1, 0x40) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:24:05 executing program 4: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:24:05 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 32) 10:24:05 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x2) 10:24:05 executing program 3: perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4347, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)=ANY=[@ANYBLOB]) r1 = perf_event_open(0x0, 0xffffffffffffffff, 0xa, 0xffffffffffffffff, 0x0) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) openat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x400000, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd']) ioctl$TIOCSTI(r2, 0x5425, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r3, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x3, 0xfffffffe}}, './file1\x00'}) ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r0) 10:24:05 executing program 6: r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r0, &(0x7f0000000040)='reno\x00', 0x5) ioctl$BTRFS_IOC_INO_PATHS(r0, 0xc0389423, &(0x7f0000000080)={0x3204, 0x10, [0x1, 0x3, 0x100000000, 0x49], &(0x7f0000000040)=[0x0, 0x0]}) r1 = epoll_create1(0x0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000000)) epoll_create(0x40) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, 0xffffffffffffffff, &(0x7f0000000180)={0x80000009}) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f00000001c0)) r4 = accept4(r2, &(0x7f00000000c0)=@nfc, &(0x7f0000000140)=0x80, 0x800) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r5, 0x8000000) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f0000000200)={0x40000011}) 10:24:05 executing program 4: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:24:05 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 37) 10:24:05 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 27) [ 1632.969093] FAULT_INJECTION: forcing a failure. [ 1632.969093] name failslab, interval 1, probability 0, space 0, times 0 [ 1632.971680] CPU: 0 PID: 10724 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1632.973186] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1632.974976] Call Trace: [ 1632.975549] dump_stack+0x107/0x167 [ 1632.976339] should_fail.cold+0x5/0xa [ 1632.977172] ? create_object.isra.0+0x3a/0xa30 [ 1632.978163] should_failslab+0x5/0x20 [ 1632.978984] kmem_cache_alloc+0x5b/0x310 [ 1632.979864] create_object.isra.0+0x3a/0xa30 [ 1632.980825] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1632.981930] kmem_cache_alloc_trace+0x151/0x320 [ 1632.982946] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1632.984045] ? io_import_iovec+0x1120/0x1120 [ 1632.985142] ? lock_downgrade+0x6d0/0x6d0 [ 1632.986234] ? do_raw_spin_lock+0x121/0x260 [ 1632.987370] ? rwlock_bug.part.0+0x90/0x90 [ 1632.988294] __io_uring_add_tctx_node+0x2c6/0x520 [ 1632.989346] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1632.990474] ? alloc_fd+0x2e7/0x670 [ 1632.991279] io_uring_setup+0x1fbb/0x2980 [ 1632.992185] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1632.993318] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1632.994449] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1632.995565] do_syscall_64+0x33/0x40 [ 1632.996380] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1632.997485] RIP: 0033:0x7fc343bc8b19 [ 1632.998290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1633.002262] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1633.003909] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1633.005456] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1633.006995] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1633.008547] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1633.010103] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1633.042891] FAULT_INJECTION: forcing a failure. [ 1633.042891] name failslab, interval 1, probability 0, space 0, times 0 [ 1633.045445] CPU: 1 PID: 10730 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1633.046939] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1633.048738] Call Trace: [ 1633.049315] dump_stack+0x107/0x167 [ 1633.050110] should_fail.cold+0x5/0xa [ 1633.050940] ? io_uring_alloc_task_context+0x99/0x6a0 [ 1633.052063] should_failslab+0x5/0x20 [ 1633.052900] kmem_cache_alloc_trace+0x55/0x320 [ 1633.053897] io_uring_alloc_task_context+0x99/0x6a0 [ 1633.054980] ? io_import_iovec+0x1120/0x1120 [ 1633.055934] ? lock_downgrade+0x6d0/0x6d0 [ 1633.056845] ? do_raw_spin_lock+0x121/0x260 [ 1633.057778] ? rwlock_bug.part.0+0x90/0x90 [ 1633.058698] __io_uring_add_tctx_node+0x2c6/0x520 [ 1633.059713] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1633.060834] ? alloc_fd+0x2e7/0x670 [ 1633.061622] io_uring_setup+0x1fbb/0x2980 [ 1633.062509] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1633.063579] ? wait_for_completion_io+0x270/0x270 [ 1633.064636] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1633.065741] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1633.066832] do_syscall_64+0x33/0x40 [ 1633.067624] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1633.068716] RIP: 0033:0x7f4a0d16cb19 [ 1633.069503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1633.073387] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1633.074999] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1633.076503] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1633.078014] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1633.079525] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1633.081035] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:24:06 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 39) 10:24:06 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000040)) 10:24:06 executing program 4: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1633.102938] FAULT_INJECTION: forcing a failure. [ 1633.102938] name failslab, interval 1, probability 0, space 0, times 0 [ 1633.105657] CPU: 0 PID: 10734 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1633.107126] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1633.108889] Call Trace: [ 1633.109457] dump_stack+0x107/0x167 [ 1633.110235] should_fail.cold+0x5/0xa [ 1633.111050] ? __io_uring_add_tctx_node+0x15c/0x520 [ 1633.112110] should_failslab+0x5/0x20 [ 1633.112926] kmem_cache_alloc_trace+0x55/0x320 [ 1633.113901] __io_uring_add_tctx_node+0x15c/0x520 [ 1633.114929] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1633.116044] ? alloc_fd+0x2e7/0x670 [ 1633.116844] io_uring_setup+0x1fbb/0x2980 [ 1633.117734] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1633.118808] ? wait_for_completion_io+0x270/0x270 [ 1633.119865] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1633.120985] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1633.122082] do_syscall_64+0x33/0x40 [ 1633.122873] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1633.123965] RIP: 0033:0x7fcf2a53eb19 [ 1633.124762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1633.128690] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1633.130304] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1633.131823] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1633.133353] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1633.134877] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1633.136403] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:24:06 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x3) [ 1633.183550] FAULT_INJECTION: forcing a failure. [ 1633.183550] name failslab, interval 1, probability 0, space 0, times 0 [ 1633.186469] CPU: 1 PID: 10736 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1633.187929] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1633.189702] Call Trace: [ 1633.190265] dump_stack+0x107/0x167 [ 1633.191044] should_fail.cold+0x5/0xa [ 1633.191850] ? xas_alloc+0x336/0x440 [ 1633.192657] should_failslab+0x5/0x20 [ 1633.193465] kmem_cache_alloc+0x5b/0x310 [ 1633.194325] ? stack_trace_consume_entry+0x160/0x160 [ 1633.195399] xas_alloc+0x336/0x440 [ 1633.196153] xas_create+0x34a/0x10d0 [ 1633.196978] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1633.198095] xas_store+0x8c/0x1c40 [ 1633.198871] __xa_store+0x164/0x2d0 [ 1633.199645] ? xa_delete_node+0x280/0x280 [ 1633.200544] ? trace_hardirqs_on+0x5b/0x180 [ 1633.201475] xa_store+0x31/0x50 [ 1633.202179] __io_uring_add_tctx_node+0x1cf/0x520 [ 1633.203203] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1633.204308] ? alloc_fd+0x2e7/0x670 [ 1633.205112] io_uring_setup+0x1fbb/0x2980 [ 1633.206006] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1633.207076] ? wait_for_completion_io+0x270/0x270 [ 1633.208135] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1633.209258] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1633.210369] do_syscall_64+0x33/0x40 [ 1633.211159] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1633.212243] RIP: 0033:0x7fc39eed2b19 [ 1633.213105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1633.216998] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1633.218613] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1633.220123] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1633.221646] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1633.223160] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1633.224685] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:24:26 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 33) 10:24:26 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 28) 10:24:26 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x4) 10:24:26 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 40) 10:24:26 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) ioctl$FITHAW(r0, 0xc0045878) r2 = epoll_create(0x3ff) ioctl$SNDRV_TIMER_IOCTL_PVERSION(0xffffffffffffffff, 0x80045400, &(0x7f0000000080)) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cpuacct.usage_all\x00', 0x0, 0x0) r5 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) epoll_create(0x8000) write$tcp_congestion(r5, &(0x7f0000000040)='reno\x00', 0x5) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000100)={0x20000008}) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r6, 0x8000000) ioctl$sock_SIOCGPGRP(r6, 0x8904, &(0x7f0000000040)) 10:24:26 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 38) 10:24:26 executing program 3: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0) bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14) connect$802154_dgram(r0, &(0x7f0000000080)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0302}}}, 0x14) sendmmsg$sock(r0, &(0x7f00000021c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) connect$802154_dgram(r1, &(0x7f00000000c0)={0x24, @none={0x0, 0xffff}}, 0x14) 10:24:26 executing program 4: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1653.202288] FAULT_INJECTION: forcing a failure. [ 1653.202288] name failslab, interval 1, probability 0, space 0, times 0 [ 1653.204937] CPU: 0 PID: 10759 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1653.206417] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.208181] Call Trace: [ 1653.208765] dump_stack+0x107/0x167 [ 1653.209542] should_fail.cold+0x5/0xa [ 1653.210359] ? create_object.isra.0+0x3a/0xa30 [ 1653.211326] should_failslab+0x5/0x20 [ 1653.212131] kmem_cache_alloc+0x5b/0x310 [ 1653.213009] create_object.isra.0+0x3a/0xa30 [ 1653.213944] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1653.215026] kmem_cache_alloc_trace+0x151/0x320 [ 1653.216024] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1653.217114] ? io_import_iovec+0x1120/0x1120 [ 1653.218048] ? lock_downgrade+0x6d0/0x6d0 [ 1653.218922] ? do_raw_spin_lock+0x121/0x260 [ 1653.219837] ? rwlock_bug.part.0+0x90/0x90 [ 1653.220752] __io_uring_add_tctx_node+0x2c6/0x520 [ 1653.221774] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1653.222893] ? alloc_fd+0x2e7/0x670 [ 1653.223677] io_uring_setup+0x1fbb/0x2980 [ 1653.224579] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1653.225646] ? wait_for_completion_io+0x270/0x270 [ 1653.226695] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.227811] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.228914] do_syscall_64+0x33/0x40 [ 1653.229704] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.230793] RIP: 0033:0x7fc343bc8b19 [ 1653.231580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.235511] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1653.237138] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1653.238657] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1653.240177] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1653.241704] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1653.243218] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1653.252660] FAULT_INJECTION: forcing a failure. [ 1653.252660] name failslab, interval 1, probability 0, space 0, times 0 [ 1653.255128] CPU: 1 PID: 10762 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1653.256550] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.258257] Call Trace: [ 1653.258810] dump_stack+0x107/0x167 [ 1653.259571] should_fail.cold+0x5/0xa [ 1653.260369] ? create_object.isra.0+0x3a/0xa30 [ 1653.261320] should_failslab+0x5/0x20 [ 1653.262107] kmem_cache_alloc+0x5b/0x310 [ 1653.262948] create_object.isra.0+0x3a/0xa30 [ 1653.263857] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1653.264937] kmem_cache_alloc+0x159/0x310 [ 1653.265823] xas_alloc+0x336/0x440 [ 1653.266563] xas_create+0x34a/0x10d0 [ 1653.267353] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1653.268449] xas_store+0x8c/0x1c40 [ 1653.269217] __xa_store+0x164/0x2d0 [ 1653.269976] ? xa_delete_node+0x280/0x280 [ 1653.270850] ? trace_hardirqs_on+0x5b/0x180 [ 1653.271747] xa_store+0x31/0x50 [ 1653.272438] __io_uring_add_tctx_node+0x1cf/0x520 [ 1653.273438] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1653.274520] ? alloc_fd+0x2e7/0x670 [ 1653.275283] io_uring_setup+0x1fbb/0x2980 [ 1653.276159] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1653.277218] ? wait_for_completion_io+0x270/0x270 [ 1653.278248] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.279340] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.280401] do_syscall_64+0x33/0x40 [ 1653.281170] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.282227] RIP: 0033:0x7fc39eed2b19 [ 1653.282989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.286751] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1653.288307] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1653.289767] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1653.291227] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1653.292705] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1653.294182] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:24:26 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x20, 0x0, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x0, 0x3, &(0x7f0000000280)=[{0x0}, {0x0}, {&(0x7f0000011600), 0x0, 0x2100}], 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="e9e417b771ba"]) [ 1653.310078] FAULT_INJECTION: forcing a failure. [ 1653.310078] name failslab, interval 1, probability 0, space 0, times 0 [ 1653.312396] CPU: 1 PID: 10752 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1653.313816] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.315507] Call Trace: [ 1653.316055] dump_stack+0x107/0x167 [ 1653.316820] should_fail.cold+0x5/0xa [ 1653.317608] ? create_object.isra.0+0x3a/0xa30 [ 1653.318539] should_failslab+0x5/0x20 [ 1653.319325] kmem_cache_alloc+0x5b/0x310 [ 1653.320162] ? io_wq_create+0x114/0xc00 [ 1653.320995] create_object.isra.0+0x3a/0xa30 [ 1653.321894] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1653.322960] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1653.324004] io_wq_create+0x6ef/0xc00 [ 1653.324811] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1653.325855] ? io_import_iovec+0x1120/0x1120 [ 1653.326757] ? io_apoll_task_func+0x2d0/0x2d0 [ 1653.327676] ? __io_req_find_next+0x300/0x300 [ 1653.328600] ? do_raw_spin_lock+0x121/0x260 [ 1653.329482] ? rwlock_bug.part.0+0x90/0x90 [ 1653.330365] __io_uring_add_tctx_node+0x2c6/0x520 [ 1653.331363] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1653.332434] ? alloc_fd+0x2e7/0x670 [ 1653.333210] io_uring_setup+0x1fbb/0x2980 [ 1653.334070] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1653.335099] ? wait_for_completion_io+0x270/0x270 [ 1653.336114] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.337189] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.338248] do_syscall_64+0x33/0x40 [ 1653.339007] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.340058] RIP: 0033:0x7fcf2a53eb19 [ 1653.340828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.344597] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1653.346141] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1653.347604] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1653.349066] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1653.350516] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1653.351973] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:24:26 executing program 4: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1653.378127] FAULT_INJECTION: forcing a failure. [ 1653.378127] name failslab, interval 1, probability 0, space 0, times 0 [ 1653.380959] CPU: 1 PID: 10772 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1653.382448] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.384165] Call Trace: [ 1653.384742] dump_stack+0x107/0x167 [ 1653.385509] should_fail.cold+0x5/0xa [ 1653.386316] ? create_object.isra.0+0x3a/0xa30 [ 1653.387260] should_failslab+0x5/0x20 [ 1653.388051] kmem_cache_alloc+0x5b/0x310 [ 1653.388913] create_object.isra.0+0x3a/0xa30 [ 1653.389825] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1653.390884] kmem_cache_alloc_trace+0x151/0x320 [ 1653.392074] io_uring_alloc_task_context+0x99/0x6a0 [ 1653.393205] ? io_import_iovec+0x1120/0x1120 [ 1653.394115] ? lock_downgrade+0x6d0/0x6d0 [ 1653.394981] ? do_raw_spin_lock+0x121/0x260 [ 1653.395875] ? rwlock_bug.part.0+0x90/0x90 [ 1653.396770] __io_uring_add_tctx_node+0x2c6/0x520 [ 1653.397778] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1653.398874] ? alloc_fd+0x2e7/0x670 [ 1653.399649] io_uring_setup+0x1fbb/0x2980 [ 1653.400543] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1653.401590] ? wait_for_completion_io+0x270/0x270 [ 1653.402861] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.404016] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.405353] do_syscall_64+0x33/0x40 [ 1653.406146] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.407444] RIP: 0033:0x7f4a0d16cb19 [ 1653.408284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.412072] RSP: 002b:00007f4a0a6c1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1653.413669] RAX: ffffffffffffffda RBX: 00007f4a0d280020 RCX: 00007f4a0d16cb19 [ 1653.415149] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1653.416624] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1653.418120] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1653.419590] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:24:26 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = gettid() timer_create(0x0, &(0x7f0000000240)={0x0, 0xb, 0x4, @tid=r2}, &(0x7f0000000040)) syz_open_procfs(r2, &(0x7f0000000040)='net/icmp6\x00') epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r3 = epoll_create(0x3ff) r4 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000200)) 10:24:26 executing program 3: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000280), 0xa}, 0x61b8, 0x0, 0x3, 0x0, 0x13, 0xfffffffd, 0xb419}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x20, 0x12, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x3ffe, 0x0, 0x0, @fd}, @nested={0x4}]}, 0x20}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0), 0x4000, 0x0) ioctl$FICLONE(r3, 0x40049409, r4) sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="20000000100001000cf70000000000000000000008000000", @ANYRES32, @ANYBLOB="04000080"], 0x20}}, 0x0) dup(0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000002c0)={'wlan1\x00'}) r5 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0x4) sendmsg$nl_generic(r5, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000001a0011cd"], 0x1c}, 0x1, 0x0, 0x0, 0x4004804}, 0x20000854) sendmsg$nl_generic(r3, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)={0xec, 0x1e, 0x1, 0x70bd2a, 0x25dfdbfb, {0x1b}, [@generic="481f89871f7fffa99f86353257a2f8bf51941ce62ac3cbb27e5f0698c2ed4a27dde8d753dd35ed3cef223a1e73ec0362e2adcf2cb2220a66387df8ebf5a0cf8a1f0d362768d0803692bbb947c2a83cf9aa6d6208a8dde7fc46129e51de44b3e675fa34273566a251c6f77e53acae10f2c54a5837e9c72d2955872d2eb6dce1c3112f185f73b79d950cb1f7784ca8b9dfdbcc2f47345e3d010ad90e8e273a774728c20f7f6bb0fe983c676797a045bf6a3a77527b4d50721196a5", @nested={0x1c, 0x30, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @pid}, @typed={0x8, 0x1, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @typed={0x8, 0x29, 0x0, 0x0, @ipv4=@empty}]}]}, 0xec}, 0x1, 0x0, 0x0, 0x20000800}, 0x8840) readv(r5, &(0x7f0000000400)=[{&(0x7f0000000180)=""/43, 0x2b}], 0x1) 10:24:26 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x8) 10:24:26 executing program 4: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:24:26 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 41) 10:24:26 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 34) 10:24:26 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r4, 0x8000000) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r2, &(0x7f0000000040)={0x18}) r5 = open_tree(r4, &(0x7f0000000080)='./file0\x00', 0x8001) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f0000000200)={0x20002000}) [ 1653.540424] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1653.554667] FAULT_INJECTION: forcing a failure. [ 1653.554667] name failslab, interval 1, probability 0, space 0, times 0 [ 1653.557104] CPU: 1 PID: 10784 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1653.558525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.560239] Call Trace: [ 1653.560809] dump_stack+0x107/0x167 [ 1653.561572] should_fail.cold+0x5/0xa [ 1653.562376] ? xas_alloc+0x336/0x440 [ 1653.563150] should_failslab+0x5/0x20 [ 1653.563950] kmem_cache_alloc+0x5b/0x310 [ 1653.564806] xas_alloc+0x336/0x440 [ 1653.565543] xas_create+0x34a/0x10d0 [ 1653.566497] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1653.567601] xas_store+0x8c/0x1c40 [ 1653.568564] __xa_store+0x164/0x2d0 [ 1653.569332] ? xa_delete_node+0x280/0x280 [ 1653.570208] ? trace_hardirqs_on+0x5b/0x180 [ 1653.571123] xa_store+0x31/0x50 [ 1653.571813] __io_uring_add_tctx_node+0x1cf/0x520 [ 1653.572832] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1653.573918] ? alloc_fd+0x2e7/0x670 [ 1653.574700] io_uring_setup+0x1fbb/0x2980 [ 1653.575573] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1653.576869] ? wait_for_completion_io+0x270/0x270 [ 1653.577918] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.579252] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.580334] do_syscall_64+0x33/0x40 [ 1653.581293] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.582603] RIP: 0033:0x7fc39eed2b19 [ 1653.583547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.583774] FAULT_INJECTION: forcing a failure. [ 1653.583774] name failslab, interval 1, probability 0, space 0, times 0 [ 1653.588206] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1653.592553] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1653.594383] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1653.596199] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1653.598043] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1653.599874] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1653.601757] CPU: 0 PID: 10788 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1653.603223] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.604987] Call Trace: [ 1653.605549] dump_stack+0x107/0x167 [ 1653.606319] should_fail.cold+0x5/0xa [ 1653.607144] ? create_object.isra.0+0x3a/0xa30 [ 1653.608109] should_failslab+0x5/0x20 [ 1653.608923] kmem_cache_alloc+0x5b/0x310 [ 1653.609789] create_object.isra.0+0x3a/0xa30 [ 1653.610725] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1653.611797] __kmalloc+0x16e/0x390 [ 1653.612577] io_wq_create+0xeb/0xc00 [ 1653.613375] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1653.614451] ? io_import_iovec+0x1120/0x1120 [ 1653.615395] ? io_apoll_task_func+0x2d0/0x2d0 [ 1653.616335] ? __io_req_find_next+0x300/0x300 [ 1653.617285] ? do_raw_spin_lock+0x121/0x260 [ 1653.618195] ? rwlock_bug.part.0+0x90/0x90 [ 1653.619093] __io_uring_add_tctx_node+0x2c6/0x520 [ 1653.620123] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1653.621248] ? alloc_fd+0x2e7/0x670 [ 1653.622038] io_uring_setup+0x1fbb/0x2980 [ 1653.622925] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1653.623991] ? wait_for_completion_io+0x270/0x270 [ 1653.625057] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.626164] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.627262] do_syscall_64+0x33/0x40 [ 1653.628047] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.629140] RIP: 0033:0x7fc343bc8b19 [ 1653.629922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.633798] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1653.635408] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1653.636927] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1653.638440] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1653.639945] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1653.641456] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1653.690265] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 10:24:43 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 39) 10:24:43 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 35) 10:24:43 executing program 3: r0 = add_key$keyring(&(0x7f0000000000), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$restrict_keyring(0x1d, r0, &(0x7f0000000080)='.request_key_auth\x00', &(0x7f0000000040)='!!\xb9~\xec\xaf9\xd5\x12\xeb]\xb7+~u\tT\xcf#I\x9aq\xb3|\x84\xfb\x87Tp\xf2\x82DA\xf4Vr\xdc\xa3t\x00') 10:24:43 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 29) 10:24:43 executing program 6: r0 = epoll_create1(0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x8000000) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x8000000) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000080)) r3 = epoll_create(0x9) r4 = epoll_create(0x3ff) r5 = syz_open_dev$ttys(0xc, 0x2, 0x1) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)={0x4000000a}) r6 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f0000000200)) 10:24:43 executing program 4: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000200)) 10:24:43 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0xe) 10:24:43 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 42) [ 1670.789528] FAULT_INJECTION: forcing a failure. [ 1670.789528] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.791860] CPU: 1 PID: 10806 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1670.793242] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1670.794895] Call Trace: [ 1670.795426] dump_stack+0x107/0x167 [ 1670.796165] should_fail.cold+0x5/0xa [ 1670.796939] ? xas_alloc+0x336/0x440 [ 1670.797677] should_failslab+0x5/0x20 [ 1670.798435] kmem_cache_alloc+0x5b/0x310 [ 1670.799246] ? stack_trace_consume_entry+0x160/0x160 [ 1670.800254] xas_alloc+0x336/0x440 [ 1670.800975] xas_create+0x34a/0x10d0 [ 1670.801731] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1670.802768] xas_store+0x8c/0x1c40 [ 1670.803491] __xa_store+0x164/0x2d0 [ 1670.804216] ? xa_delete_node+0x280/0x280 [ 1670.805054] ? trace_hardirqs_on+0x5b/0x180 [ 1670.805922] xa_store+0x31/0x50 [ 1670.806580] __io_uring_add_tctx_node+0x1cf/0x520 [ 1670.807534] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1670.808577] ? alloc_fd+0x2e7/0x670 [ 1670.809327] io_uring_setup+0x1fbb/0x2980 [ 1670.810136] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1670.811129] ? wait_for_completion_io+0x270/0x270 [ 1670.812123] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1670.813175] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1670.814205] do_syscall_64+0x33/0x40 [ 1670.814944] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1670.815967] RIP: 0033:0x7fcf2a53eb19 [ 1670.816711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1670.820373] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1670.821903] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1670.823319] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1670.824745] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1670.826165] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1670.827589] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1670.835300] FAULT_INJECTION: forcing a failure. [ 1670.835300] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.837594] CPU: 1 PID: 10807 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1670.838966] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1670.839138] FAULT_INJECTION: forcing a failure. [ 1670.839138] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.840589] Call Trace: [ 1670.840615] dump_stack+0x107/0x167 [ 1670.840641] should_fail.cold+0x5/0xa [ 1670.844946] ? create_object.isra.0+0x3a/0xa30 [ 1670.845848] should_failslab+0x5/0x20 [ 1670.846603] kmem_cache_alloc+0x5b/0x310 [ 1670.847412] ? mark_held_locks+0x9e/0xe0 [ 1670.848222] create_object.isra.0+0x3a/0xa30 [ 1670.849099] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1670.850114] kmem_cache_alloc+0x159/0x310 [ 1670.850949] xas_alloc+0x336/0x440 [ 1670.851660] xas_create+0x34a/0x10d0 [ 1670.852420] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1670.853470] xas_store+0x8c/0x1c40 [ 1670.854191] __xa_store+0x164/0x2d0 [ 1670.854919] ? xa_delete_node+0x280/0x280 [ 1670.855750] ? trace_hardirqs_on+0x5b/0x180 [ 1670.856621] xa_store+0x31/0x50 [ 1670.857291] __io_uring_add_tctx_node+0x1cf/0x520 [ 1670.858246] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1670.859283] ? alloc_fd+0x2e7/0x670 [ 1670.860021] io_uring_setup+0x1fbb/0x2980 [ 1670.860863] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1670.861865] ? wait_for_completion_io+0x270/0x270 [ 1670.862844] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1670.863884] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1670.864917] do_syscall_64+0x33/0x40 [ 1670.865656] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1670.866675] RIP: 0033:0x7fc39eed2b19 [ 1670.867420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1670.871074] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1670.872575] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1670.873996] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1670.875424] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1670.876842] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1670.878259] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1670.879720] CPU: 0 PID: 10812 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1670.881224] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1670.882968] Call Trace: [ 1670.883531] dump_stack+0x107/0x167 [ 1670.884302] should_fail.cold+0x5/0xa [ 1670.885124] ? io_wq_create+0x6ef/0xc00 [ 1670.885981] should_failslab+0x5/0x20 [ 1670.886795] kmem_cache_alloc_node_trace+0x59/0x340 [ 1670.887860] io_wq_create+0x6ef/0xc00 [ 1670.888689] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1670.889762] ? io_import_iovec+0x1120/0x1120 [ 1670.890700] ? io_apoll_task_func+0x2d0/0x2d0 [ 1670.891650] ? __io_req_find_next+0x300/0x300 [ 1670.892589] ? do_raw_spin_lock+0x121/0x260 [ 1670.893501] ? rwlock_bug.part.0+0x90/0x90 [ 1670.894413] __io_uring_add_tctx_node+0x2c6/0x520 [ 1670.895425] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1670.896545] ? alloc_fd+0x2e7/0x670 [ 1670.897540] io_uring_setup+0x1fbb/0x2980 [ 1670.898676] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1670.900038] ? wait_for_completion_io+0x270/0x270 [ 1670.901357] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1670.902741] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1670.904092] do_syscall_64+0x33/0x40 [ 1670.905079] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1670.906402] RIP: 0033:0x7fc343bc8b19 [ 1670.907368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1670.911714] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1670.913573] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1670.915110] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1670.916608] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1670.918103] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1670.919586] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:24:43 executing program 4: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000200)) [ 1670.939312] FAULT_INJECTION: forcing a failure. [ 1670.939312] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.941439] CPU: 1 PID: 10802 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1670.942634] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1670.944066] Call Trace: [ 1670.944527] dump_stack+0x107/0x167 [ 1670.945166] should_fail.cold+0x5/0xa [ 1670.945835] ? create_object.isra.0+0x3a/0xa30 [ 1670.946624] should_failslab+0x5/0x20 [ 1670.947281] kmem_cache_alloc+0x5b/0x310 [ 1670.947982] create_object.isra.0+0x3a/0xa30 [ 1670.948753] kmemleak_alloc_percpu+0xa0/0x100 [ 1670.949529] pcpu_alloc+0x4e2/0x1240 [ 1670.950188] __percpu_counter_init+0x10d/0x2d0 [ 1670.950984] io_uring_alloc_task_context+0xcc/0x6a0 [ 1670.951842] ? io_import_iovec+0x1120/0x1120 [ 1670.952611] ? lock_downgrade+0x6d0/0x6d0 [ 1670.953327] ? do_raw_spin_lock+0x121/0x260 [ 1670.954071] ? rwlock_bug.part.0+0x90/0x90 [ 1670.954804] __io_uring_add_tctx_node+0x2c6/0x520 [ 1670.955633] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1670.956533] ? alloc_fd+0x2e7/0x670 [ 1670.957180] io_uring_setup+0x1fbb/0x2980 [ 1670.957900] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1670.958774] ? wait_for_completion_io+0x270/0x270 [ 1670.959632] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1670.960532] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1670.961431] do_syscall_64+0x33/0x40 [ 1670.962070] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1670.962952] RIP: 0033:0x7f4a0d16cb19 [ 1670.963590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1670.966732] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1670.968042] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1670.969262] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1670.970474] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1670.971699] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1670.972922] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:24:57 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000001c0)) r3 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x90000, 0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000080)) ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f00000000c0)={0x0, 0x3, 0x10000, 0x6}) 10:24:57 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 36) 10:24:57 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 43) 10:24:57 executing program 4: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000200)) 10:24:57 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/usbhid', 0x0, 0x0) flistxattr(r1, 0x0, 0x0) connect$inet(r1, &(0x7f0000000100)={0x2, 0x4e22, @private=0x9}, 0x10) r2 = getegid() ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1, {0xee00, r2}}, './file0\x00'}) creat(&(0x7f0000000000)='./file0\x00', 0x24) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r0, 0x0) fork() getgroups(0x8, &(0x7f00000003c0)=[0xee01, 0xffffffffffffffff, r2, r3, r2, r3, 0xee01, r2]) setresgid(r3, r4, r2) 10:24:57 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 40) 10:24:57 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x11) 10:24:57 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 30) [ 1684.722165] FAULT_INJECTION: forcing a failure. [ 1684.722165] name failslab, interval 1, probability 0, space 0, times 0 [ 1684.724428] CPU: 0 PID: 10840 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1684.725814] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1684.727451] Call Trace: [ 1684.727982] dump_stack+0x107/0x167 [ 1684.728720] should_fail.cold+0x5/0xa [ 1684.729521] ? create_object.isra.0+0x3a/0xa30 [ 1684.730424] should_failslab+0x5/0x20 [ 1684.731184] kmem_cache_alloc+0x5b/0x310 [ 1684.731990] ? io_wq_create+0x114/0xc00 [ 1684.732798] create_object.isra.0+0x3a/0xa30 [ 1684.733670] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1684.734686] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1684.735719] io_wq_create+0x6ef/0xc00 [ 1684.736502] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1684.737526] ? io_import_iovec+0x1120/0x1120 [ 1684.738401] ? io_apoll_task_func+0x2d0/0x2d0 [ 1684.739333] ? __io_req_find_next+0x300/0x300 [ 1684.740231] ? do_raw_spin_lock+0x121/0x260 [ 1684.741098] ? rwlock_bug.part.0+0x90/0x90 [ 1684.741947] __io_uring_add_tctx_node+0x2c6/0x520 [ 1684.742905] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1684.743946] ? alloc_fd+0x2e7/0x670 [ 1684.744684] io_uring_setup+0x1fbb/0x2980 [ 1684.745533] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1684.746543] ? wait_for_completion_io+0x270/0x270 [ 1684.747531] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1684.748588] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1684.749647] do_syscall_64+0x33/0x40 [ 1684.750398] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1684.751420] RIP: 0033:0x7fc343bc8b19 [ 1684.752169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1684.755823] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1684.757334] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1684.758753] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1684.760160] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1684.761574] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1684.762980] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:24:57 executing program 4: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:24:57 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x40) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:24:57 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x2e) [ 1684.782958] FAULT_INJECTION: forcing a failure. [ 1684.782958] name failslab, interval 1, probability 0, space 0, times 0 [ 1684.785324] CPU: 0 PID: 10837 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1684.786700] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1684.788342] Call Trace: [ 1684.788880] dump_stack+0x107/0x167 [ 1684.789611] should_fail.cold+0x5/0xa [ 1684.790385] ? create_object.isra.0+0x3a/0xa30 [ 1684.791290] should_failslab+0x5/0x20 [ 1684.792055] kmem_cache_alloc+0x5b/0x310 [ 1684.792879] create_object.isra.0+0x3a/0xa30 [ 1684.792936] FAULT_INJECTION: forcing a failure. [ 1684.792936] name failslab, interval 1, probability 0, space 0, times 0 [ 1684.793754] kmemleak_alloc_percpu+0xa0/0x100 [ 1684.793793] pcpu_alloc+0x4e2/0x1240 [ 1684.797723] __percpu_counter_init+0x10d/0x2d0 [ 1684.798636] io_uring_alloc_task_context+0xcc/0x6a0 [ 1684.799637] ? io_import_iovec+0x1120/0x1120 [ 1684.800516] ? lock_downgrade+0x6d0/0x6d0 [ 1684.801349] ? do_raw_spin_lock+0x121/0x260 [ 1684.802206] ? rwlock_bug.part.0+0x90/0x90 [ 1684.803057] __io_uring_add_tctx_node+0x2c6/0x520 [ 1684.804014] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1684.805086] ? alloc_fd+0x2e7/0x670 [ 1684.805830] io_uring_setup+0x1fbb/0x2980 [ 1684.806682] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1684.807699] ? wait_for_completion_io+0x270/0x270 [ 1684.808703] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1684.809772] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1684.810819] do_syscall_64+0x33/0x40 [ 1684.811564] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1684.812582] RIP: 0033:0x7f4a0d16cb19 [ 1684.813331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1684.816987] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1684.818524] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1684.819935] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1684.821375] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1684.822784] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1684.824197] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1684.825662] CPU: 1 PID: 10842 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1684.827090] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1684.828805] Call Trace: [ 1684.829360] dump_stack+0x107/0x167 [ 1684.830118] should_fail.cold+0x5/0xa [ 1684.830907] ? xas_alloc+0x336/0x440 [ 1684.831672] should_failslab+0x5/0x20 [ 1684.832453] kmem_cache_alloc+0x5b/0x310 [ 1684.833304] xas_alloc+0x336/0x440 [ 1684.834040] xas_create+0x34a/0x10d0 [ 1684.834822] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1684.835899] xas_store+0x8c/0x1c40 [ 1684.836653] __xa_store+0x164/0x2d0 [ 1684.837422] ? xa_delete_node+0x280/0x280 [ 1684.838291] ? trace_hardirqs_on+0x5b/0x180 [ 1684.839197] xa_store+0x31/0x50 [ 1684.839899] __io_uring_add_tctx_node+0x1cf/0x520 [ 1684.840897] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1684.841996] ? alloc_fd+0x2e7/0x670 [ 1684.842779] io_uring_setup+0x1fbb/0x2980 [ 1684.843667] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1684.844710] ? wait_for_completion_io+0x270/0x270 [ 1684.845732] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1684.846815] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1684.847873] do_syscall_64+0x33/0x40 [ 1684.848653] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1684.849718] RIP: 0033:0x7fc39eed2b19 [ 1684.850478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1684.854243] RSP: 002b:00007fc39c427108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1684.855792] RAX: ffffffffffffffda RBX: 00007fc39efe6020 RCX: 00007fc39eed2b19 [ 1684.857260] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1684.858724] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1684.860169] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1684.861632] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1684.891214] FAULT_INJECTION: forcing a failure. [ 1684.891214] name failslab, interval 1, probability 0, space 0, times 0 [ 1684.893570] CPU: 1 PID: 10836 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1684.894961] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1684.896618] Call Trace: [ 1684.897175] dump_stack+0x107/0x167 [ 1684.897932] should_fail.cold+0x5/0xa [ 1684.898724] ? create_object.isra.0+0x3a/0xa30 [ 1684.899659] should_failslab+0x5/0x20 [ 1684.900435] kmem_cache_alloc+0x5b/0x310 [ 1684.901294] create_object.isra.0+0x3a/0xa30 [ 1684.902199] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1684.903244] kmem_cache_alloc+0x159/0x310 [ 1684.904105] xas_alloc+0x336/0x440 [ 1684.904853] xas_create+0x34a/0x10d0 [ 1684.905624] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1684.906695] xas_store+0x8c/0x1c40 [ 1684.907438] __xa_store+0x164/0x2d0 [ 1684.908185] ? xa_delete_node+0x280/0x280 [ 1684.909044] ? trace_hardirqs_on+0x5b/0x180 [ 1684.909936] xa_store+0x31/0x50 [ 1684.910617] __io_uring_add_tctx_node+0x1cf/0x520 [ 1684.911618] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1684.912690] ? alloc_fd+0x2e7/0x670 [ 1684.913463] io_uring_setup+0x1fbb/0x2980 [ 1684.914325] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1684.915360] ? wait_for_completion_io+0x270/0x270 [ 1684.916353] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1684.917444] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1684.918517] do_syscall_64+0x33/0x40 [ 1684.919294] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1684.920340] RIP: 0033:0x7fcf2a53eb19 [ 1684.921162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1684.925888] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1684.927843] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1684.929693] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1684.931516] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1684.933371] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1684.935221] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:24:57 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 31) 10:24:57 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 37) 10:24:58 executing program 4: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:24:58 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r4, 0x8000000) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r1, &(0x7f0000000040)={0x80000008}) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1685.054042] FAULT_INJECTION: forcing a failure. [ 1685.054042] name failslab, interval 1, probability 0, space 0, times 0 [ 1685.056473] CPU: 1 PID: 10856 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1685.057936] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1685.059689] Call Trace: [ 1685.060252] dump_stack+0x107/0x167 [ 1685.061032] should_fail.cold+0x5/0xa [ 1685.061847] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 1685.062959] should_failslab+0x5/0x20 [ 1685.063764] kmem_cache_alloc_trace+0x55/0x320 [ 1685.064968] io_uring_alloc_task_context+0x4a3/0x6a0 10:24:58 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wpan1\x00'}) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000800), r0) sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f00000002c0)={0x0, 0x80000, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="54010200", @ANYRES16=r2, @ANYBLOB="010000000000000000000600000008000500000000003000070073797374656d5f753a6f626a6563745f723a73797374656d5f64627573645f7661725f6c69625f743a7330000800040000000000"], 0x54}}, 0x0) [ 1685.066020] ? io_import_iovec+0x1120/0x1120 [ 1685.067277] ? lock_downgrade+0x6d0/0x6d0 [ 1685.068142] ? do_raw_spin_lock+0x121/0x260 [ 1685.069051] ? rwlock_bug.part.0+0x90/0x90 [ 1685.069944] __io_uring_add_tctx_node+0x2c6/0x520 [ 1685.070953] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1685.072036] ? alloc_fd+0x2e7/0x670 [ 1685.072815] io_uring_setup+0x1fbb/0x2980 [ 1685.073705] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1685.075009] ? wait_for_completion_io+0x270/0x270 [ 1685.076164] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1685.076985] FAULT_INJECTION: forcing a failure. [ 1685.076985] name failslab, interval 1, probability 0, space 0, times 0 [ 1685.077316] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1685.080762] do_syscall_64+0x33/0x40 [ 1685.081562] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1685.082644] RIP: 0033:0x7f4a0d16cb19 [ 1685.083430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1685.087328] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1685.088953] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1685.090463] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1685.091968] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1685.093474] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1685.094982] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1685.096535] CPU: 0 PID: 10858 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1685.098066] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1685.099844] Call Trace: [ 1685.100412] dump_stack+0x107/0x167 [ 1685.101221] should_fail.cold+0x5/0xa [ 1685.102042] ? __io_uring_add_tctx_node+0x15c/0x520 [ 1685.103109] should_failslab+0x5/0x20 [ 1685.103927] kmem_cache_alloc_trace+0x55/0x320 [ 1685.104943] __io_uring_add_tctx_node+0x15c/0x520 [ 1685.105976] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1685.107104] ? alloc_fd+0x2e7/0x670 [ 1685.107908] io_uring_setup+0x1fbb/0x2980 [ 1685.108840] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1685.109930] ? wait_for_completion_io+0x270/0x270 [ 1685.110988] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1685.112107] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1685.113237] do_syscall_64+0x33/0x40 [ 1685.114033] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1685.115132] RIP: 0033:0x7fc343bc8b19 [ 1685.115930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1685.119877] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1685.121540] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1685.123066] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1685.124598] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1685.126144] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1685.127656] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:24:58 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x30) 10:24:58 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x8000000) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00'}) r3 = epoll_create(0x3ff) r4 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000200)) 10:24:58 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 44) 10:24:58 executing program 4: r0 = epoll_create1(0x80000) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1685.317624] FAULT_INJECTION: forcing a failure. [ 1685.317624] name failslab, interval 1, probability 0, space 0, times 0 [ 1685.320027] CPU: 0 PID: 10876 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1685.321524] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1685.323260] Call Trace: [ 1685.323818] dump_stack+0x107/0x167 [ 1685.324586] should_fail.cold+0x5/0xa [ 1685.325429] ? create_object.isra.0+0x3a/0xa30 [ 1685.326400] should_failslab+0x5/0x20 [ 1685.327203] kmem_cache_alloc+0x5b/0x310 [ 1685.328054] ? mark_held_locks+0x9e/0xe0 [ 1685.328943] create_object.isra.0+0x3a/0xa30 [ 1685.329857] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1685.330926] kmem_cache_alloc+0x159/0x310 [ 1685.331808] xas_alloc+0x336/0x440 [ 1685.332564] xas_create+0x34a/0x10d0 [ 1685.333381] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1685.334483] xas_store+0x8c/0x1c40 [ 1685.335249] __xa_store+0x164/0x2d0 [ 1685.336014] ? xa_delete_node+0x280/0x280 [ 1685.336922] ? trace_hardirqs_on+0x5b/0x180 [ 1685.337834] xa_store+0x31/0x50 [ 1685.338533] __io_uring_add_tctx_node+0x1cf/0x520 [ 1685.339544] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1685.340637] ? alloc_fd+0x2e7/0x670 [ 1685.341452] io_uring_setup+0x1fbb/0x2980 [ 1685.342329] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1685.343386] ? wait_for_completion_io+0x270/0x270 [ 1685.344429] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1685.345558] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1685.346641] do_syscall_64+0x33/0x40 [ 1685.347426] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1685.348488] RIP: 0033:0x7fc39eed2b19 [ 1685.349290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1685.353154] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1685.354732] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1685.356209] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1685.357717] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1685.359190] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1685.360676] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:25:11 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 45) 10:25:11 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 32) 10:25:11 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 38) 10:25:11 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 41) 10:25:11 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x300) 10:25:11 executing program 3: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x8000000) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_TP_METER_CANCEL(r0, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="24108200", @ANYRES16=r1, @ANYBLOB="00012cbd7000fc9bdf250300000005002f000100000008002c0000000000"], 0x24}, 0x1, 0x0, 0x0, 0x100440d1}, 0x0) syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0) syz_open_dev$vcsn(&(0x7f0000000100), 0x5, 0x1410c1) 10:25:11 executing program 4: r0 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) r1 = epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, 0xffffffffffffffff, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000200)) 10:25:11 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r4, &(0x7f0000000040)={0xd0002006}) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1698.768820] FAULT_INJECTION: forcing a failure. [ 1698.768820] name failslab, interval 1, probability 0, space 0, times 0 [ 1698.770184] CPU: 1 PID: 10888 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1698.771002] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1698.772009] Call Trace: [ 1698.772330] dump_stack+0x107/0x167 [ 1698.772766] should_fail.cold+0x5/0xa [ 1698.773226] ? create_object.isra.0+0x3a/0xa30 [ 1698.773759] should_failslab+0x5/0x20 [ 1698.774208] kmem_cache_alloc+0x5b/0x310 [ 1698.774701] create_object.isra.0+0x3a/0xa30 [ 1698.775228] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1698.775837] kmem_cache_alloc_trace+0x151/0x320 [ 1698.776391] __io_uring_add_tctx_node+0x15c/0x520 [ 1698.776972] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1698.777591] ? alloc_fd+0x2e7/0x670 [ 1698.778024] io_uring_setup+0x1fbb/0x2980 [ 1698.778523] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1698.779130] ? wait_for_completion_io+0x270/0x270 [ 1698.779715] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1698.780337] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1698.780955] do_syscall_64+0x33/0x40 [ 1698.781400] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1698.782000] RIP: 0033:0x7fc343bc8b19 [ 1698.782441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1698.784609] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1698.785521] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1698.786365] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1698.787203] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1698.788022] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1698.788882] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1698.802782] FAULT_INJECTION: forcing a failure. [ 1698.802782] name failslab, interval 1, probability 0, space 0, times 0 [ 1698.806777] FAULT_INJECTION: forcing a failure. [ 1698.806777] name failslab, interval 1, probability 0, space 0, times 0 [ 1698.806791] CPU: 1 PID: 10884 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1698.806797] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1698.806801] Call Trace: [ 1698.806816] dump_stack+0x107/0x167 [ 1698.806829] should_fail.cold+0x5/0xa [ 1698.806842] ? xas_alloc+0x336/0x440 [ 1698.806853] should_failslab+0x5/0x20 [ 1698.806864] kmem_cache_alloc+0x5b/0x310 [ 1698.806879] xas_alloc+0x336/0x440 [ 1698.806891] xas_create+0x34a/0x10d0 [ 1698.806911] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1698.806924] xas_store+0x8c/0x1c40 [ 1698.806946] __xa_store+0x164/0x2d0 [ 1698.815958] ? xa_delete_node+0x280/0x280 [ 1698.816455] ? trace_hardirqs_on+0x5b/0x180 [ 1698.816986] xa_store+0x31/0x50 [ 1698.817380] __io_uring_add_tctx_node+0x1cf/0x520 [ 1698.817930] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1698.818527] ? alloc_fd+0x2e7/0x670 [ 1698.818961] io_uring_setup+0x1fbb/0x2980 [ 1698.819459] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1698.820063] ? wait_for_completion_io+0x270/0x270 [ 1698.820641] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1698.821270] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1698.821878] do_syscall_64+0x33/0x40 [ 1698.822319] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1698.822927] RIP: 0033:0x7fcf2a53eb19 [ 1698.823361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1698.825541] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1698.826444] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1698.827277] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1698.828116] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1698.828964] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1698.829806] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1698.830680] CPU: 0 PID: 10897 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1698.832236] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1698.834087] Call Trace: [ 1698.834684] dump_stack+0x107/0x167 [ 1698.835501] should_fail.cold+0x5/0xa [ 1698.836359] ? xas_alloc+0x336/0x440 [ 1698.837200] should_failslab+0x5/0x20 [ 1698.838049] kmem_cache_alloc+0x5b/0x310 [ 1698.838969] xas_alloc+0x336/0x440 [ 1698.839775] xas_create+0x34a/0x10d0 [ 1698.840626] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1698.841804] xas_store+0x8c/0x1c40 [ 1698.842616] __xa_store+0x164/0x2d0 [ 1698.843432] ? xa_delete_node+0x280/0x280 [ 1698.844367] ? trace_hardirqs_on+0x5b/0x180 [ 1698.845343] xa_store+0x31/0x50 [ 1698.846084] __io_uring_add_tctx_node+0x1cf/0x520 [ 1698.847157] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1698.848322] ? alloc_fd+0x2e7/0x670 [ 1698.849158] io_uring_setup+0x1fbb/0x2980 [ 1698.850092] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1698.851222] ? wait_for_completion_io+0x270/0x270 [ 1698.852327] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1698.853503] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1698.854660] do_syscall_64+0x33/0x40 [ 1698.855493] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1698.856634] RIP: 0033:0x7fc39eed2b19 [ 1698.857474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1698.861554] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1698.863248] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1698.864839] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1698.866435] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1698.868020] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1698.869636] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1698.879929] FAULT_INJECTION: forcing a failure. [ 1698.879929] name failslab, interval 1, probability 0, space 0, times 0 [ 1698.882607] CPU: 0 PID: 10883 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1698.884236] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1698.886361] Call Trace: [ 1698.887037] dump_stack+0x107/0x167 [ 1698.887968] should_fail.cold+0x5/0xa [ 1698.888972] ? create_object.isra.0+0x3a/0xa30 [ 1698.890166] should_failslab+0x5/0x20 [ 1698.891123] kmem_cache_alloc+0x5b/0x310 [ 1698.892184] create_object.isra.0+0x3a/0xa30 [ 1698.893330] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1698.894609] kmem_cache_alloc_trace+0x151/0x320 [ 1698.895810] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1698.897139] ? io_import_iovec+0x1120/0x1120 [ 1698.898243] ? lock_downgrade+0x6d0/0x6d0 [ 1698.899213] ? do_raw_spin_lock+0x121/0x260 [ 1698.900218] ? rwlock_bug.part.0+0x90/0x90 [ 1698.901251] __io_uring_add_tctx_node+0x2c6/0x520 [ 1698.902488] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1698.903821] ? alloc_fd+0x2e7/0x670 [ 1698.904774] io_uring_setup+0x1fbb/0x2980 [ 1698.905853] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1698.907137] ? wait_for_completion_io+0x270/0x270 [ 1698.908392] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1698.909709] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1698.911037] do_syscall_64+0x33/0x40 [ 1698.911994] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1698.913302] RIP: 0033:0x7f4a0d16cb19 [ 1698.914264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1698.918908] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1698.920834] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1698.922591] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1698.924292] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1698.925893] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1698.927452] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:25:26 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 39) 10:25:26 executing program 3: socket$unix(0x1, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000100)=ANY=[@ANYBLOB="0118000000", @ANYRES32=r0, @ANYBLOB="02000000000000002e2f66696c653000"]) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000180)) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x9) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r2, r1, 0x0, 0x4000007ffffffc) 10:25:26 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 46) 10:25:26 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x5c8) 10:25:26 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 42) 10:25:26 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 33) 10:25:26 executing program 4: r0 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) r1 = epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, 0xffffffffffffffff, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000200)) [ 1713.969334] FAULT_INJECTION: forcing a failure. [ 1713.969334] name failslab, interval 1, probability 0, space 0, times 0 10:25:26 executing program 6: r0 = epoll_create1(0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r1, &(0x7f0000000040)='reno\x00', 0x5) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x8000000) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000000)={0x30000006}) r3 = epoll_create(0x3ff) r4 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000200)) r5 = openat$cgroup_ro(r2, &(0x7f00000000c0)='cgroup.stat\x00', 0x0, 0x0) r6 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r6, &(0x7f0000000040)='reno\x00', 0x5) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r6, &(0x7f0000000100)={0x80000019}) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r7, &(0x7f0000000040)='reno\x00', 0x5) r8 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r8, &(0x7f0000000040)='reno\x00', 0x5) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r7, @ANYRES32=r8, @ANYBLOB="008ea25d356bc0a9162afde36ce5300ea09b7d6d7ec985"]) [ 1713.971972] CPU: 1 PID: 10910 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1713.973726] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1713.975593] Call Trace: [ 1713.976195] dump_stack+0x107/0x167 [ 1713.977033] should_fail.cold+0x5/0xa [ 1713.977897] ? io_wq_create+0xeb/0xc00 [ 1713.978773] should_failslab+0x5/0x20 [ 1713.979637] __kmalloc+0x72/0x390 [ 1713.980402] FAULT_INJECTION: forcing a failure. [ 1713.980402] name failslab, interval 1, probability 0, space 0, times 0 [ 1713.982883] io_wq_create+0xeb/0xc00 [ 1713.983741] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1713.984887] ? io_import_iovec+0x1120/0x1120 [ 1713.985895] ? io_apoll_task_func+0x2d0/0x2d0 [ 1713.986899] ? __io_req_find_next+0x300/0x300 [ 1713.987920] ? do_raw_spin_lock+0x121/0x260 [ 1713.988932] ? rwlock_bug.part.0+0x90/0x90 [ 1713.989938] __io_uring_add_tctx_node+0x2c6/0x520 [ 1713.991068] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1713.992292] ? alloc_fd+0x2e7/0x670 [ 1713.993166] io_uring_setup+0x1fbb/0x2980 [ 1713.994149] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1713.995325] ? wait_for_completion_io+0x270/0x270 [ 1713.996468] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1713.997697] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1713.998898] do_syscall_64+0x33/0x40 [ 1713.999761] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.000946] RIP: 0033:0x7f4a0d16cb19 [ 1714.001816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1714.006075] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.007835] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1714.009485] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1714.011135] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1714.012783] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1714.014446] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1714.016142] CPU: 0 PID: 10915 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1714.017728] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1714.019505] Call Trace: [ 1714.020080] dump_stack+0x107/0x167 [ 1714.020875] should_fail.cold+0x5/0xa [ 1714.021721] ? create_object.isra.0+0x3a/0xa30 [ 1714.022703] should_failslab+0x5/0x20 [ 1714.023522] kmem_cache_alloc+0x5b/0x310 [ 1714.024404] ? mark_held_locks+0x9e/0xe0 [ 1714.025298] create_object.isra.0+0x3a/0xa30 [ 1714.026243] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1714.027339] kmem_cache_alloc+0x159/0x310 [ 1714.028251] xas_alloc+0x336/0x440 [ 1714.029012] xas_create+0x34a/0x10d0 [ 1714.029836] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1714.030964] xas_store+0x8c/0x1c40 [ 1714.031754] __xa_store+0x164/0x2d0 [ 1714.032543] ? xa_delete_node+0x280/0x280 [ 1714.033455] ? trace_hardirqs_on+0x5b/0x180 [ 1714.034392] xa_store+0x31/0x50 [ 1714.035104] __io_uring_add_tctx_node+0x1cf/0x520 [ 1714.036143] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1714.037281] ? alloc_fd+0x2e7/0x670 [ 1714.038080] io_uring_setup+0x1fbb/0x2980 [ 1714.038984] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1714.040076] ? wait_for_completion_io+0x270/0x270 [ 1714.041150] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1714.042276] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1714.043387] do_syscall_64+0x33/0x40 [ 1714.044186] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.045298] RIP: 0033:0x7fcf2a53eb19 [ 1714.046095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1714.050052] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.051696] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1714.053233] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1714.054762] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1714.056289] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1714.057823] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:25:27 executing program 4: r0 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) r1 = epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, 0xffffffffffffffff, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000200)) [ 1714.125372] FAULT_INJECTION: forcing a failure. [ 1714.125372] name failslab, interval 1, probability 0, space 0, times 0 [ 1714.128245] CPU: 1 PID: 10909 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1714.129882] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1714.131833] Call Trace: [ 1714.132458] dump_stack+0x107/0x167 [ 1714.133332] should_fail.cold+0x5/0xa [ 1714.134232] ? xas_alloc+0x336/0x440 [ 1714.135107] should_failslab+0x5/0x20 [ 1714.136004] kmem_cache_alloc+0x5b/0x310 [ 1714.136959] ? stack_trace_consume_entry+0x160/0x160 [ 1714.138162] xas_alloc+0x336/0x440 [ 1714.138997] xas_create+0x34a/0x10d0 [ 1714.139866] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1714.141152] xas_store+0x8c/0x1c40 [ 1714.141936] __xa_store+0x164/0x2d0 [ 1714.142767] ? xa_delete_node+0x280/0x280 [ 1714.143758] ? trace_hardirqs_on+0x5b/0x180 [ 1714.144788] xa_store+0x31/0x50 [ 1714.145587] __io_uring_add_tctx_node+0x1cf/0x520 [ 1714.146726] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1714.147898] ? alloc_fd+0x2e7/0x670 [ 1714.148694] io_uring_setup+0x1fbb/0x2980 [ 1714.149605] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1714.150684] ? wait_for_completion_io+0x270/0x270 [ 1714.151738] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1714.152861] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1714.153973] do_syscall_64+0x33/0x40 [ 1714.154770] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.155867] RIP: 0033:0x7fc343bc8b19 [ 1714.156660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1714.160606] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.162245] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1714.163776] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1714.165310] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1714.166840] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1714.168372] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:25:27 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)) r2 = epoll_create(0x28001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000200)) 10:25:27 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 43) [ 1714.195411] FAULT_INJECTION: forcing a failure. [ 1714.195411] name failslab, interval 1, probability 0, space 0, times 0 [ 1714.197913] CPU: 0 PID: 10927 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1714.199391] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1714.199972] selinux_netlink_send: 28 callbacks suppressed [ 1714.199991] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=35144 sclass=netlink_audit_socket pid=10908 comm=syz-executor.3 [ 1714.201179] Call Trace: [ 1714.201208] dump_stack+0x107/0x167 [ 1714.201234] should_fail.cold+0x5/0xa [ 1714.201258] ? create_object.isra.0+0x3a/0xa30 [ 1714.201279] should_failslab+0x5/0x20 [ 1714.201299] kmem_cache_alloc+0x5b/0x310 [ 1714.201330] ? mark_held_locks+0x9e/0xe0 [ 1714.210707] create_object.isra.0+0x3a/0xa30 [ 1714.211653] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1714.212744] kmem_cache_alloc+0x159/0x310 [ 1714.213664] xas_alloc+0x336/0x440 [ 1714.214436] xas_create+0x34a/0x10d0 [ 1714.215253] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1714.216373] xas_store+0x8c/0x1c40 [ 1714.217173] __xa_store+0x164/0x2d0 [ 1714.217965] ? xa_delete_node+0x280/0x280 [ 1714.218872] ? trace_hardirqs_on+0x5b/0x180 [ 1714.219799] xa_store+0x31/0x50 [ 1714.220522] __io_uring_add_tctx_node+0x1cf/0x520 [ 1714.221568] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1714.222706] ? alloc_fd+0x2e7/0x670 [ 1714.223505] io_uring_setup+0x1fbb/0x2980 [ 1714.224412] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1714.225510] ? wait_for_completion_io+0x270/0x270 [ 1714.226583] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1714.227704] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1714.228827] do_syscall_64+0x33/0x40 [ 1714.229648] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.230761] RIP: 0033:0x7fc39eed2b19 [ 1714.231565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1714.235564] RSP: 002b:00007fc39c427108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.237241] RAX: ffffffffffffffda RBX: 00007fc39efe6020 RCX: 00007fc39eed2b19 [ 1714.238779] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1714.240327] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1714.241899] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1714.243445] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1714.251352] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=34247 sclass=netlink_audit_socket pid=10908 comm=syz-executor.3 10:25:27 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000000)) r1 = epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000200)) [ 1714.270513] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=53893 sclass=netlink_audit_socket pid=10908 comm=syz-executor.3 [ 1714.282204] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=53481 sclass=netlink_audit_socket pid=10908 comm=syz-executor.3 10:25:27 executing program 6: ioctl$TCGETS2(0xffffffffffffffff, 0x802c542a, &(0x7f00000000c0)) r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) r3 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r3, &(0x7f0000000040)='reno\x00', 0x5) dup2(r2, r3) epoll_create(0x3ff) r4 = epoll_create(0x8001) epoll_wait(0xffffffffffffffff, &(0x7f0000000040)=[{}], 0x1, 0x1) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f00000001c0)) 10:25:27 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0xe00) 10:25:27 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 34) [ 1714.334933] FAULT_INJECTION: forcing a failure. [ 1714.334933] name failslab, interval 1, probability 0, space 0, times 0 [ 1714.337354] CPU: 0 PID: 10932 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1714.338811] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1714.340550] Call Trace: [ 1714.341124] dump_stack+0x107/0x167 [ 1714.341894] should_fail.cold+0x5/0xa [ 1714.342707] ? xas_alloc+0x336/0x440 [ 1714.343484] should_failslab+0x5/0x20 [ 1714.344303] kmem_cache_alloc+0x5b/0x310 [ 1714.345196] xas_alloc+0x336/0x440 [ 1714.345963] xas_create+0x34a/0x10d0 [ 1714.346781] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1714.347917] xas_store+0x8c/0x1c40 [ 1714.348706] __xa_store+0x164/0x2d0 [ 1714.349489] ? xa_delete_node+0x280/0x280 [ 1714.350408] ? trace_hardirqs_on+0x5b/0x180 [ 1714.351361] xa_store+0x31/0x50 [ 1714.352076] __io_uring_add_tctx_node+0x1cf/0x520 [ 1714.353135] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1714.354270] ? alloc_fd+0x2e7/0x670 [ 1714.355053] io_uring_setup+0x1fbb/0x2980 [ 1714.355937] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1714.357010] ? wait_for_completion_io+0x270/0x270 [ 1714.358051] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1714.359151] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1714.360238] do_syscall_64+0x33/0x40 [ 1714.361033] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.362113] RIP: 0033:0x7fcf2a53eb19 [ 1714.362895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1714.366785] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.368427] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1714.369930] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1714.371439] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1714.372943] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1714.374462] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1714.427854] FAULT_INJECTION: forcing a failure. [ 1714.427854] name failslab, interval 1, probability 0, space 0, times 0 [ 1714.430364] CPU: 1 PID: 10941 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1714.431828] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1714.433562] Call Trace: [ 1714.434126] dump_stack+0x107/0x167 [ 1714.434898] should_fail.cold+0x5/0xa [ 1714.435705] ? create_object.isra.0+0x3a/0xa30 [ 1714.436672] should_failslab+0x5/0x20 [ 1714.437491] kmem_cache_alloc+0x5b/0x310 [ 1714.438356] create_object.isra.0+0x3a/0xa30 [ 1714.439282] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1714.440358] __kmalloc+0x16e/0x390 [ 1714.441127] io_wq_create+0xeb/0xc00 [ 1714.441927] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1714.443004] ? io_import_iovec+0x1120/0x1120 [ 1714.443934] ? io_apoll_task_func+0x2d0/0x2d0 [ 1714.444878] ? __io_req_find_next+0x300/0x300 [ 1714.445920] ? do_raw_spin_lock+0x121/0x260 [ 1714.446860] ? rwlock_bug.part.0+0x90/0x90 [ 1714.447771] __io_uring_add_tctx_node+0x2c6/0x520 [ 1714.448799] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1714.449920] ? alloc_fd+0x2e7/0x670 [ 1714.450708] io_uring_setup+0x1fbb/0x2980 [ 1714.451599] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1714.452663] ? wait_for_completion_io+0x270/0x270 [ 1714.453716] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1714.454834] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1714.455923] do_syscall_64+0x33/0x40 [ 1714.456714] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.457799] RIP: 0033:0x7f4a0d16cb19 [ 1714.458591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 10:25:27 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 44) [ 1714.462468] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.464341] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1714.465869] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1714.467373] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1714.468868] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1714.470374] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:25:27 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 40) [ 1714.511951] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=35656 sclass=netlink_audit_socket pid=10908 comm=syz-executor.3 [ 1714.543212] FAULT_INJECTION: forcing a failure. [ 1714.543212] name failslab, interval 1, probability 0, space 0, times 0 [ 1714.545752] CPU: 1 PID: 10948 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1714.547269] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1714.549013] Call Trace: [ 1714.549586] dump_stack+0x107/0x167 [ 1714.550351] should_fail.cold+0x5/0xa [ 1714.551161] ? ___slab_alloc+0x155/0x700 [ 1714.552017] ? create_object.isra.0+0x3a/0xa30 [ 1714.552979] should_failslab+0x5/0x20 [ 1714.553783] kmem_cache_alloc+0x5b/0x310 [ 1714.554647] create_object.isra.0+0x3a/0xa30 [ 1714.555562] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1714.556635] kmem_cache_alloc+0x159/0x310 [ 1714.557528] xas_alloc+0x336/0x440 [ 1714.558282] xas_create+0x34a/0x10d0 [ 1714.559073] ? queued_spin_lock_slowpath+0xcc/0x8c0 [ 1714.560132] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1714.561241] xas_store+0x8c/0x1c40 [ 1714.562013] __xa_store+0x164/0x2d0 [ 1714.562782] ? xa_delete_node+0x280/0x280 [ 1714.563670] ? trace_hardirqs_on+0x5b/0x180 [ 1714.564589] xa_store+0x31/0x50 [ 1714.565293] __io_uring_add_tctx_node+0x1cf/0x520 [ 1714.566314] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1714.567407] ? alloc_fd+0x2e7/0x670 [ 1714.568188] io_uring_setup+0x1fbb/0x2980 [ 1714.569079] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1714.570141] ? wait_for_completion_io+0x270/0x270 [ 1714.571184] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1714.572292] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1714.573389] do_syscall_64+0x33/0x40 [ 1714.574174] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.575268] RIP: 0033:0x7fc343bc8b19 [ 1714.576061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1714.579991] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.581623] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1714.583121] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1714.584638] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1714.586150] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1714.587663] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1714.591931] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=10908 comm=syz-executor.3 [ 1714.600336] FAULT_INJECTION: forcing a failure. [ 1714.600336] name failslab, interval 1, probability 0, space 0, times 0 [ 1714.602739] CPU: 1 PID: 10947 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1714.604216] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1714.605970] Call Trace: [ 1714.606527] dump_stack+0x107/0x167 [ 1714.607294] should_fail.cold+0x5/0xa [ 1714.608097] ? create_object.isra.0+0x3a/0xa30 [ 1714.609066] should_failslab+0x5/0x20 [ 1714.609857] kmem_cache_alloc+0x5b/0x310 [ 1714.610720] ? mark_held_locks+0x9e/0xe0 [ 1714.611587] create_object.isra.0+0x3a/0xa30 [ 1714.612512] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1714.613603] kmem_cache_alloc+0x159/0x310 [ 1714.614487] xas_alloc+0x336/0x440 [ 1714.615247] xas_create+0x34a/0x10d0 [ 1714.616049] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1714.617164] xas_store+0x8c/0x1c40 [ 1714.617938] __xa_store+0x164/0x2d0 [ 1714.618708] ? xa_delete_node+0x280/0x280 [ 1714.619601] ? trace_hardirqs_on+0x5b/0x180 [ 1714.620526] xa_store+0x31/0x50 [ 1714.621230] __io_uring_add_tctx_node+0x1cf/0x520 [ 1714.622253] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1714.623348] ? alloc_fd+0x2e7/0x670 [ 1714.624128] io_uring_setup+0x1fbb/0x2980 [ 1714.625016] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1714.626077] ? wait_for_completion_io+0x270/0x270 [ 1714.627124] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1714.628239] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1714.629334] do_syscall_64+0x33/0x40 [ 1714.630117] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.631189] RIP: 0033:0x7fcf2a53eb19 [ 1714.631962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1714.635856] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.637466] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1714.638981] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1714.640485] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1714.642038] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1714.643532] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1714.655377] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=33608 sclass=netlink_audit_socket pid=10908 comm=syz-executor.3 [ 1714.661156] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=35140 sclass=netlink_audit_socket pid=10908 comm=syz-executor.3 [ 1714.721896] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=10908 comm=syz-executor.3 [ 1714.724848] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=21 sclass=netlink_audit_socket pid=10908 comm=syz-executor.3 10:25:45 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 45) 10:25:45 executing program 3: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14) connect$802154_dgram(r0, &(0x7f0000000080), 0x14) sendmmsg$sock(r0, &(0x7f00000021c0)=[{{0x0, 0x2303, 0x0}}], 0x324, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x301000, 0x0) setsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000140)=0x2, 0x4) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x8000000) sendto(r1, &(0x7f0000000180)="cde3452c5d1ff42cb6c0129c0e864ca5909e7afe234d1dec0fe3d04405e6a89c8a85f6be1a0102281e3f798b22f5e87c7d7af04792a456513fa956c4c1a7c826235a7f6c62063ac3d216f1f323778c7e347f21b4e09a5af3dffa95f396d8a0385395b7aa3a147f19e962d82de5e8540b1b30c4f82eadc0557567778d717cbfaaeef4bae09d0941c7d5dfb6145141f72e455ab7175a9f", 0x96, 0x4011, &(0x7f00000000c0)=@ax25={{0x3, @null, 0x6}, [@bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}, 0x80) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0) sendto(0xffffffffffffffff, &(0x7f0000001b00)="e7d566f34fd6d354d68c5a59fa916e1f6734c5d0fcc47912b50d4e", 0x1b, 0x0, 0x0, 0x0) 10:25:45 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 47) 10:25:45 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000000)) r1 = epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000200)) 10:25:45 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="210000000000000800000000005bd8bb"]) r5 = mq_open(&(0x7f0000000080)='\x00', 0x0, 0x108, &(0x7f00000000c0)={0x88c, 0x100000001, 0x200}) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000100)={0x1}) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:25:45 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 41) 10:25:45 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x1100) 10:25:45 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 35) [ 1732.577445] FAULT_INJECTION: forcing a failure. [ 1732.577445] name failslab, interval 1, probability 0, space 0, times 0 [ 1732.579671] CPU: 1 PID: 10963 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1732.581012] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1732.582594] Call Trace: [ 1732.583100] dump_stack+0x107/0x167 [ 1732.583792] should_fail.cold+0x5/0xa [ 1732.584517] ? xas_alloc+0x336/0x440 [ 1732.585236] should_failslab+0x5/0x20 [ 1732.585951] kmem_cache_alloc+0x5b/0x310 [ 1732.586713] xas_alloc+0x336/0x440 [ 1732.587388] xas_create+0x34a/0x10d0 [ 1732.588112] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1732.589102] xas_store+0x8c/0x1c40 [ 1732.589803] __xa_store+0x164/0x2d0 [ 1732.590490] ? xa_delete_node+0x280/0x280 [ 1732.591279] ? trace_hardirqs_on+0x5b/0x180 [ 1732.592110] xa_store+0x31/0x50 [ 1732.592726] __io_uring_add_tctx_node+0x1cf/0x520 [ 1732.593647] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1732.594634] ? alloc_fd+0x2e7/0x670 [ 1732.595334] io_uring_setup+0x1fbb/0x2980 [ 1732.596134] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1732.597086] ? wait_for_completion_io+0x270/0x270 [ 1732.598030] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1732.599023] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1732.599836] FAULT_INJECTION: forcing a failure. [ 1732.599836] name failslab, interval 1, probability 0, space 0, times 0 [ 1732.599989] do_syscall_64+0x33/0x40 [ 1732.603594] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1732.604552] RIP: 0033:0x7fcf2a53eb19 [ 1732.605261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1732.608550] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1732.609912] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1732.611173] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1732.612457] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1732.613729] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1732.614998] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1732.616302] CPU: 0 PID: 10966 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1732.618151] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1732.620314] Call Trace: [ 1732.621007] dump_stack+0x107/0x167 [ 1732.621979] should_fail.cold+0x5/0xa [ 1732.622814] ? io_wq_create+0x6ef/0xc00 [ 1732.623679] should_failslab+0x5/0x20 [ 1732.624505] kmem_cache_alloc_node_trace+0x59/0x340 [ 1732.625615] io_wq_create+0x6ef/0xc00 [ 1732.626455] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1732.627560] ? io_import_iovec+0x1120/0x1120 [ 1732.628517] ? io_apoll_task_func+0x2d0/0x2d0 [ 1732.629495] ? __io_req_find_next+0x300/0x300 [ 1732.630464] ? do_raw_spin_lock+0x121/0x260 [ 1732.631398] ? rwlock_bug.part.0+0x90/0x90 [ 1732.632302] __io_uring_add_tctx_node+0x2c6/0x520 [ 1732.633342] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1732.634485] ? alloc_fd+0x2e7/0x670 [ 1732.635280] io_uring_setup+0x1fbb/0x2980 [ 1732.636198] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1732.637314] ? wait_for_completion_io+0x270/0x270 [ 1732.638396] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1732.639543] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1732.640672] do_syscall_64+0x33/0x40 [ 1732.641500] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1732.642620] RIP: 0033:0x7f4a0d16cb19 [ 1732.643429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1732.647442] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1732.649185] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1732.650770] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1732.652313] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1732.653862] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1732.655404] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:25:45 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000000)) r1 = epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000200)) [ 1732.677762] FAULT_INJECTION: forcing a failure. [ 1732.677762] name failslab, interval 1, probability 0, space 0, times 0 [ 1732.680930] CPU: 0 PID: 10968 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1732.682704] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1732.683276] FAULT_INJECTION: forcing a failure. [ 1732.683276] name failslab, interval 1, probability 0, space 0, times 0 [ 1732.684785] Call Trace: [ 1732.684817] dump_stack+0x107/0x167 [ 1732.684844] should_fail.cold+0x5/0xa [ 1732.689138] ? xas_alloc+0x336/0x440 [ 1732.690254] should_failslab+0x5/0x20 [ 1732.691235] kmem_cache_alloc+0x5b/0x310 [ 1732.692264] xas_alloc+0x336/0x440 [ 1732.693177] xas_create+0x34a/0x10d0 [ 1732.694132] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1732.695453] xas_store+0x8c/0x1c40 [ 1732.696370] __xa_store+0x164/0x2d0 [ 1732.697297] ? xa_delete_node+0x280/0x280 [ 1732.698322] ? trace_hardirqs_on+0x5b/0x180 [ 1732.699379] xa_store+0x31/0x50 [ 1732.700203] __io_uring_add_tctx_node+0x1cf/0x520 [ 1732.701411] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1732.702714] ? alloc_fd+0x2e7/0x670 [ 1732.703636] io_uring_setup+0x1fbb/0x2980 [ 1732.704680] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1732.705949] ? wait_for_completion_io+0x270/0x270 [ 1732.707180] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1732.708489] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1732.709783] do_syscall_64+0x33/0x40 [ 1732.710681] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1732.711919] RIP: 0033:0x7fc39eed2b19 [ 1732.712827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1732.717248] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1732.719135] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1732.720867] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1732.722610] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1732.724343] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1732.726079] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1732.727848] CPU: 1 PID: 10956 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1732.728994] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1732.730380] Call Trace: [ 1732.730808] dump_stack+0x107/0x167 [ 1732.731398] should_fail.cold+0x5/0xa [ 1732.732016] ? xas_alloc+0x336/0x440 [ 1732.732620] should_failslab+0x5/0x20 [ 1732.733236] kmem_cache_alloc+0x5b/0x310 [ 1732.733908] xas_alloc+0x336/0x440 [ 1732.734497] xas_create+0x34a/0x10d0 [ 1732.735123] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1732.735982] xas_store+0x8c/0x1c40 [ 1732.736585] __xa_store+0x164/0x2d0 [ 1732.737196] ? xa_delete_node+0x280/0x280 [ 1732.737890] ? trace_hardirqs_on+0x5b/0x180 [ 1732.738613] xa_store+0x31/0x50 [ 1732.739179] __io_uring_add_tctx_node+0x1cf/0x520 [ 1732.739968] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1732.740817] ? alloc_fd+0x2e7/0x670 [ 1732.741430] io_uring_setup+0x1fbb/0x2980 [ 1732.742121] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1732.742948] ? wait_for_completion_io+0x270/0x270 [ 1732.743744] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1732.744602] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1732.745446] do_syscall_64+0x33/0x40 [ 1732.746042] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1732.746862] RIP: 0033:0x7fc343bc8b19 [ 1732.747448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1732.750378] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1732.751594] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1732.752722] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1732.753851] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1732.755197] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1732.756597] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:25:45 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000001c0)) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r4, 0x8000000) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000200)={0xf}) 10:25:45 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 46) [ 1732.843248] FAULT_INJECTION: forcing a failure. [ 1732.843248] name failslab, interval 1, probability 0, space 0, times 0 [ 1732.845067] CPU: 1 PID: 10980 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1732.846131] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1732.847397] Call Trace: [ 1732.847810] dump_stack+0x107/0x167 [ 1732.848370] should_fail.cold+0x5/0xa [ 1732.848953] ? create_object.isra.0+0x3a/0xa30 [ 1732.849654] should_failslab+0x5/0x20 [ 1732.850233] kmem_cache_alloc+0x5b/0x310 [ 1732.850853] ? mark_held_locks+0x9e/0xe0 [ 1732.851473] create_object.isra.0+0x3a/0xa30 [ 1732.852132] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1732.852900] kmem_cache_alloc+0x159/0x310 [ 1732.853539] xas_alloc+0x336/0x440 [ 1732.854076] xas_create+0x34a/0x10d0 [ 1732.854649] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1732.855440] xas_store+0x8c/0x1c40 [ 1732.855988] __xa_store+0x164/0x2d0 [ 1732.856551] ? xa_delete_node+0x280/0x280 [ 1732.857365] ? trace_hardirqs_on+0x5b/0x180 [ 1732.858208] xa_store+0x31/0x50 [ 1732.858855] __io_uring_add_tctx_node+0x1cf/0x520 [ 1732.859790] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1732.860793] ? alloc_fd+0x2e7/0x670 [ 1732.861529] io_uring_setup+0x1fbb/0x2980 [ 1732.862277] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1732.863120] ? wait_for_completion_io+0x270/0x270 [ 1732.864087] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1732.865100] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1732.865968] do_syscall_64+0x33/0x40 [ 1732.866561] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1732.867348] RIP: 0033:0x7fcf2a53eb19 [ 1732.867953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1732.871477] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1732.872934] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1732.874310] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1732.875661] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1732.876951] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1732.878235] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:25:45 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:25:45 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x2000) 10:25:45 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) fcntl$getownex(r4, 0x10, &(0x7f0000002700)) r5 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)) r6 = openat$bsg(0xffffffffffffff9c, &(0x7f0000002740), 0x200000, 0x0) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r7, &(0x7f0000000040)='reno\x00', 0x5) dup2(r6, r7) 10:25:45 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x2e00) 10:25:45 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:25:45 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 48) [ 1733.064204] FAULT_INJECTION: forcing a failure. [ 1733.064204] name failslab, interval 1, probability 0, space 0, times 0 [ 1733.066114] CPU: 1 PID: 10996 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1733.067132] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1733.068407] Call Trace: [ 1733.068751] dump_stack+0x107/0x167 [ 1733.069281] should_fail.cold+0x5/0xa [ 1733.069783] ? create_object.isra.0+0x3a/0xa30 [ 1733.070387] should_failslab+0x5/0x20 [ 1733.070916] kmem_cache_alloc+0x5b/0x310 [ 1733.071464] ? mark_held_locks+0x9e/0xe0 [ 1733.072012] create_object.isra.0+0x3a/0xa30 [ 1733.072575] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1733.073266] kmem_cache_alloc+0x159/0x310 [ 1733.073813] xas_alloc+0x336/0x440 [ 1733.074278] xas_create+0x34a/0x10d0 [ 1733.074771] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1733.075448] xas_store+0x8c/0x1c40 [ 1733.075918] __xa_store+0x164/0x2d0 [ 1733.076387] ? xa_delete_node+0x280/0x280 [ 1733.076933] ? trace_hardirqs_on+0x5b/0x180 [ 1733.077495] xa_store+0x31/0x50 [ 1733.077927] __io_uring_add_tctx_node+0x1cf/0x520 [ 1733.078542] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1733.079210] ? alloc_fd+0x2e7/0x670 [ 1733.079683] io_uring_setup+0x1fbb/0x2980 [ 1733.080219] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1733.080921] ? wait_for_completion_io+0x270/0x270 [ 1733.081625] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1733.082295] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1733.082951] do_syscall_64+0x33/0x40 [ 1733.083426] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1733.084075] RIP: 0033:0x7fc39eed2b19 [ 1733.084549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1733.086910] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1733.087881] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1733.088781] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1733.089695] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1733.090590] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1733.091483] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:26:01 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 47) 10:26:01 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) fcntl$getownex(r4, 0x10, &(0x7f0000002700)) r5 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)) r6 = openat$bsg(0xffffffffffffff9c, &(0x7f0000002740), 0x200000, 0x0) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r7, &(0x7f0000000040)='reno\x00', 0x5) dup2(r6, r7) 10:26:01 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x3000) 10:26:01 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:26:01 executing program 6: r0 = epoll_create1(0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = epoll_create(0x3ff) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) mq_timedsend(0xffffffffffffffff, 0x0, 0xfffffffffffffea8, 0x8cd, 0xfffffffffffffffc) epoll_create(0x9) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000200)) epoll_create(0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) 10:26:01 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 42) 10:26:01 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 36) 10:26:01 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 49) [ 1748.571378] FAULT_INJECTION: forcing a failure. [ 1748.571378] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.573037] CPU: 1 PID: 11015 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1748.574041] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.575223] Call Trace: [ 1748.575616] dump_stack+0x107/0x167 [ 1748.576124] FAULT_INJECTION: forcing a failure. [ 1748.576124] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.577690] should_fail.cold+0x5/0xa [ 1748.578228] ? create_object.isra.0+0x3a/0xa30 [ 1748.578871] should_failslab+0x5/0x20 [ 1748.579406] kmem_cache_alloc+0x5b/0x310 [ 1748.579979] ? mark_held_locks+0x9e/0xe0 [ 1748.580553] create_object.isra.0+0x3a/0xa30 [ 1748.581171] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.581905] kmem_cache_alloc+0x159/0x310 [ 1748.582496] xas_alloc+0x336/0x440 [ 1748.583004] xas_create+0x34a/0x10d0 [ 1748.583547] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1748.584289] xas_store+0x8c/0x1c40 [ 1748.584804] __xa_store+0x164/0x2d0 [ 1748.585339] ? xa_delete_node+0x280/0x280 [ 1748.585934] ? trace_hardirqs_on+0x5b/0x180 [ 1748.586552] xa_store+0x31/0x50 [ 1748.587024] __io_uring_add_tctx_node+0x1cf/0x520 [ 1748.587705] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1748.588440] ? alloc_fd+0x2e7/0x670 [ 1748.588960] io_uring_setup+0x1fbb/0x2980 [ 1748.589560] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1748.590271] ? wait_for_completion_io+0x270/0x270 [ 1748.590971] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.591706] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.592440] do_syscall_64+0x33/0x40 [ 1748.592967] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1748.593708] RIP: 0033:0x7fc343bc8b19 [ 1748.594240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.596825] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1748.597911] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1748.598915] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1748.599918] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1748.600919] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1748.601947] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1748.602986] CPU: 0 PID: 11009 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1748.604628] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.605713] FAULT_INJECTION: forcing a failure. [ 1748.605713] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.606534] Call Trace: [ 1748.606566] dump_stack+0x107/0x167 [ 1748.606593] should_fail.cold+0x5/0xa [ 1748.610389] ? create_object.isra.0+0x3a/0xa30 [ 1748.611419] should_failslab+0x5/0x20 [ 1748.612282] kmem_cache_alloc+0x5b/0x310 [ 1748.613204] ? io_wq_create+0x114/0xc00 [ 1748.614116] create_object.isra.0+0x3a/0xa30 [ 1748.615109] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.616340] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1748.617507] io_wq_create+0x6ef/0xc00 [ 1748.618402] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1748.619553] ? io_import_iovec+0x1120/0x1120 [ 1748.620552] ? io_apoll_task_func+0x2d0/0x2d0 [ 1748.621625] ? __io_req_find_next+0x300/0x300 [ 1748.622694] ? do_raw_spin_lock+0x121/0x260 [ 1748.623714] ? rwlock_bug.part.0+0x90/0x90 [ 1748.624754] __io_uring_add_tctx_node+0x2c6/0x520 [ 1748.625921] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1748.627156] ? alloc_fd+0x2e7/0x670 [ 1748.628015] io_uring_setup+0x1fbb/0x2980 [ 1748.629035] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1748.630265] ? wait_for_completion_io+0x270/0x270 [ 1748.631466] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.632737] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.633973] do_syscall_64+0x33/0x40 [ 1748.634879] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1748.636118] RIP: 0033:0x7f4a0d16cb19 [ 1748.637025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.641437] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1748.643225] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1748.644944] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1748.646616] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1748.648357] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1748.650085] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1748.651822] CPU: 1 PID: 11016 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1748.652802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.653955] Call Trace: [ 1748.654321] dump_stack+0x107/0x167 [ 1748.654823] should_fail.cold+0x5/0xa [ 1748.655351] ? create_object.isra.0+0x3a/0xa30 [ 1748.655977] should_failslab+0x5/0x20 [ 1748.656407] FAULT_INJECTION: forcing a failure. [ 1748.656407] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.656496] kmem_cache_alloc+0x5b/0x310 [ 1748.656519] ? mark_held_locks+0x9e/0xe0 [ 1748.660267] create_object.isra.0+0x3a/0xa30 [ 1748.660870] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.661581] kmem_cache_alloc+0x159/0x310 [ 1748.662152] xas_alloc+0x336/0x440 [ 1748.662643] xas_create+0x34a/0x10d0 [ 1748.663177] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1748.663910] xas_store+0x8c/0x1c40 [ 1748.664415] __xa_store+0x164/0x2d0 [ 1748.664918] ? xa_delete_node+0x280/0x280 [ 1748.665500] ? trace_hardirqs_on+0x5b/0x180 [ 1748.666099] xa_store+0x31/0x50 [ 1748.666555] __io_uring_add_tctx_node+0x1cf/0x520 [ 1748.667214] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1748.667933] ? alloc_fd+0x2e7/0x670 [ 1748.668443] io_uring_setup+0x1fbb/0x2980 [ 1748.669014] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1748.669703] ? wait_for_completion_io+0x270/0x270 [ 1748.670376] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.671089] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.671788] do_syscall_64+0x33/0x40 [ 1748.672296] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1748.672998] RIP: 0033:0x7fcf2a53eb19 [ 1748.673505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.676000] RSP: 002b:00007fcf27a93108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1748.677036] RAX: ffffffffffffffda RBX: 00007fcf2a652020 RCX: 00007fcf2a53eb19 [ 1748.678014] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1748.678978] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1748.679951] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1748.680913] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1748.681924] CPU: 0 PID: 11013 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1748.683606] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.685622] Call Trace: [ 1748.686270] dump_stack+0x107/0x167 [ 1748.687140] should_fail.cold+0x5/0xa [ 1748.688067] ? create_object.isra.0+0x3a/0xa30 [ 1748.689162] should_failslab+0x5/0x20 [ 1748.690070] kmem_cache_alloc+0x5b/0x310 [ 1748.691027] ? mark_held_locks+0x9e/0xe0 [ 1748.692010] create_object.isra.0+0x3a/0xa30 [ 1748.693055] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.694283] kmem_cache_alloc+0x159/0x310 [ 1748.695269] xas_alloc+0x336/0x440 [ 1748.696135] xas_create+0x34a/0x10d0 10:26:01 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) fcntl$getownex(r4, 0x10, &(0x7f0000002700)) r5 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)) r6 = openat$bsg(0xffffffffffffff9c, &(0x7f0000002740), 0x200000, 0x0) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r7, &(0x7f0000000040)='reno\x00', 0x5) dup2(r6, r7) [ 1748.697050] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1748.698536] xas_store+0x8c/0x1c40 [ 1748.699427] __xa_store+0x164/0x2d0 [ 1748.700306] ? xa_delete_node+0x280/0x280 [ 1748.701299] ? trace_hardirqs_on+0x5b/0x180 [ 1748.702328] xa_store+0x31/0x50 [ 1748.703127] __io_uring_add_tctx_node+0x1cf/0x520 [ 1748.704302] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1748.705573] ? alloc_fd+0x2e7/0x670 [ 1748.706463] io_uring_setup+0x1fbb/0x2980 [ 1748.707483] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1748.708672] ? wait_for_completion_io+0x270/0x270 [ 1748.709884] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.711122] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.712388] do_syscall_64+0x33/0x40 [ 1748.713294] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1748.714549] RIP: 0033:0x7fc39eed2b19 [ 1748.715465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.719870] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1748.721682] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1748.723420] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1748.725144] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1748.726867] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1748.728534] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:26:01 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) fcntl$getownex(r4, 0x10, &(0x7f0000002700)) r5 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)) r6 = openat$bsg(0xffffffffffffff9c, &(0x7f0000002740), 0x200000, 0x0) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r7, &(0x7f0000000040)='reno\x00', 0x5) dup2(r6, r7) 10:26:01 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r5 = syz_open_dev$vcsu(&(0x7f0000000180), 0x6c2, 0x400) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f0000000400)={0x60001008}) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000040)="0d19dc1faf1d15e33a7f1d031172fa369c740835dfc839bdf8b95db69d68d6973ed95c267fd5822ce1e614afff5788acbde4c284695ea8ee96e87569560d430c0047ac1dbbff282b08f93c39cbcb1af7945c50fd85b4294f8dd3c2fb608c756d44e4bd2fd9917fa7f98fe35aaeca26a63b4eafec8de41847d9ba09b957b5f011c860cefca2aabb79ce2f5e86c13515df33fd91ae05d269918ff6345906bc6c005578140a16148decafb5b2d4e436b1530fac92b7e21b41ca47bd74dcca4dc78a9b48", 0xc2}, {&(0x7f0000000240)="e460e1eed2754dc40d91fda2b24189d70b3dd74d3486974e6a4b1fc2ed1d3caf52b06473021bb6ac9bfc104e779cd302681cd04718ab2c9db5de7fd0027eb2d113db4a60b5c469b17a342e9d80483f43df52bcfc311f1fc4777e1febc2af3c67713862c7c80627993dc64ce497425bba966a5a9d80e8aff3bca0c65d71c11606d3565f4ea8bbb17510b0049a1199d37c745719f224e2b61a2369c0ae1ce73fd3df91ee5cb1f7a87995737c5a3a89", 0xae}, {&(0x7f0000000300)="6aa854700dcdccd6b91f8f6ad360fd637895120f799836060aba38e5edcced63fba7fce9ecac623bd2140bc72ba28440a74c70668dd574d649d2a5e6d939e98044e6f9f82f4f68245d1d9688117bb65561caa1aa2fbd91c6be67563918dd75df1d76d2567245eae8b4fa9fc0981a1eea190133fb40f4c61f7cc9c030d077bc52b33964abfe2af27e3b10d48bed3f9aac935594d0aab5e470a8b9d63472ee6bd3e7d682a6370fc0f6c7018e41c58ff352ba09c4573e5cbd4e74f153e5f435aff7cc23e07c205a997ace8bbef9028006b9448b724a219e9b74c3dc49a7cd55004f52c0", 0xe2}], 0x3) 10:26:01 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 43) 10:26:01 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1748.814887] FAULT_INJECTION: forcing a failure. [ 1748.814887] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.816408] CPU: 1 PID: 11026 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1748.817299] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.818359] Call Trace: [ 1748.818702] dump_stack+0x107/0x167 [ 1748.819178] should_fail.cold+0x5/0xa [ 1748.819675] ? xas_alloc+0x336/0x440 [ 1748.820153] should_failslab+0x5/0x20 [ 1748.820639] kmem_cache_alloc+0x5b/0x310 [ 1748.821156] xas_alloc+0x336/0x440 [ 1748.821623] xas_create+0x34a/0x10d0 [ 1748.822112] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1748.822788] xas_store+0x8c/0x1c40 [ 1748.823261] __xa_store+0x164/0x2d0 [ 1748.823729] ? xa_delete_node+0x280/0x280 [ 1748.824260] ? trace_hardirqs_on+0x5b/0x180 [ 1748.824820] xa_store+0x31/0x50 [ 1748.825244] __io_uring_add_tctx_node+0x1cf/0x520 [ 1748.825860] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1748.826528] ? alloc_fd+0x2e7/0x670 [ 1748.826999] io_uring_setup+0x1fbb/0x2980 [ 1748.827540] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1748.828179] ? wait_for_completion_io+0x270/0x270 [ 1748.828812] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.829492] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.830154] do_syscall_64+0x33/0x40 [ 1748.830625] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1748.831286] RIP: 0033:0x7fc343bc8b19 [ 1748.831756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.834094] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1748.835067] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1748.835952] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1748.836836] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1748.837727] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1748.838611] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:26:01 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x4000) 10:26:01 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 50) 10:26:01 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) fcntl$getownex(r4, 0x10, &(0x7f0000002700)) r5 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)) openat$bsg(0xffffffffffffff9c, &(0x7f0000002740), 0x200000, 0x0) r6 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r6, &(0x7f0000000040)='reno\x00', 0x5) [ 1748.922858] FAULT_INJECTION: forcing a failure. [ 1748.922858] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.924336] CPU: 1 PID: 11035 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1748.925163] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.926159] Call Trace: [ 1748.926478] dump_stack+0x107/0x167 [ 1748.926914] should_fail.cold+0x5/0xa [ 1748.927374] ? create_object.isra.0+0x3a/0xa30 [ 1748.927916] should_failslab+0x5/0x20 [ 1748.928368] kmem_cache_alloc+0x5b/0x310 [ 1748.928857] ? mark_held_locks+0x9e/0xe0 [ 1748.929355] create_object.isra.0+0x3a/0xa30 [ 1748.929881] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.930489] kmem_cache_alloc+0x159/0x310 [ 1748.930995] xas_alloc+0x336/0x440 [ 1748.931423] xas_create+0x34a/0x10d0 [ 1748.931879] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1748.932513] xas_store+0x8c/0x1c40 [ 1748.932955] __xa_store+0x164/0x2d0 [ 1748.933407] ? xa_delete_node+0x280/0x280 [ 1748.933909] ? trace_hardirqs_on+0x5b/0x180 [ 1748.934425] xa_store+0x31/0x50 [ 1748.934819] __io_uring_add_tctx_node+0x1cf/0x520 [ 1748.935389] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1748.936006] ? alloc_fd+0x2e7/0x670 [ 1748.936445] io_uring_setup+0x1fbb/0x2980 [ 1748.936944] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1748.937550] ? wait_for_completion_io+0x270/0x270 [ 1748.938136] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.938757] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.939372] do_syscall_64+0x33/0x40 [ 1748.939815] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1748.940423] RIP: 0033:0x7fc39eed2b19 [ 1748.940865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.943048] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1748.943960] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1748.944801] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1748.945650] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1748.946489] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1748.947328] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:26:17 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 48) 10:26:17 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0xc805) [ 1764.320638] FAULT_INJECTION: forcing a failure. [ 1764.320638] name failslab, interval 1, probability 0, space 0, times 0 [ 1764.322470] CPU: 1 PID: 11049 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1764.323559] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1764.324878] Call Trace: [ 1764.325305] dump_stack+0x107/0x167 [ 1764.325909] should_fail.cold+0x5/0xa 10:26:17 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:26:17 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 44) 10:26:17 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) epoll_create(0x8001) r3 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r3, &(0x7f0000000040)='reno\x00', 0x5) ioctl$BTRFS_IOC_QUOTA_CTL(r3, 0xc0109428, &(0x7f00000000c0)={0x2, 0x40}) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) write$tcp_congestion(r4, &(0x7f0000000140)='yeah\x00', 0x5) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) r6 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r6, &(0x7f0000000040)='reno\x00', 0x5) ioctl$EXT4_IOC_SWAP_BOOT(r6, 0x6611) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x20010, r5, 0x8000000) r7 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x40, 0x0) epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r0, &(0x7f0000000040)={0x10000008}) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x189000, 0x80) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:26:17 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) fcntl$getownex(r4, 0x10, &(0x7f0000002700)) r5 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)) openat$bsg(0xffffffffffffff9c, &(0x7f0000002740), 0x200000, 0x0) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 10:26:17 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 51) 10:26:17 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 37) [ 1764.326538] ? xas_alloc+0x336/0x440 [ 1764.327263] should_failslab+0x5/0x20 [ 1764.327904] kmem_cache_alloc+0x5b/0x310 [ 1764.328565] xas_alloc+0x336/0x440 [ 1764.329147] xas_create+0x34a/0x10d0 [ 1764.329761] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1764.330613] xas_store+0x8c/0x1c40 [ 1764.331210] __xa_store+0x164/0x2d0 [ 1764.331797] ? xa_delete_node+0x280/0x280 [ 1764.332474] ? trace_hardirqs_on+0x5b/0x180 [ 1764.333179] xa_store+0x31/0x50 [ 1764.333712] __io_uring_add_tctx_node+0x1cf/0x520 [ 1764.334480] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1764.335338] ? alloc_fd+0x2e7/0x670 [ 1764.335939] io_uring_setup+0x1fbb/0x2980 [ 1764.336598] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1764.337417] ? wait_for_completion_io+0x270/0x270 [ 1764.338211] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1764.339051] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1764.339889] do_syscall_64+0x33/0x40 [ 1764.340494] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1764.341325] RIP: 0033:0x7fc39eed2b19 [ 1764.341933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1764.344860] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1764.346065] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1764.347171] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1764.348280] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1764.349436] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1764.350578] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1764.358500] FAULT_INJECTION: forcing a failure. [ 1764.358500] name failslab, interval 1, probability 0, space 0, times 0 [ 1764.360342] CPU: 1 PID: 11047 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1764.361463] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1764.362793] Call Trace: [ 1764.363218] dump_stack+0x107/0x167 [ 1764.363801] should_fail.cold+0x5/0xa [ 1764.364405] ? ___slab_alloc+0x155/0x700 [ 1764.365058] ? create_object.isra.0+0x3a/0xa30 [ 1764.365802] should_failslab+0x5/0x20 [ 1764.366406] kmem_cache_alloc+0x5b/0x310 [ 1764.367057] create_object.isra.0+0x3a/0xa30 [ 1764.367800] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1764.367821] kmem_cache_alloc+0x159/0x310 [ 1764.367841] xas_alloc+0x336/0x440 [ 1764.367859] xas_create+0x34a/0x10d0 [ 1764.367885] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1764.367902] xas_store+0x8c/0x1c40 [ 1764.367932] __xa_store+0x164/0x2d0 [ 1764.367949] ? xa_delete_node+0x280/0x280 [ 1764.367971] ? trace_hardirqs_on+0x5b/0x180 [ 1764.367993] xa_store+0x31/0x50 [ 1764.368010] __io_uring_add_tctx_node+0x1cf/0x520 10:26:17 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:26:17 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x34000) [ 1764.368026] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1764.368038] ? alloc_fd+0x2e7/0x670 [ 1764.368064] io_uring_setup+0x1fbb/0x2980 [ 1764.368087] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1764.368100] ? wait_for_completion_io+0x270/0x270 10:26:17 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 45) 10:26:17 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) fcntl$getownex(r4, 0x10, &(0x7f0000002700)) r5 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)) openat$bsg(0xffffffffffffff9c, &(0x7f0000002740), 0x200000, 0x0) [ 1764.368136] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1764.368152] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1764.368171] do_syscall_64+0x33/0x40 [ 1764.368186] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1764.368195] RIP: 0033:0x7fc343bc8b19 [ 1764.368209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 10:26:17 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 38) [ 1764.368217] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1764.368232] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1764.368240] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1764.368249] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1764.368257] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1764.368265] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1764.370050] FAULT_INJECTION: forcing a failure. [ 1764.370050] name failslab, interval 1, probability 0, space 0, times 0 [ 1764.370073] CPU: 0 PID: 11058 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1764.370085] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 10:26:17 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 52) [ 1764.370092] Call Trace: [ 1764.370119] dump_stack+0x107/0x167 [ 1764.370143] should_fail.cold+0x5/0xa [ 1764.370167] ? __io_uring_add_tctx_node+0x15c/0x520 10:26:17 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 46) 10:26:17 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 49) [ 1764.370187] should_failslab+0x5/0x20 [ 1764.370209] kmem_cache_alloc_trace+0x55/0x320 [ 1764.370237] __io_uring_add_tctx_node+0x15c/0x520 [ 1764.370260] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1764.370280] ? alloc_fd+0x2e7/0x670 [ 1764.370315] io_uring_setup+0x1fbb/0x2980 [ 1764.370347] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1764.370366] ? wait_for_completion_io+0x270/0x270 [ 1764.370421] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1764.370444] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1764.370469] do_syscall_64+0x33/0x40 [ 1764.370490] entry_SYSCALL_64_after_hwframe+0x67/0xd1 10:26:17 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1764.370504] RIP: 0033:0x7f4a0d16cb19 [ 1764.370530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1764.370542] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1764.370566] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1764.370578] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1764.370590] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1764.370602] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1764.370614] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1764.452840] FAULT_INJECTION: forcing a failure. [ 1764.452840] name failslab, interval 1, probability 0, space 0, times 0 [ 1764.452857] CPU: 1 PID: 11043 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1764.452865] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 10:26:17 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) fcntl$getownex(r4, 0x10, &(0x7f0000002700)) r5 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)) [ 1764.452870] Call Trace: [ 1764.452889] dump_stack+0x107/0x167 [ 1764.452906] should_fail.cold+0x5/0xa [ 1764.452924] ? create_object.isra.0+0x3a/0xa30 [ 1764.452938] should_failslab+0x5/0x20 [ 1764.452952] kmem_cache_alloc+0x5b/0x310 [ 1764.452967] ? mark_held_locks+0x9e/0xe0 [ 1764.452985] create_object.isra.0+0x3a/0xa30 [ 1764.452997] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1764.453017] kmem_cache_alloc+0x159/0x310 [ 1764.453037] xas_alloc+0x336/0x440 [ 1764.453054] xas_create+0x34a/0x10d0 [ 1764.453079] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1764.453096] xas_store+0x8c/0x1c40 [ 1764.453124] __xa_store+0x164/0x2d0 [ 1764.453141] ? xa_delete_node+0x280/0x280 [ 1764.453163] ? trace_hardirqs_on+0x5b/0x180 [ 1764.453184] xa_store+0x31/0x50 [ 1764.453201] __io_uring_add_tctx_node+0x1cf/0x520 [ 1764.453216] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1764.453229] ? alloc_fd+0x2e7/0x670 [ 1764.453254] io_uring_setup+0x1fbb/0x2980 [ 1764.453276] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1764.453289] ? wait_for_completion_io+0x270/0x270 [ 1764.453324] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1764.453340] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1764.453358] do_syscall_64+0x33/0x40 [ 1764.453372] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1764.453381] RIP: 0033:0x7fcf2a53eb19 [ 1764.453394] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1764.453411] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1764.453427] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1764.453435] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1764.453444] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1764.453452] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1764.453460] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1764.479467] FAULT_INJECTION: forcing a failure. [ 1764.479467] name failslab, interval 1, probability 0, space 0, times 0 [ 1764.479482] CPU: 1 PID: 11062 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1764.479490] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1764.479494] Call Trace: [ 1764.479510] dump_stack+0x107/0x167 [ 1764.479533] should_fail.cold+0x5/0xa [ 1764.479548] ? xas_alloc+0x336/0x440 [ 1764.479565] should_failslab+0x5/0x20 [ 1764.479578] kmem_cache_alloc+0x5b/0x310 [ 1764.479597] xas_alloc+0x336/0x440 [ 1764.479614] xas_create+0x34a/0x10d0 [ 1764.479638] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1764.479655] xas_store+0x8c/0x1c40 [ 1764.479682] __xa_store+0x164/0x2d0 [ 1764.479699] ? xa_delete_node+0x280/0x280 [ 1764.479720] ? trace_hardirqs_on+0x5b/0x180 [ 1764.479741] xa_store+0x31/0x50 [ 1764.479757] __io_uring_add_tctx_node+0x1cf/0x520 [ 1764.479772] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1764.479783] ? alloc_fd+0x2e7/0x670 [ 1764.479808] io_uring_setup+0x1fbb/0x2980 [ 1764.479829] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1764.479841] ? wait_for_completion_io+0x270/0x270 [ 1764.479875] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1764.479889] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1764.479907] do_syscall_64+0x33/0x40 [ 1764.479921] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1764.479930] RIP: 0033:0x7fc343bc8b19 [ 1764.479942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1764.479950] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1764.479964] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1764.479972] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1764.479981] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1764.479988] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1764.479996] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1764.571146] FAULT_INJECTION: forcing a failure. [ 1764.571146] name failslab, interval 1, probability 0, space 0, times 0 [ 1764.571170] CPU: 0 PID: 11069 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1764.571181] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1764.571188] Call Trace: [ 1764.571214] dump_stack+0x107/0x167 [ 1764.571238] should_fail.cold+0x5/0xa [ 1764.571261] ? create_object.isra.0+0x3a/0xa30 [ 1764.571279] should_failslab+0x5/0x20 [ 1764.571299] kmem_cache_alloc+0x5b/0x310 [ 1764.571326] create_object.isra.0+0x3a/0xa30 [ 1764.571342] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1764.571369] kmem_cache_alloc_trace+0x151/0x320 [ 1764.571398] __io_uring_add_tctx_node+0x15c/0x520 [ 1764.571419] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1764.571436] ? alloc_fd+0x2e7/0x670 [ 1764.571469] io_uring_setup+0x1fbb/0x2980 [ 1764.571499] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1764.571516] ? wait_for_completion_io+0x270/0x270 [ 1764.571572] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1764.571593] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1764.571617] do_syscall_64+0x33/0x40 [ 1764.571637] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1764.571650] RIP: 0033:0x7f4a0d16cb19 [ 1764.571668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1764.571679] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1764.571702] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1764.571713] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1764.571725] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1764.571736] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1764.571747] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1764.586866] FAULT_INJECTION: forcing a failure. [ 1764.586866] name failslab, interval 1, probability 0, space 0, times 0 [ 1764.586882] CPU: 1 PID: 11072 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1764.586890] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1764.586895] Call Trace: [ 1764.586914] dump_stack+0x107/0x167 [ 1764.586931] should_fail.cold+0x5/0xa [ 1764.586948] ? create_object.isra.0+0x3a/0xa30 [ 1764.586962] should_failslab+0x5/0x20 [ 1764.586976] kmem_cache_alloc+0x5b/0x310 [ 1764.586990] ? mark_held_locks+0x9e/0xe0 [ 1764.587007] create_object.isra.0+0x3a/0xa30 [ 1764.587019] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1764.587037] kmem_cache_alloc+0x159/0x310 [ 1764.587056] xas_alloc+0x336/0x440 [ 1764.587072] xas_create+0x34a/0x10d0 [ 1764.587095] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1764.587111] xas_store+0x8c/0x1c40 [ 1764.587136] __xa_store+0x164/0x2d0 [ 1764.587151] ? xa_delete_node+0x280/0x280 [ 1764.587172] ? trace_hardirqs_on+0x5b/0x180 [ 1764.587192] xa_store+0x31/0x50 [ 1764.587208] __io_uring_add_tctx_node+0x1cf/0x520 [ 1764.587222] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1764.587234] ? alloc_fd+0x2e7/0x670 [ 1764.587257] io_uring_setup+0x1fbb/0x2980 [ 1764.587277] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1764.587289] ? wait_for_completion_io+0x270/0x270 [ 1764.587326] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1764.587341] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1764.587357] do_syscall_64+0x33/0x40 [ 1764.587371] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1764.587380] RIP: 0033:0x7fc39eed2b19 [ 1764.587392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1764.587399] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1764.587416] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1764.587423] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1764.587431] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1764.587439] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1764.587446] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1764.600476] FAULT_INJECTION: forcing a failure. [ 1764.600476] name failslab, interval 1, probability 0, space 0, times 0 [ 1764.600491] CPU: 1 PID: 11074 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1764.600498] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1764.600503] Call Trace: [ 1764.600528] dump_stack+0x107/0x167 [ 1764.600544] should_fail.cold+0x5/0xa [ 1764.600560] ? create_object.isra.0+0x3a/0xa30 [ 1764.600576] should_failslab+0x5/0x20 [ 1764.600589] kmem_cache_alloc+0x5b/0x310 [ 1764.600603] ? mark_held_locks+0x9e/0xe0 [ 1764.600620] create_object.isra.0+0x3a/0xa30 [ 1764.600631] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1764.600649] kmem_cache_alloc+0x159/0x310 [ 1764.600668] xas_alloc+0x336/0x440 [ 1764.600684] xas_create+0x34a/0x10d0 [ 1764.600706] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1764.600721] xas_store+0x8c/0x1c40 [ 1764.600746] __xa_store+0x164/0x2d0 [ 1764.600761] ? xa_delete_node+0x280/0x280 [ 1764.600781] ? trace_hardirqs_on+0x5b/0x180 [ 1764.600801] xa_store+0x31/0x50 [ 1764.600817] __io_uring_add_tctx_node+0x1cf/0x520 [ 1764.600831] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1764.600842] ? alloc_fd+0x2e7/0x670 [ 1764.600865] io_uring_setup+0x1fbb/0x2980 [ 1764.600885] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1764.600896] ? wait_for_completion_io+0x270/0x270 [ 1764.600928] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1764.600942] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1764.600958] do_syscall_64+0x33/0x40 [ 1764.600971] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1764.600980] RIP: 0033:0x7fc343bc8b19 [ 1764.600992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1764.600999] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1764.601015] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1764.601023] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1764.601031] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1764.601038] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1764.601046] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1764.645865] FAULT_INJECTION: forcing a failure. [ 1764.645865] name failslab, interval 1, probability 0, space 0, times 0 [ 1764.861831] CPU: 0 PID: 11076 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1764.861853] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1764.864513] Call Trace: [ 1764.865079] dump_stack+0x107/0x167 [ 1764.865858] should_fail.cold+0x5/0xa [ 1764.866655] ? xas_alloc+0x336/0x440 [ 1764.867430] should_failslab+0x5/0x20 [ 1764.868226] kmem_cache_alloc+0x5b/0x310 [ 1764.869078] xas_alloc+0x336/0x440 [ 1764.869854] xas_create+0x34a/0x10d0 [ 1764.870667] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1764.871769] xas_store+0x8c/0x1c40 [ 1764.872548] __xa_store+0x164/0x2d0 [ 1764.873310] ? xa_delete_node+0x280/0x280 [ 1764.874198] ? trace_hardirqs_on+0x5b/0x180 [ 1764.875111] xa_store+0x31/0x50 [ 1764.875812] __io_uring_add_tctx_node+0x1cf/0x520 [ 1764.876815] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1764.877927] ? alloc_fd+0x2e7/0x670 [ 1764.878701] io_uring_setup+0x1fbb/0x2980 [ 1764.879576] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1764.880629] ? wait_for_completion_io+0x270/0x270 [ 1764.881670] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1764.882768] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1764.883845] do_syscall_64+0x33/0x40 [ 1764.884623] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1764.885708] RIP: 0033:0x7fcf2a53eb19 [ 1764.886485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1764.890320] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1764.891914] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1764.893393] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1764.894888] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1764.896367] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1764.897878] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:26:36 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 50) 10:26:36 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) r5 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0) ppoll(&(0x7f00000000c0)=[{r4, 0x2}, {r5, 0x820e}], 0x2, &(0x7f0000000100), &(0x7f0000000140)={[0x4]}, 0x8) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) r6 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r6, &(0x7f0000000040)='reno\x00', 0x5) dup2(r6, r0) 10:26:36 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 53) 10:26:36 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) fcntl$getownex(r4, 0x10, &(0x7f0000002700)) r5 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)) 10:26:36 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 47) 10:26:36 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x40000) 10:26:36 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 39) 10:26:36 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1783.863641] FAULT_INJECTION: forcing a failure. [ 1783.863641] name failslab, interval 1, probability 0, space 0, times 0 [ 1783.866177] CPU: 0 PID: 11098 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1783.866424] FAULT_INJECTION: forcing a failure. [ 1783.866424] name failslab, interval 1, probability 0, space 0, times 0 [ 1783.867646] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1783.867654] Call Trace: [ 1783.867681] dump_stack+0x107/0x167 [ 1783.867708] should_fail.cold+0x5/0xa [ 1783.873513] ? xas_alloc+0x336/0x440 [ 1783.874323] should_failslab+0x5/0x20 [ 1783.875122] kmem_cache_alloc+0x5b/0x310 [ 1783.876004] ? stack_trace_consume_entry+0x160/0x160 [ 1783.877077] xas_alloc+0x336/0x440 [ 1783.877856] xas_create+0x34a/0x10d0 [ 1783.878655] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1783.879770] xas_store+0x8c/0x1c40 [ 1783.880555] __xa_store+0x164/0x2d0 [ 1783.881336] ? xa_delete_node+0x280/0x280 [ 1783.882250] ? trace_hardirqs_on+0x5b/0x180 [ 1783.883179] xa_store+0x31/0x50 [ 1783.883881] __io_uring_add_tctx_node+0x1cf/0x520 [ 1783.884910] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1783.886038] ? alloc_fd+0x2e7/0x670 [ 1783.886828] io_uring_setup+0x1fbb/0x2980 [ 1783.887722] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1783.888801] ? wait_for_completion_io+0x270/0x270 [ 1783.889869] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1783.890986] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1783.892084] do_syscall_64+0x33/0x40 [ 1783.892877] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1783.893979] RIP: 0033:0x7f4a0d16cb19 [ 1783.894775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1783.898641] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1783.900247] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1783.901751] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1783.903254] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1783.904752] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1783.906253] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1783.907789] CPU: 1 PID: 11099 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1783.908976] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1783.910378] Call Trace: [ 1783.910837] dump_stack+0x107/0x167 [ 1783.911455] should_fail.cold+0x5/0xa [ 1783.912108] ? xas_alloc+0x336/0x440 [ 1783.912759] should_failslab+0x5/0x20 [ 1783.913413] kmem_cache_alloc+0x5b/0x310 [ 1783.914109] xas_alloc+0x336/0x440 [ 1783.914744] xas_create+0x34a/0x10d0 [ 1783.915388] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1783.916294] xas_store+0x8c/0x1c40 [ 1783.916922] __xa_store+0x164/0x2d0 [ 1783.917555] ? xa_delete_node+0x280/0x280 [ 1783.918287] ? trace_hardirqs_on+0x5b/0x180 [ 1783.919043] xa_store+0x31/0x50 [ 1783.919620] __io_uring_add_tctx_node+0x1cf/0x520 [ 1783.920454] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1783.921364] ? alloc_fd+0x2e7/0x670 [ 1783.922023] io_uring_setup+0x1fbb/0x2980 [ 1783.922730] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1783.923611] ? wait_for_completion_io+0x270/0x270 [ 1783.924465] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1783.925378] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1783.926270] do_syscall_64+0x33/0x40 [ 1783.926916] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1783.927792] RIP: 0033:0x7fc343bc8b19 [ 1783.928438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1783.931613] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1783.932917] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1783.934125] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1783.935306] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1783.936523] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1783.937872] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:26:36 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000080)) r2 = epoll_create(0x3ff) r3 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r3, &(0x7f0000000040)='reno\x00', 0x5) ioctl$F2FS_IOC_GARBAGE_COLLECT(r3, 0x4004f506, &(0x7f0000000100)=0x1) r4 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040)={0x10000004}) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f00000001c0)) r5 = inotify_init1(0x80000) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/diskstats\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r6, 0x8000000) epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000000000)={0x90000004}) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r5, &(0x7f0000000200)) [ 1783.967648] FAULT_INJECTION: forcing a failure. [ 1783.967648] name failslab, interval 1, probability 0, space 0, times 0 [ 1783.970057] CPU: 0 PID: 11095 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1783.971529] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1783.973295] Call Trace: [ 1783.973884] dump_stack+0x107/0x167 [ 1783.974663] should_fail.cold+0x5/0xa [ 1783.975476] ? create_object.isra.0+0x3a/0xa30 [ 1783.976456] should_failslab+0x5/0x20 [ 1783.977271] kmem_cache_alloc+0x5b/0x310 [ 1783.978151] ? mark_held_locks+0x9e/0xe0 [ 1783.979031] create_object.isra.0+0x3a/0xa30 [ 1783.979969] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1783.981062] kmem_cache_alloc+0x159/0x310 [ 1783.981975] xas_alloc+0x336/0x440 [ 1783.982747] xas_create+0x34a/0x10d0 [ 1783.983565] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1783.984687] xas_store+0x8c/0x1c40 [ 1783.985466] __xa_store+0x164/0x2d0 [ 1783.986260] ? xa_delete_node+0x280/0x280 [ 1783.987160] ? trace_hardirqs_on+0x5b/0x180 [ 1783.988094] xa_store+0x31/0x50 [ 1783.988800] __io_uring_add_tctx_node+0x1cf/0x520 [ 1783.989845] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1783.990966] ? alloc_fd+0x2e7/0x670 [ 1783.991759] io_uring_setup+0x1fbb/0x2980 [ 1783.992658] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1783.993799] ? wait_for_completion_io+0x270/0x270 [ 1783.994860] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1783.995984] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1783.997088] do_syscall_64+0x33/0x40 [ 1783.997903] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1783.998994] RIP: 0033:0x7fcf2a53eb19 [ 1783.999787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1784.003707] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1784.005326] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1784.006853] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1784.008375] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1784.009912] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1784.011435] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:26:36 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, 0x0) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:26:36 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) fcntl$getownex(r4, 0x10, &(0x7f0000002700)) r5 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)) [ 1784.037212] FAULT_INJECTION: forcing a failure. [ 1784.037212] name failslab, interval 1, probability 0, space 0, times 0 [ 1784.039661] CPU: 0 PID: 11087 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1784.041122] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1784.042893] Call Trace: [ 1784.043455] dump_stack+0x107/0x167 [ 1784.044231] should_fail.cold+0x5/0xa [ 1784.045038] ? xas_alloc+0x336/0x440 [ 1784.045837] should_failslab+0x5/0x20 [ 1784.046644] kmem_cache_alloc+0x5b/0x310 [ 1784.047510] xas_alloc+0x336/0x440 [ 1784.048267] xas_create+0x34a/0x10d0 [ 1784.049072] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1784.050196] xas_store+0x8c/0x1c40 [ 1784.050965] __xa_store+0x164/0x2d0 [ 1784.051740] ? xa_delete_node+0x280/0x280 [ 1784.052629] ? trace_hardirqs_on+0x5b/0x180 [ 1784.053548] xa_store+0x31/0x50 [ 1784.054266] __io_uring_add_tctx_node+0x1cf/0x520 [ 1784.055282] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1784.056384] ? alloc_fd+0x2e7/0x670 [ 1784.057167] io_uring_setup+0x1fbb/0x2980 [ 1784.058066] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1784.059132] ? wait_for_completion_io+0x270/0x270 [ 1784.060173] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1784.061279] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1784.062385] do_syscall_64+0x33/0x40 [ 1784.063171] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1784.064247] RIP: 0033:0x7fc39eed2b19 [ 1784.065031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1784.068917] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1784.070525] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1784.072010] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1784.073515] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1784.075033] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1784.076543] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:26:37 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 48) 10:26:37 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, 0x0) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:26:37 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x200000) [ 1784.111910] FAULT_INJECTION: forcing a failure. [ 1784.111910] name failslab, interval 1, probability 0, space 0, times 0 [ 1784.113658] CPU: 1 PID: 11107 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1784.114675] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1784.115838] Call Trace: [ 1784.116213] dump_stack+0x107/0x167 [ 1784.116725] should_fail.cold+0x5/0xa [ 1784.117270] ? create_object.isra.0+0x3a/0xa30 [ 1784.117914] should_failslab+0x5/0x20 [ 1784.118446] kmem_cache_alloc+0x5b/0x310 [ 1784.119016] ? mark_held_locks+0x9e/0xe0 [ 1784.119595] create_object.isra.0+0x3a/0xa30 [ 1784.120216] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1784.120936] kmem_cache_alloc+0x159/0x310 [ 1784.121521] xas_alloc+0x336/0x440 [ 1784.122039] xas_create+0x34a/0x10d0 [ 1784.122567] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1784.123307] xas_store+0x8c/0x1c40 [ 1784.123820] __xa_store+0x164/0x2d0 [ 1784.124337] ? xa_delete_node+0x280/0x280 [ 1784.124922] ? trace_hardirqs_on+0x5b/0x180 [ 1784.125532] xa_store+0x31/0x50 [ 1784.126005] __io_uring_add_tctx_node+0x1cf/0x520 [ 1784.126678] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1784.127408] ? alloc_fd+0x2e7/0x670 [ 1784.127938] io_uring_setup+0x1fbb/0x2980 [ 1784.128529] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1784.129233] ? wait_for_completion_io+0x270/0x270 [ 1784.129939] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1784.130672] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1784.131398] do_syscall_64+0x33/0x40 [ 1784.131918] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1784.132629] RIP: 0033:0x7fc343bc8b19 [ 1784.133147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1784.135721] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1784.136788] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1784.137796] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1784.138783] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1784.139781] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1784.140769] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:26:37 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 51) 10:26:37 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 40) [ 1784.193180] FAULT_INJECTION: forcing a failure. [ 1784.193180] name failslab, interval 1, probability 0, space 0, times 0 [ 1784.194994] CPU: 1 PID: 11119 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1784.195988] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1784.197165] Call Trace: [ 1784.197549] dump_stack+0x107/0x167 [ 1784.198069] should_fail.cold+0x5/0xa [ 1784.198611] ? xas_alloc+0x336/0x440 [ 1784.199141] should_failslab+0x5/0x20 [ 1784.199673] kmem_cache_alloc+0x5b/0x310 [ 1784.200251] xas_alloc+0x336/0x440 [ 1784.200757] xas_create+0x34a/0x10d0 [ 1784.201286] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1784.202026] xas_store+0x8c/0x1c40 [ 1784.202543] __xa_store+0x164/0x2d0 [ 1784.203054] ? xa_delete_node+0x280/0x280 [ 1784.203648] ? trace_hardirqs_on+0x5b/0x180 [ 1784.204271] xa_store+0x31/0x50 [ 1784.204742] __io_uring_add_tctx_node+0x1cf/0x520 [ 1784.205416] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1784.206155] ? alloc_fd+0x2e7/0x670 [ 1784.206676] io_uring_setup+0x1fbb/0x2980 [ 1784.207262] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1784.207967] ? wait_for_completion_io+0x270/0x270 [ 1784.208676] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1784.209404] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1784.210147] do_syscall_64+0x33/0x40 [ 1784.210668] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1784.211382] RIP: 0033:0x7fcf2a53eb19 [ 1784.211901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1784.214481] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1784.215540] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1784.216533] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1784.217522] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1784.218525] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1784.219513] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1784.256885] FAULT_INJECTION: forcing a failure. [ 1784.256885] name failslab, interval 1, probability 0, space 0, times 0 [ 1784.259319] CPU: 0 PID: 11121 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1784.260782] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1784.262560] Call Trace: [ 1784.263128] dump_stack+0x107/0x167 [ 1784.263905] should_fail.cold+0x5/0xa [ 1784.264708] ? ___slab_alloc+0x155/0x700 [ 1784.265590] ? create_object.isra.0+0x3a/0xa30 [ 1784.266562] should_failslab+0x5/0x20 [ 1784.267388] kmem_cache_alloc+0x5b/0x310 [ 1784.268252] create_object.isra.0+0x3a/0xa30 [ 1784.269176] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1784.270258] kmem_cache_alloc+0x159/0x310 [ 1784.271152] xas_alloc+0x336/0x440 [ 1784.271905] xas_create+0x34a/0x10d0 [ 1784.272712] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1784.273828] xas_store+0x8c/0x1c40 [ 1784.274604] __xa_store+0x164/0x2d0 [ 1784.275377] ? xa_delete_node+0x280/0x280 [ 1784.276270] ? trace_hardirqs_on+0x5b/0x180 [ 1784.277184] xa_store+0x31/0x50 [ 1784.277897] __io_uring_add_tctx_node+0x1cf/0x520 [ 1784.278912] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1784.280014] ? alloc_fd+0x2e7/0x670 [ 1784.280795] io_uring_setup+0x1fbb/0x2980 [ 1784.281708] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1784.282768] ? wait_for_completion_io+0x270/0x270 [ 1784.283817] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1784.284929] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1784.286033] do_syscall_64+0x33/0x40 [ 1784.286821] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1784.287922] RIP: 0033:0x7f4a0d16cb19 [ 1784.288703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1784.292604] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1784.294218] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1784.295730] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1784.297238] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1784.298752] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1784.300250] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:26:52 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 49) 10:26:52 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 52) 10:26:53 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) fcntl$getownex(r4, 0x10, &(0x7f0000002700)) r5 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)) 10:26:53 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) r4 = dup(r0) epoll_ctl$EPOLL_CTL_DEL(r4, 0x2, r2) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:26:53 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 41) 10:26:53 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x400300) 10:26:53 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 54) 10:26:53 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, 0x0) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1800.106001] FAULT_INJECTION: forcing a failure. [ 1800.106001] name failslab, interval 1, probability 0, space 0, times 0 [ 1800.108470] CPU: 1 PID: 11136 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1800.109925] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1800.111678] Call Trace: [ 1800.112238] dump_stack+0x107/0x167 [ 1800.113008] should_fail.cold+0x5/0xa [ 1800.113856] ? xas_alloc+0x336/0x440 [ 1800.114700] should_failslab+0x5/0x20 [ 1800.115579] kmem_cache_alloc+0x5b/0x310 [ 1800.116675] xas_alloc+0x336/0x440 [ 1800.117431] xas_create+0x34a/0x10d0 [ 1800.118238] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1800.119343] xas_store+0x8c/0x1c40 [ 1800.120104] __xa_store+0x164/0x2d0 [ 1800.120870] ? xa_delete_node+0x280/0x280 [ 1800.121759] ? trace_hardirqs_on+0x5b/0x180 [ 1800.122679] xa_store+0x31/0x50 [ 1800.123375] __io_uring_add_tctx_node+0x1cf/0x520 [ 1800.124384] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1800.125480] ? alloc_fd+0x2e7/0x670 [ 1800.126271] io_uring_setup+0x1fbb/0x2980 [ 1800.127160] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1800.128222] ? wait_for_completion_io+0x270/0x270 [ 1800.129267] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1800.130384] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1800.131480] do_syscall_64+0x33/0x40 [ 1800.132262] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1800.133337] RIP: 0033:0x7f4a0d16cb19 [ 1800.134106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1800.137870] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1800.139416] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1800.140871] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1800.142383] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1800.143866] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1800.145355] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:26:53 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) fcntl$getownex(r4, 0x10, &(0x7f0000002700)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, 0xffffffffffffffff, &(0x7f0000000040)) [ 1800.157534] FAULT_INJECTION: forcing a failure. [ 1800.157534] name failslab, interval 1, probability 0, space 0, times 0 [ 1800.159983] CPU: 1 PID: 11139 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1800.161448] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1800.163662] Call Trace: [ 1800.164349] dump_stack+0x107/0x167 [ 1800.165279] should_fail.cold+0x5/0xa [ 1800.166284] ? create_object.isra.0+0x3a/0xa30 [ 1800.167312] should_failslab+0x5/0x20 [ 1800.168162] kmem_cache_alloc+0x5b/0x310 [ 1800.169070] ? mark_held_locks+0x9e/0xe0 [ 1800.169999] create_object.isra.0+0x3a/0xa30 [ 1800.170983] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1800.172122] kmem_cache_alloc+0x159/0x310 [ 1800.173063] xas_alloc+0x336/0x440 [ 1800.173876] xas_create+0x34a/0x10d0 [ 1800.174728] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1800.175908] xas_store+0x8c/0x1c40 [ 1800.176727] __xa_store+0x164/0x2d0 [ 1800.177262] FAULT_INJECTION: forcing a failure. [ 1800.177262] name failslab, interval 1, probability 0, space 0, times 0 [ 1800.177545] ? xa_delete_node+0x280/0x280 [ 1800.177580] ? trace_hardirqs_on+0x5b/0x180 [ 1800.181773] xa_store+0x31/0x50 [ 1800.182515] __io_uring_add_tctx_node+0x1cf/0x520 [ 1800.183594] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1800.184760] ? alloc_fd+0x2e7/0x670 [ 1800.185592] io_uring_setup+0x1fbb/0x2980 [ 1800.186540] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1800.187673] ? wait_for_completion_io+0x270/0x270 [ 1800.188781] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1800.189966] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1800.191120] do_syscall_64+0x33/0x40 [ 1800.191957] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1800.193103] RIP: 0033:0x7fcf2a53eb19 [ 1800.193946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1800.198082] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1800.199787] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1800.201376] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1800.202979] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1800.204572] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1800.206175] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1800.207810] CPU: 0 PID: 11134 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1800.209283] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1800.211054] Call Trace: [ 1800.211619] dump_stack+0x107/0x167 [ 1800.212394] should_fail.cold+0x5/0xa [ 1800.213188] ? ___slab_alloc+0x155/0x700 [ 1800.214059] ? create_object.isra.0+0x3a/0xa30 [ 1800.215031] should_failslab+0x5/0x20 [ 1800.215838] kmem_cache_alloc+0x5b/0x310 [ 1800.216700] create_object.isra.0+0x3a/0xa30 [ 1800.217628] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1800.218713] kmem_cache_alloc+0x159/0x310 [ 1800.219597] xas_alloc+0x336/0x440 10:26:53 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) r4 = openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000001600), 0x2, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r4, &(0x7f0000001640)={0x80000000}) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1800.220352] xas_create+0x34a/0x10d0 [ 1800.221346] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1800.222461] xas_store+0x8c/0x1c40 [ 1800.223233] __xa_store+0x164/0x2d0 [ 1800.224012] ? xa_delete_node+0x280/0x280 [ 1800.224890] ? trace_hardirqs_on+0x5b/0x180 [ 1800.225818] xa_store+0x31/0x50 [ 1800.226519] __io_uring_add_tctx_node+0x1cf/0x520 [ 1800.227529] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1800.228635] ? alloc_fd+0x2e7/0x670 [ 1800.229418] io_uring_setup+0x1fbb/0x2980 [ 1800.230311] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1800.231380] ? wait_for_completion_io+0x270/0x270 [ 1800.232417] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1800.233513] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1800.234610] do_syscall_64+0x33/0x40 [ 1800.235394] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1800.236474] RIP: 0033:0x7fc39eed2b19 [ 1800.237229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1800.240966] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1800.242549] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1800.244048] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1800.245517] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1800.247015] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1800.248492] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:26:53 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x0) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1800.261229] FAULT_INJECTION: forcing a failure. [ 1800.261229] name failslab, interval 1, probability 0, space 0, times 0 [ 1800.263698] CPU: 0 PID: 11135 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1800.265156] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1800.266899] Call Trace: [ 1800.267453] dump_stack+0x107/0x167 [ 1800.268217] should_fail.cold+0x5/0xa [ 1800.269013] ? xas_alloc+0x336/0x440 [ 1800.269803] should_failslab+0x5/0x20 [ 1800.270596] kmem_cache_alloc+0x5b/0x310 [ 1800.271448] xas_alloc+0x336/0x440 [ 1800.272196] xas_create+0x34a/0x10d0 [ 1800.272986] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1800.274090] xas_store+0x8c/0x1c40 [ 1800.274858] __xa_store+0x164/0x2d0 [ 1800.275623] ? xa_delete_node+0x280/0x280 [ 1800.276500] ? trace_hardirqs_on+0x5b/0x180 [ 1800.277414] xa_store+0x31/0x50 [ 1800.278124] __io_uring_add_tctx_node+0x1cf/0x520 [ 1800.279134] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1800.280229] ? alloc_fd+0x2e7/0x670 [ 1800.281006] io_uring_setup+0x1fbb/0x2980 [ 1800.281890] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1800.282948] ? wait_for_completion_io+0x270/0x270 [ 1800.283989] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1800.285081] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1800.286166] do_syscall_64+0x33/0x40 [ 1800.286951] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1800.288022] RIP: 0033:0x7fc343bc8b19 [ 1800.288797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1800.292636] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1800.294236] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1800.295725] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1800.297214] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1800.298715] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1800.300200] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:26:53 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x1000000) 10:26:53 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x0) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:26:53 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) fcntl$getownex(r4, 0x10, &(0x7f0000002700)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, 0xffffffffffffffff, &(0x7f0000000040)) 10:26:53 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 42) 10:26:53 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) preadv(r0, &(0x7f0000002440)=[{&(0x7f0000000200)=""/218, 0xda}, {&(0x7f0000000140)=""/31, 0x1f}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000180)=""/32, 0x20}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000002300)=""/71, 0x47}, {&(0x7f0000002380)=""/19, 0x13}, {&(0x7f00000023c0)=""/11, 0xb}, {&(0x7f0000002400)=""/56, 0x38}], 0x9, 0x20, 0x8) r2 = epoll_create(0x7ff) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r4 = epoll_create(0x3ff) r5 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f00000001c0)) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'wg0\x00'}) r6 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r6, &(0x7f0000000040)='reno\x00', 0x5) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r7, &(0x7f0000000040)='reno\x00', 0x5) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r7, &(0x7f0000000100)={0x80000010}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'veth1_to_bridge\x00'}) writev(r4, &(0x7f00000026c0)=[{&(0x7f0000002500)="5b1892b585c055", 0x7}, {&(0x7f0000002540)="a5280e0b3094eaa7beb7b8400a8fe6100339e7725facfbada342d9fb3d2ae39e8eb716db196b764d7a97501e93df8e46542a9933b44317afb3e4f42bcb368929b5ec7bc74d06e11351727cfc8d9d2fdf36e8e1f61b0220e40c85d3e15b181dbeb44635f6ca553de98861ec66ef7d6c67a96bf87045040ba4a1714848cb0f330566b1a39dde3448cd743013868b063066cf0033b7bd12e25b0fa242c49602a4b325f12bd354b6061cbb1327de10a34456c99741bedf2904bf6ef04b", 0xbb}, {&(0x7f0000002600)="197798310692c2f12b477569187fb30cdd63026ae834b39fdef7bed1d24e2a6c750296abb0c5b87a97027b4dd70e2c457cb004ec64a289866ed74ef5ac2953161fcd6c07917e888f470a1000d112d03a1b09341b678e1c70fe575b36963397a103ae45690668808eb3bc73a021d260d3ee0eea91ae19c6ded31e7636953dc8b37b3ca9a54c9ab27691f8c0b55c046add361e68e754e18082182658407af9c448c48fcbe2", 0xa4}], 0x3) openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0) [ 1800.496192] FAULT_INJECTION: forcing a failure. [ 1800.496192] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1800.498887] CPU: 1 PID: 11162 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1800.500434] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1800.502310] Call Trace: [ 1800.502913] dump_stack+0x107/0x167 [ 1800.503740] should_fail.cold+0x5/0xa [ 1800.504610] __alloc_pages_nodemask+0x182/0x600 [ 1800.505660] ? stack_trace_save+0x8c/0xc0 [ 1800.506607] ? stack_trace_consume_entry+0x160/0x160 [ 1800.507752] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1800.509118] ? kmem_cache_alloc+0x301/0x310 [ 1800.510105] alloc_pages_current+0x187/0x280 [ 1800.511104] allocate_slab+0x26f/0x380 [ 1800.511988] ___slab_alloc+0x470/0x700 [ 1800.512870] ? create_object.isra.0+0x3a/0xa30 [ 1800.513909] ? mark_lock+0xf5/0x2df0 [ 1800.514751] ? __is_insn_slot_addr+0x14c/0x290 [ 1800.515779] ? create_object.isra.0+0x3a/0xa30 [ 1800.516808] ? kmem_cache_alloc+0x301/0x310 [ 1800.517786] ? create_object.isra.0+0x3a/0xa30 [ 1800.518810] kmem_cache_alloc+0x301/0x310 [ 1800.519751] create_object.isra.0+0x3a/0xa30 [ 1800.520737] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1800.521898] kmem_cache_alloc+0x159/0x310 [ 1800.522840] xas_alloc+0x336/0x440 [ 1800.523649] xas_create+0x34a/0x10d0 [ 1800.524504] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1800.525688] xas_store+0x8c/0x1c40 [ 1800.526519] __xa_store+0x164/0x2d0 [ 1800.527345] ? xa_delete_node+0x280/0x280 [ 1800.528288] ? trace_hardirqs_on+0x5b/0x180 [ 1800.529270] xa_store+0x31/0x50 [ 1800.530026] __io_uring_add_tctx_node+0x1cf/0x520 [ 1800.531111] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1800.532287] ? alloc_fd+0x2e7/0x670 [ 1800.533131] io_uring_setup+0x1fbb/0x2980 [ 1800.534086] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1800.535224] ? wait_for_completion_io+0x270/0x270 [ 1800.536336] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1800.537514] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1800.538684] do_syscall_64+0x33/0x40 [ 1800.539523] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1800.540673] RIP: 0033:0x7f4a0d16cb19 [ 1800.541509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1800.545619] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1800.547328] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1800.548921] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1800.550507] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1800.552094] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1800.553683] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:27:11 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 53) 10:27:11 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 55) 10:27:11 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x2000000) 10:27:11 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) fcntl$getownex(r4, 0x10, &(0x7f0000002700)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, 0xffffffffffffffff, &(0x7f0000000040)) 10:27:11 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x0) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:27:11 executing program 6: r0 = epoll_create1(0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x8000000) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040)={0x4}) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r3, &(0x7f0000000000)) r4 = epoll_create(0x3ff) r5 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000080)={0x60000034}) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f0000000200)) 10:27:11 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 43) 10:27:11 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 50) [ 1818.144715] FAULT_INJECTION: forcing a failure. [ 1818.144715] name failslab, interval 1, probability 0, space 0, times 0 [ 1818.146396] CPU: 1 PID: 11186 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1818.147378] FAULT_INJECTION: forcing a failure. [ 1818.147378] name failslab, interval 1, probability 0, space 0, times 0 [ 1818.147406] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1818.149978] Call Trace: [ 1818.150348] dump_stack+0x107/0x167 [ 1818.150858] should_fail.cold+0x5/0xa [ 1818.151386] ? create_object.isra.0+0x3a/0xa30 [ 1818.152022] should_failslab+0x5/0x20 [ 1818.152551] kmem_cache_alloc+0x5b/0x310 [ 1818.153113] ? mark_held_locks+0x9e/0xe0 [ 1818.153678] create_object.isra.0+0x3a/0xa30 [ 1818.154287] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1818.154990] kmem_cache_alloc+0x159/0x310 [ 1818.155573] xas_alloc+0x336/0x440 [ 1818.156068] xas_create+0x34a/0x10d0 [ 1818.156602] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1818.157329] xas_store+0x8c/0x1c40 [ 1818.157837] __xa_store+0x164/0x2d0 [ 1818.158813] ? xa_delete_node+0x280/0x280 [ 1818.159892] ? trace_hardirqs_on+0x5b/0x180 [ 1818.161010] xa_store+0x31/0x50 [ 1818.161884] __io_uring_add_tctx_node+0x1cf/0x520 [ 1818.163032] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1818.164239] ? alloc_fd+0x2e7/0x670 [ 1818.165091] io_uring_setup+0x1fbb/0x2980 [ 1818.166073] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1818.167242] ? wait_for_completion_io+0x270/0x270 [ 1818.168383] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1818.169552] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1818.170752] do_syscall_64+0x33/0x40 [ 1818.171580] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1818.172716] RIP: 0033:0x7fc343bc8b19 [ 1818.173542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1818.177625] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1818.179324] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1818.180904] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1818.182494] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1818.184073] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1818.185654] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1818.187267] CPU: 0 PID: 11184 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1818.188237] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1818.189379] Call Trace: [ 1818.189749] dump_stack+0x107/0x167 [ 1818.190276] should_fail.cold+0x5/0xa [ 1818.190316] FAULT_INJECTION: forcing a failure. [ 1818.190316] name failslab, interval 1, probability 0, space 0, times 0 [ 1818.190805] ? xas_alloc+0x336/0x440 [ 1818.190817] should_failslab+0x5/0x20 [ 1818.190828] kmem_cache_alloc+0x5b/0x310 [ 1818.190848] xas_alloc+0x336/0x440 [ 1818.195319] xas_create+0x34a/0x10d0 [ 1818.195848] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1818.196577] xas_store+0x8c/0x1c40 [ 1818.197091] __xa_store+0x164/0x2d0 [ 1818.197603] ? xa_delete_node+0x280/0x280 [ 1818.198195] ? trace_hardirqs_on+0x5b/0x180 [ 1818.198802] xa_store+0x31/0x50 [ 1818.199260] __io_uring_add_tctx_node+0x1cf/0x520 [ 1818.199937] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1818.200670] ? alloc_fd+0x2e7/0x670 [ 1818.201186] io_uring_setup+0x1fbb/0x2980 [ 1818.201771] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1818.202482] ? wait_for_completion_io+0x270/0x270 [ 1818.203180] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1818.203909] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1818.204635] do_syscall_64+0x33/0x40 [ 1818.205153] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1818.205859] RIP: 0033:0x7fc39eed2b19 [ 1818.206378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1818.208927] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1818.209993] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1818.210984] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1818.211979] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1818.212978] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1818.213972] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1818.214995] CPU: 1 PID: 11188 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1818.216538] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1818.218387] Call Trace: [ 1818.218975] dump_stack+0x107/0x167 [ 1818.219784] should_fail.cold+0x5/0xa [ 1818.220630] ? xas_alloc+0x336/0x440 [ 1818.221455] should_failslab+0x5/0x20 [ 1818.222307] kmem_cache_alloc+0x5b/0x310 [ 1818.223214] xas_alloc+0x336/0x440 [ 1818.224042] xas_create+0x34a/0x10d0 [ 1818.224884] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1818.226102] xas_store+0x8c/0x1c40 [ 1818.226912] __xa_store+0x164/0x2d0 [ 1818.227456] FAULT_INJECTION: forcing a failure. [ 1818.227456] name failslab, interval 1, probability 0, space 0, times 0 [ 1818.227717] ? xa_delete_node+0x280/0x280 [ 1818.227749] ? trace_hardirqs_on+0x5b/0x180 [ 1818.231094] xa_store+0x31/0x50 [ 1818.231829] __io_uring_add_tctx_node+0x1cf/0x520 [ 1818.232894] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1818.234057] ? alloc_fd+0x2e7/0x670 [ 1818.234881] io_uring_setup+0x1fbb/0x2980 [ 1818.235811] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1818.236927] ? wait_for_completion_io+0x270/0x270 [ 1818.238031] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1818.239189] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1818.240335] do_syscall_64+0x33/0x40 [ 1818.241160] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1818.242300] RIP: 0033:0x7f4a0d16cb19 [ 1818.243123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1818.247186] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1818.248871] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1818.250457] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1818.252031] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1818.253604] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1818.255187] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1818.256789] CPU: 0 PID: 11189 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1818.257753] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1818.258911] Call Trace: [ 1818.259277] dump_stack+0x107/0x167 [ 1818.259786] should_fail.cold+0x5/0xa [ 1818.260312] ? xas_alloc+0x336/0x440 [ 1818.260825] should_failslab+0x5/0x20 [ 1818.261357] kmem_cache_alloc+0x5b/0x310 [ 1818.261945] xas_alloc+0x336/0x440 [ 1818.262446] xas_create+0x34a/0x10d0 [ 1818.262974] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1818.263708] xas_store+0x8c/0x1c40 [ 1818.264238] __xa_store+0x164/0x2d0 [ 1818.264738] ? xa_delete_node+0x280/0x280 [ 1818.265318] ? trace_hardirqs_on+0x5b/0x180 [ 1818.265933] xa_store+0x31/0x50 [ 1818.266405] __io_uring_add_tctx_node+0x1cf/0x520 [ 1818.267073] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1818.267806] ? alloc_fd+0x2e7/0x670 [ 1818.268319] io_uring_setup+0x1fbb/0x2980 [ 1818.268898] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1818.269596] ? wait_for_completion_io+0x270/0x270 [ 1818.270301] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1818.271022] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1818.271749] do_syscall_64+0x33/0x40 [ 1818.272268] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1818.272982] RIP: 0033:0x7fcf2a53eb19 [ 1818.273509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1818.276064] RSP: 002b:00007fcf27a93108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1818.277121] RAX: ffffffffffffffda RBX: 00007fcf2a652020 RCX: 00007fcf2a53eb19 [ 1818.278117] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1818.279109] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1818.280088] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1818.281095] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:27:11 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x8000000) connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e23, 0x7fff, @private1, 0xfffffff9}, 0x1c) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r3 = epoll_create(0x3ff) r4 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000200)) 10:27:11 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:27:11 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r4, &(0x7f0000000040)='reno\x00', 0x5) r5 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)) 10:27:11 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 51) 10:27:11 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x3000000) 10:27:11 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 44) 10:27:11 executing program 6: pread64(0xffffffffffffffff, &(0x7f0000000180)=""/4, 0x4, 0x6) r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) recvfrom$inet6(r1, &(0x7f0000000040)=""/194, 0xc2, 0x10000, &(0x7f0000000140)={0xa, 0x4e21, 0x8, @remote, 0x101}, 0x1c) r3 = epoll_create(0x8005) connect$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000280)={0x70000008}) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000240)={0x0, @adiantum, 0x0, @desc1}) 10:27:11 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 56) [ 1818.438454] FAULT_INJECTION: forcing a failure. [ 1818.438454] name failslab, interval 1, probability 0, space 0, times 0 [ 1818.441089] CPU: 1 PID: 11204 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1818.442673] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1818.444546] Call Trace: [ 1818.445154] dump_stack+0x107/0x167 [ 1818.445997] should_fail.cold+0x5/0xa [ 1818.446863] ? xas_alloc+0x336/0x440 [ 1818.447713] should_failslab+0x5/0x20 [ 1818.448580] kmem_cache_alloc+0x5b/0x310 [ 1818.449508] xas_alloc+0x336/0x440 [ 1818.450331] xas_create+0x34a/0x10d0 [ 1818.451198] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1818.452388] xas_store+0x8c/0x1c40 [ 1818.453212] __xa_store+0x164/0x2d0 [ 1818.454052] ? xa_delete_node+0x280/0x280 [ 1818.455003] ? trace_hardirqs_on+0x5b/0x180 [ 1818.455998] xa_store+0x31/0x50 [ 1818.456752] __io_uring_add_tctx_node+0x1cf/0x520 [ 1818.457845] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1818.459049] ? alloc_fd+0x2e7/0x670 [ 1818.459889] io_uring_setup+0x1fbb/0x2980 [ 1818.460820] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1818.461977] ? wait_for_completion_io+0x270/0x270 [ 1818.463077] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1818.464240] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1818.465386] do_syscall_64+0x33/0x40 [ 1818.466222] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1818.467359] RIP: 0033:0x7fc343bc8b19 [ 1818.468182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1818.468357] FAULT_INJECTION: forcing a failure. [ 1818.468357] name failslab, interval 1, probability 0, space 0, times 0 [ 1818.472239] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1818.472268] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1818.477025] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1818.478605] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1818.480177] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1818.481749] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1818.483360] CPU: 0 PID: 11208 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1818.484332] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1818.485505] Call Trace: [ 1818.485880] dump_stack+0x107/0x167 [ 1818.486392] should_fail.cold+0x5/0xa [ 1818.486930] ? create_object.isra.0+0x3a/0xa30 [ 1818.487570] should_failslab+0x5/0x20 [ 1818.488100] kmem_cache_alloc+0x5b/0x310 [ 1818.488676] ? mark_held_locks+0x9e/0xe0 [ 1818.489245] create_object.isra.0+0x3a/0xa30 [ 1818.489866] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1818.490585] kmem_cache_alloc+0x159/0x310 [ 1818.491171] xas_alloc+0x336/0x440 [ 1818.491664] xas_create+0x34a/0x10d0 [ 1818.492190] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1818.492924] xas_store+0x8c/0x1c40 [ 1818.493440] __xa_store+0x164/0x2d0 [ 1818.493954] ? xa_delete_node+0x280/0x280 [ 1818.494550] ? trace_hardirqs_on+0x5b/0x180 [ 1818.495165] xa_store+0x31/0x50 [ 1818.495626] __io_uring_add_tctx_node+0x1cf/0x520 [ 1818.496304] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1818.497029] ? alloc_fd+0x2e7/0x670 [ 1818.497550] io_uring_setup+0x1fbb/0x2980 [ 1818.498138] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1818.498842] ? wait_for_completion_io+0x270/0x270 [ 1818.499535] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1818.500264] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1818.500975] do_syscall_64+0x33/0x40 [ 1818.501501] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1818.502147] RIP: 0033:0x7fc39eed2b19 [ 1818.502546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1818.504494] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1818.505310] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1818.506078] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1818.506836] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1818.507600] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1818.508357] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:27:11 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 54) 10:27:11 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x4000000) 10:27:11 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:27:11 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r4 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000040)) [ 1818.555447] FAULT_INJECTION: forcing a failure. [ 1818.555447] name failslab, interval 1, probability 0, space 0, times 0 [ 1818.556784] CPU: 0 PID: 11216 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1818.557613] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1818.558509] Call Trace: [ 1818.558830] dump_stack+0x107/0x167 [ 1818.559270] should_fail.cold+0x5/0xa [ 1818.559725] ? create_object.isra.0+0x3a/0xa30 [ 1818.560266] should_failslab+0x5/0x20 [ 1818.560722] kmem_cache_alloc+0x5b/0x310 [ 1818.561206] ? mark_held_locks+0x9e/0xe0 [ 1818.561690] create_object.isra.0+0x3a/0xa30 [ 1818.562218] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1818.562822] kmem_cache_alloc+0x159/0x310 [ 1818.563320] xas_alloc+0x336/0x440 [ 1818.563748] xas_create+0x34a/0x10d0 [ 1818.564198] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1818.564818] xas_store+0x8c/0x1c40 [ 1818.565252] __xa_store+0x164/0x2d0 [ 1818.565688] ? xa_delete_node+0x280/0x280 [ 1818.566190] ? trace_hardirqs_on+0x5b/0x180 [ 1818.566706] xa_store+0x31/0x50 [ 1818.567100] __io_uring_add_tctx_node+0x1cf/0x520 [ 1818.567671] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1818.568285] ? alloc_fd+0x2e7/0x670 [ 1818.568727] io_uring_setup+0x1fbb/0x2980 [ 1818.569227] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1818.569832] ? wait_for_completion_io+0x270/0x270 [ 1818.570427] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1818.571055] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1818.571669] do_syscall_64+0x33/0x40 [ 1818.572114] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1818.572725] RIP: 0033:0x7f4a0d16cb19 [ 1818.573168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1818.575361] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1818.576268] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1818.577118] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1818.577973] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1818.578829] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1818.579677] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1818.582068] FAULT_INJECTION: forcing a failure. [ 1818.582068] name failslab, interval 1, probability 0, space 0, times 0 [ 1818.583450] CPU: 0 PID: 11215 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1818.584276] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1818.585262] Call Trace: [ 1818.585576] dump_stack+0x107/0x167 [ 1818.586017] should_fail.cold+0x5/0xa [ 1818.586472] ? create_object.isra.0+0x3a/0xa30 [ 1818.587015] should_failslab+0x5/0x20 [ 1818.587467] kmem_cache_alloc+0x5b/0x310 [ 1818.587952] ? mark_held_locks+0x9e/0xe0 [ 1818.588438] create_object.isra.0+0x3a/0xa30 [ 1818.588963] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1818.589574] kmem_cache_alloc+0x159/0x310 [ 1818.590078] xas_alloc+0x336/0x440 [ 1818.590503] xas_create+0x34a/0x10d0 [ 1818.590957] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1818.591585] xas_store+0x8c/0x1c40 [ 1818.592017] __xa_store+0x164/0x2d0 [ 1818.592451] ? xa_delete_node+0x280/0x280 [ 1818.592952] ? trace_hardirqs_on+0x5b/0x180 [ 1818.593469] xa_store+0x31/0x50 [ 1818.593869] __io_uring_add_tctx_node+0x1cf/0x520 [ 1818.594441] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1818.595063] ? alloc_fd+0x2e7/0x670 [ 1818.595505] io_uring_setup+0x1fbb/0x2980 [ 1818.596006] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1818.596608] ? wait_for_completion_io+0x270/0x270 [ 1818.597201] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1818.597829] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1818.598457] do_syscall_64+0x33/0x40 [ 1818.598903] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1818.599514] RIP: 0033:0x7fcf2a53eb19 [ 1818.599961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1818.602166] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1818.603070] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1818.603921] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1818.604770] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1818.605620] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1818.606475] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:27:29 executing program 6: r0 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) r1 = epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000200)) 10:27:29 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 52) 10:27:29 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x3ff) r4 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000040)) 10:27:29 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x8000000) 10:27:29 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 55) 10:27:29 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:27:29 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 45) 10:27:29 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 57) [ 1836.172046] FAULT_INJECTION: forcing a failure. [ 1836.172046] name failslab, interval 1, probability 0, space 0, times 0 [ 1836.173436] CPU: 1 PID: 11238 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1836.174231] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1836.175187] Call Trace: [ 1836.175498] dump_stack+0x107/0x167 [ 1836.175936] should_fail.cold+0x5/0xa [ 1836.176383] ? create_object.isra.0+0x3a/0xa30 [ 1836.176904] should_failslab+0x5/0x20 [ 1836.177342] kmem_cache_alloc+0x5b/0x310 [ 1836.177817] ? mark_held_locks+0x9e/0xe0 [ 1836.178306] create_object.isra.0+0x3a/0xa30 [ 1836.178814] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1836.179401] kmem_cache_alloc+0x159/0x310 [ 1836.179882] xas_alloc+0x336/0x440 [ 1836.180292] xas_create+0x34a/0x10d0 [ 1836.180728] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1836.181331] xas_store+0x8c/0x1c40 [ 1836.181751] __xa_store+0x164/0x2d0 [ 1836.182195] ? xa_delete_node+0x280/0x280 [ 1836.182677] ? trace_hardirqs_on+0x5b/0x180 [ 1836.183176] xa_store+0x31/0x50 [ 1836.183554] __io_uring_add_tctx_node+0x1cf/0x520 [ 1836.184110] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1836.184709] ? alloc_fd+0x2e7/0x670 [ 1836.185133] io_uring_setup+0x1fbb/0x2980 [ 1836.185614] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1836.186218] ? wait_for_completion_io+0x270/0x270 [ 1836.186788] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1836.187386] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1836.187512] FAULT_INJECTION: forcing a failure. [ 1836.187512] name failslab, interval 1, probability 0, space 0, times 0 [ 1836.187984] do_syscall_64+0x33/0x40 [ 1836.191032] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1836.191617] RIP: 0033:0x7fc343bc8b19 [ 1836.192044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1836.194159] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1836.195254] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1836.196280] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1836.197312] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1836.198330] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1836.199324] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1836.200356] CPU: 0 PID: 11240 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1836.202040] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1836.204026] Call Trace: [ 1836.204682] dump_stack+0x107/0x167 [ 1836.205567] should_fail.cold+0x5/0xa [ 1836.206498] ? xas_alloc+0x336/0x440 [ 1836.207392] should_failslab+0x5/0x20 [ 1836.208316] kmem_cache_alloc+0x5b/0x310 [ 1836.208669] FAULT_INJECTION: forcing a failure. [ 1836.208669] name failslab, interval 1, probability 0, space 0, times 0 [ 1836.209304] xas_alloc+0x336/0x440 [ 1836.211426] xas_create+0x34a/0x10d0 [ 1836.212352] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1836.213618] xas_store+0x8c/0x1c40 [ 1836.214512] __xa_store+0x164/0x2d0 [ 1836.215379] ? xa_delete_node+0x280/0x280 [ 1836.216393] ? trace_hardirqs_on+0x5b/0x180 [ 1836.217440] xa_store+0x31/0x50 [ 1836.218253] __io_uring_add_tctx_node+0x1cf/0x520 [ 1836.219402] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1836.220662] ? alloc_fd+0x2e7/0x670 [ 1836.221569] io_uring_setup+0x1fbb/0x2980 [ 1836.222587] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1836.223813] ? wait_for_completion_io+0x270/0x270 [ 1836.225001] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1836.226281] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1836.227540] do_syscall_64+0x33/0x40 [ 1836.228444] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1836.229673] RIP: 0033:0x7fcf2a53eb19 [ 1836.230592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1836.234993] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1836.236828] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1836.238562] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1836.240259] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1836.241963] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1836.243684] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1836.245429] CPU: 1 PID: 11242 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1836.246357] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1836.247305] Call Trace: [ 1836.247609] dump_stack+0x107/0x167 [ 1836.248027] should_fail.cold+0x5/0xa [ 1836.248470] ? xas_alloc+0x336/0x440 [ 1836.248894] should_failslab+0x5/0x20 [ 1836.249327] kmem_cache_alloc+0x5b/0x310 [ 1836.249951] xas_alloc+0x336/0x440 [ 1836.250536] xas_create+0x34a/0x10d0 [ 1836.250971] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1836.251572] xas_store+0x8c/0x1c40 [ 1836.251987] __xa_store+0x164/0x2d0 [ 1836.252410] ? xa_delete_node+0x280/0x280 [ 1836.252890] ? trace_hardirqs_on+0x5b/0x180 [ 1836.253393] xa_store+0x31/0x50 [ 1836.253775] __io_uring_add_tctx_node+0x1cf/0x520 [ 1836.254446] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1836.255144] ? alloc_fd+0x2e7/0x670 [ 1836.255569] io_uring_setup+0x1fbb/0x2980 [ 1836.256149] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1836.256987] ? wait_for_completion_io+0x270/0x270 [ 1836.257617] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1836.258222] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1836.258815] do_syscall_64+0x33/0x40 [ 1836.259239] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1836.259822] RIP: 0033:0x7f4a0d16cb19 [ 1836.260246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1836.262358] RSP: 002b:00007f4a0a6c1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1836.263227] RAX: ffffffffffffffda RBX: 00007f4a0d280020 RCX: 00007f4a0d16cb19 [ 1836.264034] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1836.264843] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1836.265658] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1836.266482] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:27:29 executing program 6: r0 = epoll_create1(0x0) epoll_create(0x3af) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r0, &(0x7f0000000000)={0x18}) r2 = epoll_create(0x3ff) ioctl$BTRFS_IOC_DEFRAG(r2, 0x50009402, 0x0) epoll_create(0x2000009) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0xee00}}, './file0\x00'}) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000080)={0x10000005}) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:27:29 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r3, &(0x7f0000000040)) 10:27:29 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:27:29 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0xe000000) [ 1836.322904] FAULT_INJECTION: forcing a failure. 10:27:29 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 53) [ 1836.322904] name failslab, interval 1, probability 0, space 0, times 0 [ 1836.326039] CPU: 0 PID: 11246 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1836.327705] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1836.329693] Call Trace: [ 1836.330614] dump_stack+0x107/0x167 [ 1836.331624] should_fail.cold+0x5/0xa [ 1836.332670] ? xas_alloc+0x336/0x440 [ 1836.333702] should_failslab+0x5/0x20 [ 1836.334767] kmem_cache_alloc+0x5b/0x310 [ 1836.335703] xas_alloc+0x336/0x440 [ 1836.336515] xas_create+0x34a/0x10d0 [ 1836.337408] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1836.338622] xas_store+0x8c/0x1c40 [ 1836.339464] __xa_store+0x164/0x2d0 [ 1836.340307] ? xa_delete_node+0x280/0x280 [ 1836.341274] ? trace_hardirqs_on+0x5b/0x180 [ 1836.342284] xa_store+0x31/0x50 [ 1836.343042] __io_uring_add_tctx_node+0x1cf/0x520 [ 1836.344155] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1836.345356] ? alloc_fd+0x2e7/0x670 [ 1836.346455] io_uring_setup+0x1fbb/0x2980 [ 1836.347612] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1836.348993] ? wait_for_completion_io+0x270/0x270 [ 1836.350361] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1836.351572] ? syscall_enter_from_user_mode+0x1d/0x50 10:27:29 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r3, &(0x7f0000000040)) [ 1836.352724] do_syscall_64+0x33/0x40 [ 1836.353653] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1836.354810] RIP: 0033:0x7fc39eed2b19 [ 1836.355640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1836.359711] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1836.361387] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1836.362968] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1836.364528] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1836.366108] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1836.367667] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1836.412977] FAULT_INJECTION: forcing a failure. 10:27:29 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x11000000) [ 1836.412977] name failslab, interval 1, probability 0, space 0, times 0 [ 1836.416268] CPU: 0 PID: 11258 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1836.418061] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1836.420193] Call Trace: [ 1836.420890] dump_stack+0x107/0x167 [ 1836.421847] should_fail.cold+0x5/0xa [ 1836.422878] ? create_object.isra.0+0x3a/0xa30 [ 1836.424038] should_failslab+0x5/0x20 10:27:29 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 46) [ 1836.425016] kmem_cache_alloc+0x5b/0x310 [ 1836.426142] ? mark_held_locks+0x9e/0xe0 [ 1836.427182] create_object.isra.0+0x3a/0xa30 [ 1836.428289] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1836.429562] kmem_cache_alloc+0x159/0x310 [ 1836.430649] xas_alloc+0x336/0x440 [ 1836.431555] xas_create+0x34a/0x10d0 [ 1836.432512] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1836.433856] xas_store+0x8c/0x1c40 [ 1836.434802] __xa_store+0x164/0x2d0 [ 1836.435727] ? xa_delete_node+0x280/0x280 [ 1836.436798] ? trace_hardirqs_on+0x5b/0x180 [ 1836.437915] xa_store+0x31/0x50 [ 1836.438753] __io_uring_add_tctx_node+0x1cf/0x520 [ 1836.439980] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1836.441280] ? alloc_fd+0x2e7/0x670 [ 1836.442236] io_uring_setup+0x1fbb/0x2980 [ 1836.443286] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1836.444540] ? wait_for_completion_io+0x270/0x270 [ 1836.445772] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1836.447118] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1836.448407] do_syscall_64+0x33/0x40 [ 1836.449341] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1836.450637] RIP: 0033:0x7fc343bc8b19 [ 1836.451566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1836.456122] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1836.458024] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1836.459770] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1836.461524] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1836.463310] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1836.465080] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:27:29 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r3, &(0x7f0000000040)) 10:27:29 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 56) [ 1836.491829] FAULT_INJECTION: forcing a failure. [ 1836.491829] name failslab, interval 1, probability 0, space 0, times 0 [ 1836.493210] CPU: 1 PID: 11265 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1836.494020] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1836.494974] Call Trace: [ 1836.495289] dump_stack+0x107/0x167 [ 1836.495708] should_fail.cold+0x5/0xa [ 1836.496150] ? create_object.isra.0+0x3a/0xa30 [ 1836.496675] should_failslab+0x5/0x20 [ 1836.497113] kmem_cache_alloc+0x5b/0x310 [ 1836.497584] ? mark_held_locks+0x9e/0xe0 [ 1836.498062] create_object.isra.0+0x3a/0xa30 [ 1836.498565] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1836.499152] kmem_cache_alloc+0x159/0x310 [ 1836.499633] xas_alloc+0x336/0x440 [ 1836.500044] xas_create+0x34a/0x10d0 [ 1836.500478] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1836.501079] xas_store+0x8c/0x1c40 [ 1836.501499] __xa_store+0x164/0x2d0 [ 1836.501919] ? xa_delete_node+0x280/0x280 [ 1836.502408] ? trace_hardirqs_on+0x5b/0x180 [ 1836.502908] xa_store+0x31/0x50 [ 1836.503291] __io_uring_add_tctx_node+0x1cf/0x520 [ 1836.503842] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1836.504443] ? alloc_fd+0x2e7/0x670 [ 1836.504871] io_uring_setup+0x1fbb/0x2980 [ 1836.505351] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1836.505934] ? wait_for_completion_io+0x270/0x270 [ 1836.506506] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1836.507105] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1836.507697] do_syscall_64+0x33/0x40 [ 1836.508126] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1836.508718] RIP: 0033:0x7f4a0d16cb19 [ 1836.509151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1836.511265] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1836.512140] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1836.512954] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1836.513768] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1836.514589] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1836.515402] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:27:29 executing program 6: r0 = epoll_create1(0x0) epoll_create(0x7) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) pipe2$9p(&(0x7f0000000680)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) preadv(r0, &(0x7f00000005c0)=[{&(0x7f0000000040)=""/114, 0x72}, {&(0x7f00000000c0)=""/177, 0xb1}, {&(0x7f0000000240)=""/203, 0xcb}, {&(0x7f0000000180)=""/36, 0x24}, {&(0x7f0000000340)=""/7, 0x7}, {&(0x7f0000000380)=""/81, 0x51}, {&(0x7f0000000400)=""/137, 0x89}, {&(0x7f00000004c0)=""/179, 0xb3}, {&(0x7f0000000580)=""/45, 0x2d}], 0x9, 0xfff, 0x40) r2 = epoll_create(0x9) r3 = epoll_create(0x203) epoll_wait(0xffffffffffffffff, &(0x7f0000000980)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0xa, 0x81) preadv(r3, &(0x7f00000007c0)=[{&(0x7f00000006c0)=""/197, 0xc5}], 0x1, 0xc8, 0x3) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f00000005c0)={'syz_tun\x00', &(0x7f0000000880)=ANY=[@ANYBLOB="41000000000000002e2f66696c653000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000e0b3e142312291f1ad364d13ff286df0d4b55a90c96b69d2df1191b3b715a06e3eb20f058e05af82c223f8078f7733565d11994324c000aceab513029ad83914d29b5346154a00"/220]}) r5 = dup2(r2, r0) r6 = open(&(0x7f0000000800)='./file1\x00', 0x204000, 0x116) r7 = ioctl$TIOCGPTPEER(r5, 0x5441, 0x7) epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r7, &(0x7f0000000840)={0x70000000}) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1836.553726] FAULT_INJECTION: forcing a failure. [ 1836.553726] name failslab, interval 1, probability 0, space 0, times 0 [ 1836.555095] CPU: 1 PID: 11269 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1836.555885] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1836.556833] Call Trace: [ 1836.557140] dump_stack+0x107/0x167 [ 1836.557557] should_fail.cold+0x5/0xa [ 1836.557997] ? create_object.isra.0+0x3a/0xa30 [ 1836.558526] should_failslab+0x5/0x20 [ 1836.558965] kmem_cache_alloc+0x5b/0x310 [ 1836.559431] ? mark_held_locks+0x9e/0xe0 [ 1836.559900] create_object.isra.0+0x3a/0xa30 [ 1836.560397] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1836.560976] kmem_cache_alloc+0x159/0x310 [ 1836.561453] xas_alloc+0x336/0x440 [ 1836.561864] xas_create+0x34a/0x10d0 [ 1836.562309] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1836.562910] xas_store+0x8c/0x1c40 [ 1836.563326] __xa_store+0x164/0x2d0 [ 1836.563743] ? xa_delete_node+0x280/0x280 [ 1836.564225] ? trace_hardirqs_on+0x5b/0x180 [ 1836.564722] xa_store+0x31/0x50 [ 1836.565101] __io_uring_add_tctx_node+0x1cf/0x520 [ 1836.565656] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1836.566263] ? alloc_fd+0x2e7/0x670 [ 1836.566685] io_uring_setup+0x1fbb/0x2980 [ 1836.567167] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1836.567748] ? wait_for_completion_io+0x270/0x270 [ 1836.568313] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1836.568913] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1836.569502] do_syscall_64+0x33/0x40 [ 1836.569929] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1836.570526] RIP: 0033:0x7fcf2a53eb19 [ 1836.570952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1836.573034] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1836.573905] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1836.574724] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1836.575539] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1836.576353] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1836.577167] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:27:46 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 58) 10:27:46 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 54) 10:27:46 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 47) 10:27:46 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x2e000000) 10:27:46 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:27:46 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) preadv(r2, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r3 = epoll_create(0x3ff) r4 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000040)) 10:27:46 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:27:46 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 57) [ 1853.100409] FAULT_INJECTION: forcing a failure. [ 1853.100409] name failslab, interval 1, probability 0, space 0, times 0 [ 1853.102075] CPU: 1 PID: 11289 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1853.103037] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1853.104169] Call Trace: [ 1853.104536] dump_stack+0x107/0x167 [ 1853.105040] should_fail.cold+0x5/0xa [ 1853.105564] ? create_object.isra.0+0x3a/0xa30 [ 1853.106203] should_failslab+0x5/0x20 [ 1853.106733] kmem_cache_alloc+0x5b/0x310 [ 1853.107022] FAULT_INJECTION: forcing a failure. [ 1853.107022] name failslab, interval 1, probability 0, space 0, times 0 [ 1853.107291] ? mark_held_locks+0x9e/0xe0 [ 1853.107318] create_object.isra.0+0x3a/0xa30 [ 1853.110804] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1853.111493] kmem_cache_alloc+0x159/0x310 [ 1853.112061] xas_alloc+0x336/0x440 [ 1853.112543] xas_create+0x34a/0x10d0 [ 1853.113057] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1853.113764] xas_store+0x8c/0x1c40 [ 1853.114272] __xa_store+0x164/0x2d0 [ 1853.114766] ? xa_delete_node+0x280/0x280 [ 1853.115334] ? trace_hardirqs_on+0x5b/0x180 [ 1853.115923] xa_store+0x31/0x50 [ 1853.116372] __io_uring_add_tctx_node+0x1cf/0x520 [ 1853.117020] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1853.117726] ? alloc_fd+0x2e7/0x670 [ 1853.118254] io_uring_setup+0x1fbb/0x2980 [ 1853.118820] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1853.119507] ? wait_for_completion_io+0x270/0x270 [ 1853.120188] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1853.120897] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1853.121608] do_syscall_64+0x33/0x40 [ 1853.122115] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1853.122833] RIP: 0033:0x7fc343bc8b19 [ 1853.123342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1853.125799] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1853.126846] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1853.127799] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1853.128758] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1853.129716] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1853.130696] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1853.131675] CPU: 0 PID: 11290 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1853.133167] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1853.134938] Call Trace: [ 1853.135504] dump_stack+0x107/0x167 [ 1853.136280] should_fail.cold+0x5/0xa [ 1853.137088] ? xas_alloc+0x336/0x440 [ 1853.137878] should_failslab+0x5/0x20 [ 1853.138691] kmem_cache_alloc+0x5b/0x310 [ 1853.139559] xas_alloc+0x336/0x440 [ 1853.140314] xas_create+0x34a/0x10d0 [ 1853.141126] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1853.142249] xas_store+0x8c/0x1c40 [ 1853.143015] __xa_store+0x164/0x2d0 [ 1853.143790] ? xa_delete_node+0x280/0x280 [ 1853.144686] ? trace_hardirqs_on+0x5b/0x180 [ 1853.145613] xa_store+0x31/0x50 [ 1853.146333] __io_uring_add_tctx_node+0x1cf/0x520 [ 1853.147361] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1853.148481] ? alloc_fd+0x2e7/0x670 [ 1853.149267] io_uring_setup+0x1fbb/0x2980 [ 1853.150169] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1853.151242] ? wait_for_completion_io+0x270/0x270 [ 1853.152285] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1853.153396] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1853.154503] do_syscall_64+0x33/0x40 [ 1853.155293] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1853.156368] RIP: 0033:0x7fcf2a53eb19 [ 1853.157156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1853.161048] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1853.162672] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1853.164180] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1853.165690] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1853.167207] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1853.168723] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1853.193308] FAULT_INJECTION: forcing a failure. [ 1853.193308] name failslab, interval 1, probability 0, space 0, times 0 [ 1853.194886] CPU: 1 PID: 11292 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1853.195785] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1853.196861] Call Trace: [ 1853.197211] dump_stack+0x107/0x167 [ 1853.197683] should_fail.cold+0x5/0xa [ 1853.198197] ? create_object.isra.0+0x3a/0xa30 [ 1853.198801] should_failslab+0x5/0x20 [ 1853.199294] kmem_cache_alloc+0x5b/0x310 [ 1853.199827] ? mark_held_locks+0x9e/0xe0 [ 1853.200359] create_object.isra.0+0x3a/0xa30 [ 1853.200923] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1853.201575] kmem_cache_alloc+0x159/0x310 [ 1853.202121] xas_alloc+0x336/0x440 [ 1853.202605] xas_create+0x34a/0x10d0 [ 1853.203097] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1853.203771] xas_store+0x8c/0x1c40 [ 1853.204239] __xa_store+0x164/0x2d0 [ 1853.204705] ? xa_delete_node+0x280/0x280 [ 1853.205255] ? trace_hardirqs_on+0x5b/0x180 [ 1853.205809] xa_store+0x31/0x50 [ 1853.206273] __io_uring_add_tctx_node+0x1cf/0x520 [ 1853.206896] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1853.207566] ? alloc_fd+0x2e7/0x670 [ 1853.208045] io_uring_setup+0x1fbb/0x2980 [ 1853.208587] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1853.209231] ? wait_for_completion_io+0x270/0x270 [ 1853.209860] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1853.210551] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1853.211215] do_syscall_64+0x33/0x40 [ 1853.211692] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1853.212341] RIP: 0033:0x7fc39eed2b19 [ 1853.212823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1853.215196] RSP: 002b:00007fc39c427108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1853.216157] RAX: ffffffffffffffda RBX: 00007fc39efe6020 RCX: 00007fc39eed2b19 [ 1853.217058] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1853.217961] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1853.218875] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1853.219772] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1853.254957] FAULT_INJECTION: forcing a failure. [ 1853.254957] name failslab, interval 1, probability 0, space 0, times 0 [ 1853.257403] CPU: 0 PID: 11282 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1853.258876] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1853.260618] Call Trace: [ 1853.261177] dump_stack+0x107/0x167 [ 1853.261955] should_fail.cold+0x5/0xa [ 1853.262767] ? xas_alloc+0x336/0x440 [ 1853.263545] should_failslab+0x5/0x20 [ 1853.264343] kmem_cache_alloc+0x5b/0x310 [ 1853.265203] xas_alloc+0x336/0x440 [ 1853.265949] xas_create+0x34a/0x10d0 [ 1853.266774] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1853.267873] xas_store+0x8c/0x1c40 [ 1853.268642] __xa_store+0x164/0x2d0 [ 1853.269412] ? xa_delete_node+0x280/0x280 [ 1853.270301] ? trace_hardirqs_on+0x5b/0x180 [ 1853.271218] xa_store+0x31/0x50 [ 1853.271919] __io_uring_add_tctx_node+0x1cf/0x520 [ 1853.272934] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1853.274038] ? alloc_fd+0x2e7/0x670 [ 1853.274827] io_uring_setup+0x1fbb/0x2980 [ 1853.275713] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1853.276776] ? wait_for_completion_io+0x270/0x270 [ 1853.277819] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1853.278930] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1853.280019] do_syscall_64+0x33/0x40 [ 1853.280803] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1853.281879] RIP: 0033:0x7f4a0d16cb19 [ 1853.282673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1853.286534] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1853.288134] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1853.289625] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1853.291130] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1853.292630] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1853.294120] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:28:03 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 48) 10:28:03 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:28:03 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 58) 10:28:03 executing program 3: r0 = epoll_create1(0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r1, &(0x7f0000000040)='reno\x00', 0x5) preadv(r1, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000040)) 10:28:03 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 55) 10:28:03 executing program 6: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x8000000) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000040), &(0x7f0000000080)=0x30) r1 = epoll_create1(0x0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000000)) r3 = epoll_create(0x3ff) r4 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r1, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000200)) 10:28:03 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x30000000) 10:28:03 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 59) [ 1870.556140] FAULT_INJECTION: forcing a failure. [ 1870.556140] name failslab, interval 1, probability 0, space 0, times 0 [ 1870.558332] FAULT_INJECTION: forcing a failure. [ 1870.558332] name failslab, interval 1, probability 0, space 0, times 0 [ 1870.558574] CPU: 0 PID: 11313 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1870.562220] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1870.563920] Call Trace: [ 1870.564460] dump_stack+0x107/0x167 [ 1870.565204] should_fail.cold+0x5/0xa [ 1870.565981] ? xas_alloc+0x336/0x440 [ 1870.566761] should_failslab+0x5/0x20 [ 1870.567533] kmem_cache_alloc+0x5b/0x310 [ 1870.568361] xas_alloc+0x336/0x440 [ 1870.569086] xas_create+0x34a/0x10d0 [ 1870.569862] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1870.570941] xas_store+0x8c/0x1c40 [ 1870.571678] __xa_store+0x164/0x2d0 [ 1870.572424] ? xa_delete_node+0x280/0x280 [ 1870.573276] ? trace_hardirqs_on+0x5b/0x180 [ 1870.574152] xa_store+0x31/0x50 [ 1870.574831] __io_uring_add_tctx_node+0x1cf/0x520 [ 1870.575804] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1870.576855] ? alloc_fd+0x2e7/0x670 [ 1870.577598] io_uring_setup+0x1fbb/0x2980 [ 1870.578452] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1870.579497] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1870.580556] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1870.581594] do_syscall_64+0x33/0x40 [ 1870.582352] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1870.583378] RIP: 0033:0x7fc39eed2b19 [ 1870.584122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1870.587820] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1870.589351] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1870.590799] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1870.592228] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1870.593656] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1870.595084] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1870.596564] CPU: 1 PID: 11312 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1870.598101] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1870.599907] Call Trace: [ 1870.600489] dump_stack+0x107/0x167 [ 1870.601287] should_fail.cold+0x5/0xa [ 1870.602115] ? xas_alloc+0x336/0x440 [ 1870.602938] should_failslab+0x5/0x20 [ 1870.603764] kmem_cache_alloc+0x5b/0x310 [ 1870.604651] xas_alloc+0x336/0x440 [ 1870.605426] xas_create+0x34a/0x10d0 [ 1870.606249] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1870.607397] xas_store+0x8c/0x1c40 [ 1870.608187] __xa_store+0x164/0x2d0 [ 1870.608982] ? xa_delete_node+0x280/0x280 [ 1870.609889] ? trace_hardirqs_on+0x5b/0x180 [ 1870.610849] xa_store+0x31/0x50 [ 1870.611571] __io_uring_add_tctx_node+0x1cf/0x520 [ 1870.612616] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1870.613791] ? alloc_fd+0x2e7/0x670 [ 1870.614611] io_uring_setup+0x1fbb/0x2980 [ 1870.615515] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1870.616605] ? wait_for_completion_io+0x270/0x270 [ 1870.617690] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1870.618831] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1870.619951] do_syscall_64+0x33/0x40 [ 1870.620762] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1870.621868] RIP: 0033:0x7fc343bc8b19 [ 1870.622684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1870.626664] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1870.628311] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1870.629848] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1870.631400] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1870.632939] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1870.634483] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1870.646946] FAULT_INJECTION: forcing a failure. [ 1870.646946] name failslab, interval 1, probability 0, space 0, times 0 [ 1870.649413] CPU: 1 PID: 11308 Comm: syz-executor.0 Not tainted 5.10.247 #1 10:28:03 executing program 3: r0 = epoll_create1(0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r1, &(0x7f0000000040)='reno\x00', 0x5) preadv(r1, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000040)) [ 1870.650921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1870.652964] Call Trace: [ 1870.653540] dump_stack+0x107/0x167 [ 1870.654346] should_fail.cold+0x5/0xa [ 1870.655179] ? create_object.isra.0+0x3a/0xa30 [ 1870.656174] should_failslab+0x5/0x20 [ 1870.657000] kmem_cache_alloc+0x5b/0x310 [ 1870.657883] ? mark_held_locks+0x9e/0xe0 [ 1870.658776] create_object.isra.0+0x3a/0xa30 [ 1870.659725] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1870.660831] kmem_cache_alloc+0x159/0x310 [ 1870.661742] xas_alloc+0x336/0x440 [ 1870.662528] xas_create+0x34a/0x10d0 [ 1870.663351] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1870.664494] xas_store+0x8c/0x1c40 [ 1870.665284] __xa_store+0x164/0x2d0 [ 1870.666076] ? xa_delete_node+0x280/0x280 [ 1870.666998] ? trace_hardirqs_on+0x5b/0x180 [ 1870.667943] xa_store+0x31/0x50 [ 1870.668663] __io_uring_add_tctx_node+0x1cf/0x520 [ 1870.669706] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1870.670850] ? alloc_fd+0x2e7/0x670 [ 1870.671656] io_uring_setup+0x1fbb/0x2980 [ 1870.672566] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1870.673662] ? wait_for_completion_io+0x270/0x270 [ 1870.674750] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1870.675884] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1870.677005] do_syscall_64+0x33/0x40 [ 1870.677814] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1870.678931] RIP: 0033:0x7f4a0d16cb19 [ 1870.679737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1870.683714] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1870.685363] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1870.686921] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1870.688463] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1870.690005] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1870.691551] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1870.696353] FAULT_INJECTION: forcing a failure. [ 1870.696353] name failslab, interval 1, probability 0, space 0, times 0 [ 1870.698819] CPU: 1 PID: 11311 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1870.700309] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1870.702087] Call Trace: [ 1870.702675] dump_stack+0x107/0x167 [ 1870.703463] should_fail.cold+0x5/0xa [ 1870.704281] ? ___slab_alloc+0x155/0x700 [ 1870.705155] ? create_object.isra.0+0x3a/0xa30 [ 1870.706143] should_failslab+0x5/0x20 [ 1870.706982] kmem_cache_alloc+0x5b/0x310 [ 1870.707867] create_object.isra.0+0x3a/0xa30 [ 1870.708812] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1870.709911] kmem_cache_alloc+0x159/0x310 [ 1870.710825] xas_alloc+0x336/0x440 [ 1870.711600] xas_create+0x34a/0x10d0 [ 1870.712419] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1870.713553] xas_store+0x8c/0x1c40 [ 1870.714345] __xa_store+0x164/0x2d0 [ 1870.715134] ? xa_delete_node+0x280/0x280 [ 1870.716038] ? trace_hardirqs_on+0x5b/0x180 [ 1870.716975] xa_store+0x31/0x50 [ 1870.717689] __io_uring_add_tctx_node+0x1cf/0x520 [ 1870.718738] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1870.719865] ? alloc_fd+0x2e7/0x670 [ 1870.720667] io_uring_setup+0x1fbb/0x2980 [ 1870.721572] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1870.722673] ? wait_for_completion_io+0x270/0x270 [ 1870.723739] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1870.724869] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1870.725986] do_syscall_64+0x33/0x40 [ 1870.726799] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1870.727905] RIP: 0033:0x7fcf2a53eb19 [ 1870.728709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1870.732683] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1870.734350] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1870.735887] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1870.737423] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1870.738970] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1870.740513] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:28:03 executing program 3: r0 = epoll_create1(0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r1, &(0x7f0000000040)='reno\x00', 0x5) preadv(r1, &(0x7f0000002640)=[{&(0x7f0000000080)=""/38, 0x26}, {&(0x7f00000000c0)=""/13, 0xd}, {&(0x7f0000000100)=""/186, 0xba}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/245, 0xf5}, {&(0x7f0000001300)=""/192, 0xc0}, {&(0x7f00000013c0)=""/226, 0xe2}, {&(0x7f00000014c0)=""/195, 0xc3}, {&(0x7f00000015c0)=""/88, 0x58}, {&(0x7f0000001640)=""/4096, 0x1000}], 0xa, 0x58d8, 0x101) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000040)) 10:28:03 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x9627) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:28:03 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 60) 10:28:03 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 56) 10:28:03 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, 0xffffffffffffffff, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1870.830828] FAULT_INJECTION: forcing a failure. [ 1870.830828] name failslab, interval 1, probability 0, space 0, times 0 [ 1870.832847] CPU: 0 PID: 11325 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1870.834066] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1870.835528] Call Trace: [ 1870.835995] dump_stack+0x107/0x167 [ 1870.836630] should_fail.cold+0x5/0xa [ 1870.837297] ? ___slab_alloc+0x155/0x700 [ 1870.838010] ? create_object.isra.0+0x3a/0xa30 [ 1870.838811] should_failslab+0x5/0x20 [ 1870.839472] kmem_cache_alloc+0x5b/0x310 [ 1870.840184] create_object.isra.0+0x3a/0xa30 [ 1870.840951] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1870.841842] kmem_cache_alloc+0x159/0x310 [ 1870.842577] xas_alloc+0x336/0x440 [ 1870.843200] xas_create+0x34a/0x10d0 [ 1870.843858] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1870.844772] xas_store+0x8c/0x1c40 [ 1870.845406] __xa_store+0x164/0x2d0 [ 1870.846039] ? xa_delete_node+0x280/0x280 [ 1870.846774] ? trace_hardirqs_on+0x5b/0x180 [ 1870.847526] xa_store+0x31/0x50 [ 1870.848110] __io_uring_add_tctx_node+0x1cf/0x520 [ 1870.848950] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1870.849855] ? alloc_fd+0x2e7/0x670 [ 1870.850493] io_uring_setup+0x1fbb/0x2980 [ 1870.851211] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1870.852075] ? wait_for_completion_io+0x270/0x270 [ 1870.852921] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1870.853821] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1870.854715] do_syscall_64+0x33/0x40 [ 1870.855354] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1870.856228] RIP: 0033:0x7fc39eed2b19 [ 1870.856863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1870.860016] RSP: 002b:00007fc39c448108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1870.861318] RAX: ffffffffffffffda RBX: 00007fc39efe5f60 RCX: 00007fc39eed2b19 [ 1870.862546] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1870.863767] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1870.864980] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1870.866177] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:28:03 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = syz_io_uring_complete(0x0) getsockopt$IP_VS_SO_GET_VERSION(r2, 0x0, 0x480, &(0x7f0000000040), &(0x7f0000000080)=0x40) r3 = epoll_create(0x3ff) r4 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000200)) 10:28:03 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 49) 10:28:03 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x40000000) 10:28:03 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 59) 10:28:03 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r3 = epoll_create(0x3ff) r4 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000040)) [ 1870.930244] FAULT_INJECTION: forcing a failure. [ 1870.930244] name failslab, interval 1, probability 0, space 0, times 0 [ 1870.932692] CPU: 1 PID: 11330 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1870.934193] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1870.935995] Call Trace: [ 1870.936569] dump_stack+0x107/0x167 [ 1870.937364] should_fail.cold+0x5/0xa [ 1870.938194] ? create_object.isra.0+0x3a/0xa30 [ 1870.939190] should_failslab+0x5/0x20 [ 1870.940013] kmem_cache_alloc+0x5b/0x310 [ 1870.940894] ? mark_held_locks+0x9e/0xe0 [ 1870.940973] FAULT_INJECTION: forcing a failure. [ 1870.940973] name failslab, interval 1, probability 0, space 0, times 0 [ 1870.941775] create_object.isra.0+0x3a/0xa30 [ 1870.941793] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1870.941821] kmem_cache_alloc+0x159/0x310 [ 1870.946483] xas_alloc+0x336/0x440 [ 1870.947257] xas_create+0x34a/0x10d0 [ 1870.948081] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1870.949214] xas_store+0x8c/0x1c40 [ 1870.950007] __xa_store+0x164/0x2d0 [ 1870.950808] ? xa_delete_node+0x280/0x280 [ 1870.951716] ? trace_hardirqs_on+0x5b/0x180 [ 1870.952659] xa_store+0x31/0x50 [ 1870.953374] __io_uring_add_tctx_node+0x1cf/0x520 [ 1870.954424] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1870.955600] ? alloc_fd+0x2e7/0x670 [ 1870.956433] io_uring_setup+0x1fbb/0x2980 [ 1870.957346] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1870.958458] ? wait_for_completion_io+0x270/0x270 [ 1870.959534] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1870.960675] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1870.961796] do_syscall_64+0x33/0x40 [ 1870.962622] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1870.963730] RIP: 0033:0x7fc343bc8b19 [ 1870.964535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1870.968514] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1870.970161] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1870.971707] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1870.973246] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1870.974799] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1870.976336] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1870.977918] CPU: 0 PID: 11338 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1870.979002] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1870.980265] Call Trace: [ 1870.980675] dump_stack+0x107/0x167 [ 1870.981233] should_fail.cold+0x5/0xa [ 1870.981815] ? xas_alloc+0x336/0x440 [ 1870.982392] should_failslab+0x5/0x20 [ 1870.982973] kmem_cache_alloc+0x5b/0x310 [ 1870.983596] xas_alloc+0x336/0x440 [ 1870.984147] xas_create+0x34a/0x10d0 [ 1870.984729] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1870.985528] xas_store+0x8c/0x1c40 [ 1870.986083] __xa_store+0x164/0x2d0 [ 1870.986665] ? xa_delete_node+0x280/0x280 [ 1870.987329] ? trace_hardirqs_on+0x5b/0x180 [ 1870.988016] xa_store+0x31/0x50 [ 1870.988541] __io_uring_add_tctx_node+0x1cf/0x520 [ 1870.989307] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1870.990148] ? alloc_fd+0x2e7/0x670 [ 1870.990750] io_uring_setup+0x1fbb/0x2980 [ 1870.991410] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1870.992206] ? wait_for_completion_io+0x270/0x270 [ 1870.992981] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1870.993804] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1870.994606] do_syscall_64+0x33/0x40 [ 1870.995169] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1870.995940] RIP: 0033:0x7fcf2a53eb19 [ 1870.996501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1870.999286] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1871.000448] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1871.001560] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1871.002665] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1871.003780] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1871.004882] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1871.006629] FAULT_INJECTION: forcing a failure. [ 1871.006629] name failslab, interval 1, probability 0, space 0, times 0 [ 1871.008304] CPU: 0 PID: 11339 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1871.009342] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1871.010546] Call Trace: [ 1871.010936] dump_stack+0x107/0x167 [ 1871.011473] should_fail.cold+0x5/0xa [ 1871.012025] ? xas_alloc+0x336/0x440 [ 1871.012568] should_failslab+0x5/0x20 [ 1871.013130] kmem_cache_alloc+0x5b/0x310 [ 1871.013756] xas_alloc+0x336/0x440 [ 1871.014287] xas_create+0x34a/0x10d0 [ 1871.014865] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1871.015641] xas_store+0x8c/0x1c40 [ 1871.016169] __xa_store+0x164/0x2d0 [ 1871.016714] ? xa_delete_node+0x280/0x280 [ 1871.017327] ? trace_hardirqs_on+0x5b/0x180 [ 1871.017967] xa_store+0x31/0x50 [ 1871.018469] __io_uring_add_tctx_node+0x1cf/0x520 [ 1871.019176] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1871.019948] ? alloc_fd+0x2e7/0x670 [ 1871.020500] io_uring_setup+0x1fbb/0x2980 [ 1871.021126] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1871.021867] ? wait_for_completion_io+0x270/0x270 [ 1871.022616] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1871.023387] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1871.024135] do_syscall_64+0x33/0x40 [ 1871.024673] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1871.025404] RIP: 0033:0x7f4a0d16cb19 [ 1871.025940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1871.028569] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1871.029663] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1871.030691] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1871.031701] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1871.032715] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1871.033721] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:28:04 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000040)) 10:28:04 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 61) 10:28:04 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, 0xffffffffffffffff, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:28:04 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) r4 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000040)='.pending_reads\x00', 0x20000, 0x21) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f0000000080)={0x18}) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:28:04 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x7ffffff7) [ 1871.095525] FAULT_INJECTION: forcing a failure. [ 1871.095525] name failslab, interval 1, probability 0, space 0, times 0 [ 1871.098647] CPU: 1 PID: 11344 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1871.100124] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1871.101888] Call Trace: [ 1871.102463] dump_stack+0x107/0x167 [ 1871.103239] should_fail.cold+0x5/0xa [ 1871.104050] ? vm_area_dup+0x78/0x290 [ 1871.104860] should_failslab+0x5/0x20 [ 1871.105673] kmem_cache_alloc+0x5b/0x310 [ 1871.106553] vm_area_dup+0x78/0x290 [ 1871.107329] ? lock_release+0x680/0x680 [ 1871.108177] ? mark_lock+0xf5/0x2df0 [ 1871.108973] ? lock_chain_count+0x20/0x20 [ 1871.109852] ? mark_lock+0xf5/0x2df0 [ 1871.110656] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1871.111765] ? lock_chain_count+0x20/0x20 [ 1871.112656] ? mark_lock+0xf5/0x2df0 [ 1871.113446] ? vm_area_alloc+0x110/0x110 [ 1871.114322] ? __lock_acquire+0x1657/0x5b00 [ 1871.115259] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1871.116363] ? SOFTIRQ_verbose+0x10/0x10 [ 1871.117217] ? vmacache_find+0x55/0x2a0 [ 1871.118059] __split_vma+0xa8/0x4e0 [ 1871.118841] __do_munmap+0x365/0x1260 [ 1871.119653] ? arch_get_unmapped_area+0x450/0x450 [ 1871.120675] ? lock_release+0x680/0x680 [ 1871.121519] mmap_region+0x7cc/0x1500 10:28:04 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, 0xffffffffffffffff, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1871.122349] do_mmap+0x868/0x1370 [ 1871.123209] vm_mmap_pgoff+0x198/0x1f0 [ 1871.124039] ? randomize_page+0xb0/0xb0 [ 1871.124904] ksys_mmap_pgoff+0x41c/0x560 [ 1871.125765] ? find_mergeable_anon_vma+0x250/0x250 [ 1871.126813] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1871.127922] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1871.129014] do_syscall_64+0x33/0x40 [ 1871.129800] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1871.130890] RIP: 0033:0x7fc39eed2b62 [ 1871.131681] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1871.135566] RSP: 002b:00007fc39c4480f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1871.137172] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fc39eed2b62 10:28:04 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 50) [ 1871.138682] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 1871.140309] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1871.141824] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200003c0 [ 1871.143331] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:28:04 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0xc8050000) 10:28:04 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000040)) [ 1871.198988] FAULT_INJECTION: forcing a failure. [ 1871.198988] name failslab, interval 1, probability 0, space 0, times 0 [ 1871.200567] CPU: 0 PID: 11359 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1871.201479] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1871.202560] Call Trace: [ 1871.202910] dump_stack+0x107/0x167 [ 1871.203385] should_fail.cold+0x5/0xa [ 1871.203882] ? create_object.isra.0+0x3a/0xa30 [ 1871.204468] should_failslab+0x5/0x20 [ 1871.204955] kmem_cache_alloc+0x5b/0x310 [ 1871.205482] ? mark_held_locks+0x9e/0xe0 [ 1871.206022] create_object.isra.0+0x3a/0xa30 [ 1871.206605] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1871.207258] kmem_cache_alloc+0x159/0x310 [ 1871.207799] xas_alloc+0x336/0x440 [ 1871.208245] xas_create+0x34a/0x10d0 [ 1871.208743] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1871.209408] xas_store+0x8c/0x1c40 [ 1871.209878] __xa_store+0x164/0x2d0 [ 1871.210343] ? xa_delete_node+0x280/0x280 [ 1871.210883] ? trace_hardirqs_on+0x5b/0x180 [ 1871.211439] xa_store+0x31/0x50 [ 1871.211867] __io_uring_add_tctx_node+0x1cf/0x520 [ 1871.212485] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1871.213144] ? alloc_fd+0x2e7/0x670 [ 1871.213617] io_uring_setup+0x1fbb/0x2980 [ 1871.214156] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1871.214808] ? wait_for_completion_io+0x270/0x270 [ 1871.215449] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1871.216112] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1871.216768] do_syscall_64+0x33/0x40 [ 1871.217242] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1871.217890] RIP: 0033:0x7f4a0d16cb19 [ 1871.218372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1871.220692] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1871.221640] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1871.222533] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1871.223418] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1871.224305] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1871.225190] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:28:22 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 57) 10:28:22 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0xeffdffff) 10:28:22 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 62) 10:28:22 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 60) 10:28:22 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 51) 10:28:22 executing program 3: r0 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) r1 = epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040)) 10:28:22 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:28:22 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r4, 0x8000000) r5 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r5, &(0x7f0000000040)='reno\x00', 0x5) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000040)={0x80000010}) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) r6 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r6, &(0x7f0000000040)='reno\x00', 0x5) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r7, &(0x7f0000000040)='reno\x00', 0x5) dup2(r6, r7) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) [ 1889.446294] FAULT_INJECTION: forcing a failure. [ 1889.446294] name failslab, interval 1, probability 0, space 0, times 0 [ 1889.447877] CPU: 1 PID: 11373 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1889.448843] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1889.449994] Call Trace: [ 1889.450363] dump_stack+0x107/0x167 [ 1889.450883] should_fail.cold+0x5/0xa [ 1889.451418] ? ___slab_alloc+0x155/0x700 [ 1889.451990] ? create_object.isra.0+0x3a/0xa30 [ 1889.452632] should_failslab+0x5/0x20 [ 1889.453157] kmem_cache_alloc+0x5b/0x310 [ 1889.453726] create_object.isra.0+0x3a/0xa30 [ 1889.454332] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1889.455044] kmem_cache_alloc+0x159/0x310 [ 1889.455614] xas_alloc+0x336/0x440 [ 1889.456111] xas_create+0x34a/0x10d0 [ 1889.456653] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1889.457403] xas_store+0x8c/0x1c40 [ 1889.457909] __xa_store+0x164/0x2d0 [ 1889.458416] ? xa_delete_node+0x280/0x280 [ 1889.458992] ? trace_hardirqs_on+0x5b/0x180 [ 1889.459621] xa_store+0x31/0x50 [ 1889.460087] __io_uring_add_tctx_node+0x1cf/0x520 [ 1889.460796] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1889.461526] ? alloc_fd+0x2e7/0x670 [ 1889.462041] io_uring_setup+0x1fbb/0x2980 [ 1889.462627] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1889.463359] ? wait_for_completion_io+0x270/0x270 [ 1889.464054] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1889.464795] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1889.465513] do_syscall_64+0x33/0x40 [ 1889.466026] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1889.466754] RIP: 0033:0x7fcf2a53eb19 [ 1889.467272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1889.469788] RSP: 002b:00007fcf27ab4108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1889.470856] RAX: ffffffffffffffda RBX: 00007fcf2a651f60 RCX: 00007fcf2a53eb19 [ 1889.471831] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1889.472815] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1889.473729] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1889.474713] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1889.482538] FAULT_INJECTION: forcing a failure. [ 1889.482538] name failslab, interval 1, probability 0, space 0, times 0 [ 1889.483131] FAULT_INJECTION: forcing a failure. [ 1889.483131] name failslab, interval 1, probability 0, space 0, times 0 [ 1889.485616] CPU: 0 PID: 11371 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1889.485634] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1889.491016] Call Trace: [ 1889.491698] dump_stack+0x107/0x167 [ 1889.492638] should_fail.cold+0x5/0xa [ 1889.493657] ? xas_alloc+0x336/0x440 [ 1889.494622] should_failslab+0x5/0x20 [ 1889.495593] kmem_cache_alloc+0x5b/0x310 [ 1889.496638] xas_alloc+0x336/0x440 [ 1889.497589] xas_create+0x34a/0x10d0 [ 1889.498583] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1889.499934] xas_store+0x8c/0x1c40 [ 1889.500866] __xa_store+0x164/0x2d0 [ 1889.501806] ? xa_delete_node+0x280/0x280 [ 1889.502900] ? trace_hardirqs_on+0x5b/0x180 [ 1889.504020] xa_store+0x31/0x50 [ 1889.504874] __io_uring_add_tctx_node+0x1cf/0x520 [ 1889.506111] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1889.507344] ? alloc_fd+0x2e7/0x670 [ 1889.508137] io_uring_setup+0x1fbb/0x2980 [ 1889.509037] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1889.510116] ? wait_for_completion_io+0x270/0x270 [ 1889.511181] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1889.512301] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1889.513403] do_syscall_64+0x33/0x40 [ 1889.514295] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1889.515394] RIP: 0033:0x7fc343bc8b19 [ 1889.516185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1889.520099] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1889.521717] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1889.523253] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1889.524767] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1889.526302] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1889.527822] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1889.529372] CPU: 1 PID: 11378 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1889.530346] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1889.531476] Call Trace: [ 1889.531821] dump_stack+0x107/0x167 [ 1889.532323] should_fail.cold+0x5/0xa [ 1889.532848] ? create_object.isra.0+0x3a/0xa30 [ 1889.533467] should_failslab+0x5/0x20 [ 1889.533996] kmem_cache_alloc+0x5b/0x310 [ 1889.534552] create_object.isra.0+0x3a/0xa30 [ 1889.535146] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1889.535829] kmem_cache_alloc+0x159/0x310 [ 1889.536415] vm_area_dup+0x78/0x290 [ 1889.537022] ? lock_release+0x680/0x680 [ 1889.537628] ? mark_lock+0xf5/0x2df0 [ 1889.538221] ? lock_chain_count+0x20/0x20 [ 1889.538891] ? mark_lock+0xf5/0x2df0 [ 1889.539402] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1889.540056] ? lock_chain_count+0x20/0x20 [ 1889.540648] ? mark_lock+0xf5/0x2df0 [ 1889.541149] ? vm_area_alloc+0x110/0x110 [ 1889.541734] ? __lock_acquire+0x1657/0x5b00 [ 1889.542350] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1889.543051] ? SOFTIRQ_verbose+0x10/0x10 [ 1889.543627] ? vmacache_find+0x55/0x2a0 [ 1889.544169] __split_vma+0xa8/0x4e0 [ 1889.544668] __do_munmap+0x365/0x1260 [ 1889.545188] ? arch_get_unmapped_area+0x450/0x450 [ 1889.545844] ? lock_release+0x680/0x680 [ 1889.545905] FAULT_INJECTION: forcing a failure. [ 1889.545905] name failslab, interval 1, probability 0, space 0, times 0 [ 1889.546376] mmap_region+0x7cc/0x1500 [ 1889.546403] do_mmap+0x868/0x1370 [ 1889.546429] vm_mmap_pgoff+0x198/0x1f0 [ 1889.550839] ? randomize_page+0xb0/0xb0 [ 1889.551383] ksys_mmap_pgoff+0x41c/0x560 [ 1889.551943] ? find_mergeable_anon_vma+0x250/0x250 [ 1889.552591] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1889.553294] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1889.553994] do_syscall_64+0x33/0x40 [ 1889.554505] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1889.555180] RIP: 0033:0x7fc39eed2b62 [ 1889.555670] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1889.558113] RSP: 002b:00007fc39c4480f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1889.559138] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fc39eed2b62 [ 1889.560098] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 1889.560990] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1889.561959] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200003c0 [ 1889.562941] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1889.563941] CPU: 0 PID: 11381 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1889.565435] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1889.567220] Call Trace: [ 1889.567791] dump_stack+0x107/0x167 [ 1889.568573] should_fail.cold+0x5/0xa [ 1889.569387] ? xas_alloc+0x336/0x440 [ 1889.570184] should_failslab+0x5/0x20 [ 1889.571003] kmem_cache_alloc+0x5b/0x310 [ 1889.571876] xas_alloc+0x336/0x440 [ 1889.572641] xas_create+0x34a/0x10d0 [ 1889.573451] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1889.574583] xas_store+0x8c/0x1c40 [ 1889.575359] __xa_store+0x164/0x2d0 [ 1889.576141] ? xa_delete_node+0x280/0x280 [ 1889.577037] ? trace_hardirqs_on+0x5b/0x180 [ 1889.577970] xa_store+0x31/0x50 [ 1889.578686] __io_uring_add_tctx_node+0x1cf/0x520 [ 1889.579724] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1889.580837] ? alloc_fd+0x2e7/0x670 [ 1889.581632] io_uring_setup+0x1fbb/0x2980 [ 1889.582532] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1889.583615] ? wait_for_completion_io+0x270/0x270 [ 1889.584665] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1889.585789] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1889.586897] do_syscall_64+0x33/0x40 [ 1889.587697] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1889.588786] RIP: 0033:0x7f4a0d16cb19 [ 1889.589582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1889.593509] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1889.595136] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1889.596649] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1889.598160] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1889.599680] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1889.601194] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:28:22 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 61) 10:28:22 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 63) [ 1889.648998] FAULT_INJECTION: forcing a failure. [ 1889.648998] name failslab, interval 1, probability 0, space 0, times 0 [ 1889.650502] CPU: 1 PID: 11386 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1889.651384] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1889.652432] Call Trace: [ 1889.652768] dump_stack+0x107/0x167 [ 1889.653236] should_fail.cold+0x5/0xa [ 1889.653722] ? vm_area_dup+0x78/0x290 [ 1889.654225] should_failslab+0x5/0x20 [ 1889.654715] kmem_cache_alloc+0x5b/0x310 [ 1889.655232] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1889.655896] vm_area_dup+0x78/0x290 [ 1889.656362] ? perf_trace_lock+0xac/0x490 [ 1889.656900] ? mark_lock+0xf5/0x2df0 [ 1889.657376] ? lock_chain_count+0x20/0x20 [ 1889.657917] ? mark_lock+0xf5/0x2df0 [ 1889.658393] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1889.659086] ? lock_chain_count+0x20/0x20 [ 1889.659610] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1889.660176] ? trace_hardirqs_on+0x5b/0x180 [ 1889.660730] ? mark_lock+0xf5/0x2df0 [ 1889.661226] ? vm_area_alloc+0x110/0x110 [ 1889.661756] ? __lock_acquire+0x1657/0x5b00 [ 1889.662335] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1889.663003] ? SOFTIRQ_verbose+0x10/0x10 [ 1889.663529] ? vmacache_find+0x55/0x2a0 [ 1889.664027] __split_vma+0xa8/0x4e0 [ 1889.664490] __do_munmap+0x365/0x1260 [ 1889.664975] ? arch_get_unmapped_area+0x450/0x450 [ 1889.665626] ? lock_release+0x680/0x680 [ 1889.666124] mmap_region+0x7cc/0x1500 [ 1889.666656] do_mmap+0x868/0x1370 [ 1889.667100] vm_mmap_pgoff+0x198/0x1f0 [ 1889.667602] ? randomize_page+0xb0/0xb0 [ 1889.668118] ksys_mmap_pgoff+0x41c/0x560 [ 1889.668653] ? find_mergeable_anon_vma+0x250/0x250 [ 1889.669304] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1889.669964] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1889.670623] do_syscall_64+0x33/0x40 [ 1889.671090] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1889.671733] RIP: 0033:0x7fcf2a53eb62 [ 1889.672204] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1889.674515] RSP: 002b:00007fcf27ab40f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1889.675479] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fcf2a53eb62 [ 1889.676382] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 1889.677245] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1889.678097] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200003c0 [ 1889.678997] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:28:22 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000001c0)) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r3, 0x8000000) r4 = open$dir(&(0x7f0000000040)='./file0\x00', 0x68000, 0x270) fsetxattr$security_ima(r4, &(0x7f0000000080), &(0x7f00000000c0)=@v1={0x2, "3e7f8f88fe1bb731242ee5"}, 0xc, 0x1) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000200)) [ 1889.732946] FAULT_INJECTION: forcing a failure. [ 1889.732946] name failslab, interval 1, probability 0, space 0, times 0 [ 1889.735415] CPU: 0 PID: 11389 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1889.736889] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1889.738670] Call Trace: [ 1889.739242] dump_stack+0x107/0x167 [ 1889.740030] should_fail.cold+0x5/0xa [ 1889.740842] ? anon_vma_clone+0xdc/0x590 [ 1889.741696] should_failslab+0x5/0x20 [ 1889.742517] kmem_cache_alloc+0x5b/0x310 [ 1889.743388] anon_vma_clone+0xdc/0x590 [ 1889.744232] __split_vma+0x17c/0x4e0 [ 1889.745031] __do_munmap+0x365/0x1260 [ 1889.745845] ? arch_get_unmapped_area+0x450/0x450 [ 1889.746891] ? lock_release+0x680/0x680 [ 1889.747748] mmap_region+0x7cc/0x1500 [ 1889.748578] do_mmap+0x868/0x1370 [ 1889.749330] vm_mmap_pgoff+0x198/0x1f0 [ 1889.750407] ? randomize_page+0xb0/0xb0 [ 1889.751549] ksys_mmap_pgoff+0x41c/0x560 [ 1889.752683] ? find_mergeable_anon_vma+0x250/0x250 [ 1889.754041] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1889.755487] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1889.756901] do_syscall_64+0x33/0x40 [ 1889.757904] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1889.759307] RIP: 0033:0x7fc39eed2b62 [ 1889.760312] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1889.764784] RSP: 002b:00007fc39c4480f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1889.766790] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fc39eed2b62 [ 1889.768329] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 1889.769843] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1889.771361] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200003c0 [ 1889.772886] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:28:39 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 52) 10:28:39 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 58) 10:28:39 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 64) 10:28:39 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:28:39 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0xf7ffff7f) 10:28:39 executing program 3: r0 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) r1 = epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040)) 10:28:39 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 62) 10:28:39 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)={0x1}) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/sysvipc/msg\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0x12, r4, 0x8000000) epoll_wait(r4, &(0x7f0000000180)=[{}, {}, {}, {}, {}], 0x5, 0x4) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) preadv(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000040)=""/10, 0xa}, {&(0x7f0000000080)=""/169, 0xa9}], 0x2, 0x7f, 0x7) [ 1906.639009] FAULT_INJECTION: forcing a failure. [ 1906.639009] name failslab, interval 1, probability 0, space 0, times 0 [ 1906.640910] CPU: 1 PID: 11411 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1906.641924] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1906.643153] Call Trace: [ 1906.643546] dump_stack+0x107/0x167 [ 1906.644092] should_fail.cold+0x5/0xa [ 1906.644653] ? create_object.isra.0+0x3a/0xa30 [ 1906.644979] FAULT_INJECTION: forcing a failure. [ 1906.644979] name failslab, interval 1, probability 0, space 0, times 0 [ 1906.645337] should_failslab+0x5/0x20 [ 1906.648243] kmem_cache_alloc+0x5b/0x310 [ 1906.648857] create_object.isra.0+0x3a/0xa30 [ 1906.649504] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1906.650249] kmem_cache_alloc+0x159/0x310 [ 1906.650888] anon_vma_clone+0xdc/0x590 [ 1906.651485] __split_vma+0x17c/0x4e0 [ 1906.652042] __do_munmap+0x365/0x1260 [ 1906.652599] ? arch_get_unmapped_area+0x450/0x450 [ 1906.653301] ? lock_release+0x680/0x680 [ 1906.653893] mmap_region+0x7cc/0x1500 [ 1906.654460] do_mmap+0x868/0x1370 [ 1906.655000] vm_mmap_pgoff+0x198/0x1f0 [ 1906.655567] ? randomize_page+0xb0/0xb0 [ 1906.656162] ksys_mmap_pgoff+0x41c/0x560 [ 1906.656766] ? find_mergeable_anon_vma+0x250/0x250 [ 1906.657493] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1906.658275] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1906.659043] do_syscall_64+0x33/0x40 [ 1906.659584] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1906.660331] RIP: 0033:0x7fc39eed2b62 [ 1906.660883] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1906.663551] RSP: 002b:00007fc39c4480f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1906.664680] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fc39eed2b62 [ 1906.665713] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 1906.666770] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1906.667807] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200003c0 [ 1906.668837] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1906.669899] CPU: 0 PID: 11412 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1906.671384] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1906.673142] Call Trace: [ 1906.673705] dump_stack+0x107/0x167 [ 1906.674476] should_fail.cold+0x5/0xa [ 1906.675303] ? create_object.isra.0+0x3a/0xa30 [ 1906.676269] should_failslab+0x5/0x20 [ 1906.677074] kmem_cache_alloc+0x5b/0x310 [ 1906.677938] ? mark_held_locks+0x9e/0xe0 [ 1906.678810] create_object.isra.0+0x3a/0xa30 [ 1906.679745] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1906.679912] FAULT_INJECTION: forcing a failure. [ 1906.679912] name failslab, interval 1, probability 0, space 0, times 0 [ 1906.680816] kmem_cache_alloc+0x159/0x310 [ 1906.680848] xas_alloc+0x336/0x440 [ 1906.684044] xas_create+0x34a/0x10d0 [ 1906.684850] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1906.685962] xas_store+0x8c/0x1c40 [ 1906.686747] __xa_store+0x164/0x2d0 [ 1906.687524] ? xa_delete_node+0x280/0x280 [ 1906.688413] ? trace_hardirqs_on+0x5b/0x180 [ 1906.689332] xa_store+0x31/0x50 [ 1906.690032] __io_uring_add_tctx_node+0x1cf/0x520 [ 1906.691072] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1906.692189] ? alloc_fd+0x2e7/0x670 [ 1906.692978] io_uring_setup+0x1fbb/0x2980 [ 1906.693864] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1906.694951] ? wait_for_completion_io+0x270/0x270 [ 1906.695998] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1906.697102] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1906.698197] do_syscall_64+0x33/0x40 [ 1906.698994] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1906.700078] RIP: 0033:0x7f4a0d16cb19 [ 1906.700866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1906.704753] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1906.706373] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1906.707879] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1906.709394] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1906.710906] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1906.712405] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1906.713942] CPU: 1 PID: 11414 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1906.714982] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1906.716154] Call Trace: [ 1906.716542] dump_stack+0x107/0x167 [ 1906.717060] should_fail.cold+0x5/0xa [ 1906.717601] ? create_object.isra.0+0x3a/0xa30 [ 1906.718267] should_failslab+0x5/0x20 [ 1906.718818] kmem_cache_alloc+0x5b/0x310 [ 1906.719403] create_object.isra.0+0x3a/0xa30 [ 1906.720022] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1906.720743] kmem_cache_alloc+0x159/0x310 [ 1906.721338] vm_area_dup+0x78/0x290 [ 1906.721857] ? lock_release+0x680/0x680 [ 1906.722441] ? mark_lock+0xf5/0x2df0 [ 1906.722989] ? lock_chain_count+0x20/0x20 [ 1906.723574] ? mark_lock+0xf5/0x2df0 [ 1906.724105] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1906.724843] ? lock_chain_count+0x20/0x20 [ 1906.725433] ? mark_lock+0xf5/0x2df0 [ 1906.725959] ? vm_area_alloc+0x110/0x110 [ 1906.726538] ? __lock_acquire+0x1657/0x5b00 [ 1906.727188] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1906.727928] ? SOFTIRQ_verbose+0x10/0x10 [ 1906.728507] ? vmacache_find+0x55/0x2a0 [ 1906.729071] __split_vma+0xa8/0x4e0 [ 1906.729600] __do_munmap+0x365/0x1260 [ 1906.730141] ? arch_get_unmapped_area+0x450/0x450 [ 1906.730839] ? lock_release+0x680/0x680 [ 1906.731403] mmap_region+0x7cc/0x1500 [ 1906.731967] do_mmap+0x868/0x1370 [ 1906.732474] vm_mmap_pgoff+0x198/0x1f0 [ 1906.733049] ? randomize_page+0xb0/0xb0 [ 1906.733632] ksys_mmap_pgoff+0x41c/0x560 [ 1906.734202] ? find_mergeable_anon_vma+0x250/0x250 [ 1906.734910] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1906.735645] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1906.736379] do_syscall_64+0x33/0x40 [ 1906.736905] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1906.737626] RIP: 0033:0x7fcf2a53eb62 [ 1906.738155] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1906.740741] RSP: 002b:00007fcf27a930f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1906.741807] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fcf2a53eb62 [ 1906.742811] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 1906.743819] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1906.744818] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200003c0 [ 1906.745819] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:28:39 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0xfffffdef) [ 1906.782728] FAULT_INJECTION: forcing a failure. [ 1906.782728] name failslab, interval 1, probability 0, space 0, times 0 [ 1906.784411] CPU: 1 PID: 11410 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1906.785369] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1906.786508] Call Trace: [ 1906.786891] dump_stack+0x107/0x167 [ 1906.787399] should_fail.cold+0x5/0xa [ 1906.787926] ? create_object.isra.0+0x3a/0xa30 [ 1906.788555] should_failslab+0x5/0x20 [ 1906.789087] kmem_cache_alloc+0x5b/0x310 [ 1906.789644] ? mark_held_locks+0x9e/0xe0 [ 1906.790210] create_object.isra.0+0x3a/0xa30 [ 1906.790824] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1906.791527] kmem_cache_alloc+0x159/0x310 [ 1906.792099] xas_alloc+0x336/0x440 [ 1906.792598] xas_create+0x34a/0x10d0 [ 1906.793119] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1906.793840] xas_store+0x8c/0x1c40 [ 1906.794339] __xa_store+0x164/0x2d0 [ 1906.794857] ? xa_delete_node+0x280/0x280 [ 1906.795433] ? trace_hardirqs_on+0x5b/0x180 [ 1906.796027] xa_store+0x31/0x50 [ 1906.796482] __io_uring_add_tctx_node+0x1cf/0x520 [ 1906.797141] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1906.797866] ? alloc_fd+0x2e7/0x670 [ 1906.798376] io_uring_setup+0x1fbb/0x2980 [ 1906.798960] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1906.799654] ? wait_for_completion_io+0x270/0x270 [ 1906.800332] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1906.801056] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1906.801766] do_syscall_64+0x33/0x40 [ 1906.802274] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1906.802984] RIP: 0033:0x7fc343bc8b19 [ 1906.803504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1906.806015] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1906.807053] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1906.808015] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1906.808982] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1906.809954] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1906.810925] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:28:55 executing program 3: r0 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) r1 = epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040)) 10:28:55 executing program 7: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 63) 10:28:55 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 65) 10:28:55 executing program 0: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 53) 10:28:55 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) 10:28:55 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = epoll_create(0x3ff) r3 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r3) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)) syz_io_uring_setup(0x8003a75, &(0x7f0000000080)={0x0, 0xa91f, 0x10, 0x0, 0x3ba}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000180)=0x0) syz_io_uring_submit(r4, r5, 0x0, 0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f0000000040)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x23, r6}}, 0x7ff) syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000080)='./file0\x00', 0x88, 0x2000, 0x23456, {0x0, r6}}, 0x9ac) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r7, &(0x7f0000000040)='reno\x00', 0x5) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r7, &(0x7f0000000040)={0x20000008}) 10:28:55 executing program 5: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 59) 10:28:55 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0xffffff7f) [ 1922.634871] FAULT_INJECTION: forcing a failure. [ 1922.634871] name failslab, interval 1, probability 0, space 0, times 0 [ 1922.635424] FAULT_INJECTION: forcing a failure. [ 1922.635424] name failslab, interval 1, probability 0, space 0, times 0 [ 1922.636354] CPU: 1 PID: 11435 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1922.639590] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1922.640569] Call Trace: [ 1922.640894] dump_stack+0x107/0x167 [ 1922.641340] should_fail.cold+0x5/0xa [ 1922.641803] ? vm_area_alloc+0x1c/0x110 [ 1922.642287] should_failslab+0x5/0x20 [ 1922.642761] kmem_cache_alloc+0x5b/0x310 [ 1922.643255] vm_area_alloc+0x1c/0x110 [ 1922.643716] mmap_region+0x982/0x1500 [ 1922.644186] do_mmap+0x868/0x1370 [ 1922.644615] vm_mmap_pgoff+0x198/0x1f0 [ 1922.645088] ? randomize_page+0xb0/0xb0 [ 1922.645579] ksys_mmap_pgoff+0x41c/0x560 [ 1922.646069] ? find_mergeable_anon_vma+0x250/0x250 [ 1922.646679] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1922.647325] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1922.647949] do_syscall_64+0x33/0x40 [ 1922.648399] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1922.649019] RIP: 0033:0x7fc39eed2b62 [ 1922.649472] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1922.651710] RSP: 002b:00007fc39c4480f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1922.652636] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fc39eed2b62 [ 1922.653471] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 1922.654335] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1922.655174] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200003c0 [ 1922.656033] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1922.656928] CPU: 0 PID: 11430 Comm: syz-executor.0 Not tainted 5.10.247 #1 [ 1922.658456] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1922.660274] Call Trace: [ 1922.660854] dump_stack+0x107/0x167 [ 1922.661663] should_fail.cold+0x5/0xa [ 1922.662494] ? xas_alloc+0x336/0x440 [ 1922.663322] should_failslab+0x5/0x20 [ 1922.664158] kmem_cache_alloc+0x5b/0x310 [ 1922.665056] xas_alloc+0x336/0x440 [ 1922.665828] xas_create+0x34a/0x10d0 [ 1922.666665] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1922.667828] xas_store+0x8c/0x1c40 [ 1922.668627] __xa_store+0x164/0x2d0 [ 1922.669435] ? xa_delete_node+0x280/0x280 [ 1922.670357] ? trace_hardirqs_on+0x5b/0x180 [ 1922.671380] xa_store+0x31/0x50 [ 1922.672112] __io_uring_add_tctx_node+0x1cf/0x520 [ 1922.673166] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1922.674326] ? alloc_fd+0x2e7/0x670 [ 1922.675151] io_uring_setup+0x1fbb/0x2980 [ 1922.676066] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1922.677169] ? wait_for_completion_io+0x270/0x270 [ 1922.678239] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1922.679407] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1922.680534] do_syscall_64+0x33/0x40 [ 1922.681346] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1922.682463] RIP: 0033:0x7f4a0d16cb19 [ 1922.683287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1922.687283] RSP: 002b:00007f4a0a6e2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1922.688944] RAX: ffffffffffffffda RBX: 00007f4a0d27ff60 RCX: 00007f4a0d16cb19 [ 1922.690503] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1922.692068] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1922.693617] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1922.695188] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1922.704345] FAULT_INJECTION: forcing a failure. [ 1922.704345] name failslab, interval 1, probability 0, space 0, times 0 [ 1922.706925] CPU: 0 PID: 11434 Comm: syz-executor.5 Not tainted 5.10.247 #1 [ 1922.708456] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1922.710278] Call Trace: [ 1922.710872] dump_stack+0x107/0x167 [ 1922.711670] should_fail.cold+0x5/0xa [ 1922.712503] ? xas_alloc+0x336/0x440 [ 1922.713308] should_failslab+0x5/0x20 [ 1922.714140] kmem_cache_alloc+0x5b/0x310 10:28:55 executing program 3: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000000)) r1 = epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, 0xffffffffffffffff, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040)) [ 1922.715048] xas_alloc+0x336/0x440 [ 1922.716019] xas_create+0x34a/0x10d0 [ 1922.716852] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1922.718007] xas_store+0x8c/0x1c40 [ 1922.718439] FAULT_INJECTION: forcing a failure. [ 1922.718439] name failslab, interval 1, probability 0, space 0, times 0 [ 1922.718808] __xa_store+0x164/0x2d0 [ 1922.720912] ? xa_delete_node+0x280/0x280 [ 1922.721829] ? trace_hardirqs_on+0x5b/0x180 [ 1922.722791] xa_store+0x31/0x50 [ 1922.723522] __io_uring_add_tctx_node+0x1cf/0x520 [ 1922.724580] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1922.725718] ? alloc_fd+0x2e7/0x670 [ 1922.726527] io_uring_setup+0x1fbb/0x2980 [ 1922.727457] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1922.728556] ? wait_for_completion_io+0x270/0x270 [ 1922.729634] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1922.730799] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1922.731929] do_syscall_64+0x33/0x40 [ 1922.732745] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1922.733851] RIP: 0033:0x7fc343bc8b19 [ 1922.734665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1922.738694] RSP: 002b:00007fc34113e108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1922.740379] RAX: ffffffffffffffda RBX: 00007fc343cdbf60 RCX: 00007fc343bc8b19 [ 1922.741936] RDX: 0000000020ff2000 RSI: 0000000020000340 RDI: 00000000000069cc [ 1922.743507] RBP: 0000000020000340 R08: 00000000200003c0 R09: 00000000200003c0 [ 1922.745062] R10: 0000000020000180 R11: 0000000000000202 R12: 00000000200003c0 [ 1922.746618] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1922.748228] CPU: 1 PID: 11428 Comm: syz-executor.7 Not tainted 5.10.247 #1 [ 1922.749133] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1922.750082] Call Trace: [ 1922.750400] dump_stack+0x107/0x167 [ 1922.750842] should_fail.cold+0x5/0xa [ 1922.751289] ? anon_vma_clone+0xdc/0x590 [ 1922.751764] should_failslab+0x5/0x20 [ 1922.752200] kmem_cache_alloc+0x5b/0x310 [ 1922.752675] anon_vma_clone+0xdc/0x590 [ 1922.753136] __split_vma+0x17c/0x4e0 [ 1922.753571] __do_munmap+0x365/0x1260 [ 1922.754016] ? arch_get_unmapped_area+0x450/0x450 [ 1922.754579] ? lock_release+0x680/0x680 [ 1922.755051] mmap_region+0x7cc/0x1500 [ 1922.755504] do_mmap+0x868/0x1370 [ 1922.755917] vm_mmap_pgoff+0x198/0x1f0 [ 1922.756377] ? randomize_page+0xb0/0xb0 [ 1922.756850] ksys_mmap_pgoff+0x41c/0x560 [ 1922.757323] ? find_mergeable_anon_vma+0x250/0x250 [ 1922.757896] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1922.758507] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1922.759116] do_syscall_64+0x33/0x40 [ 1922.759543] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1922.760140] RIP: 0033:0x7fcf2a53eb62 [ 1922.760561] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1922.762689] RSP: 002b:00007fcf27ab40f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1922.763591] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fcf2a53eb62 [ 1922.764401] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 1922.765229] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1922.766038] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200003c0 [ 1922.766873] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:28:55 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 66) 10:28:55 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000200)) 10:28:55 executing program 3: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000000)) r1 = epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, 0xffffffffffffffff, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040)) [ 1922.814167] FAULT_INJECTION: forcing a failure. [ 1922.814167] name failslab, interval 1, probability 0, space 0, times 0 [ 1922.815540] CPU: 1 PID: 11447 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1922.816348] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1922.817296] Call Trace: [ 1922.817612] dump_stack+0x107/0x167 [ 1922.818045] should_fail.cold+0x5/0xa [ 1922.818494] ? create_object.isra.0+0x3a/0xa30 [ 1922.819108] should_failslab+0x5/0x20 [ 1922.819556] kmem_cache_alloc+0x5b/0x310 [ 1922.820036] create_object.isra.0+0x3a/0xa30 [ 1922.820542] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1922.821135] kmem_cache_alloc+0x159/0x310 [ 1922.821623] vm_area_alloc+0x1c/0x110 [ 1922.822062] mmap_region+0x982/0x1500 [ 1922.822515] do_mmap+0x868/0x1370 [ 1922.822941] vm_mmap_pgoff+0x198/0x1f0 [ 1922.823403] ? randomize_page+0xb0/0xb0 [ 1922.823881] ksys_mmap_pgoff+0x41c/0x560 [ 1922.824354] ? find_mergeable_anon_vma+0x250/0x250 [ 1922.824921] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1922.825534] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1922.826140] do_syscall_64+0x33/0x40 [ 1922.826575] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1922.827179] RIP: 0033:0x7fc39eed2b62 [ 1922.827603] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1922.829738] RSP: 002b:00007fc39c4480f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1922.830625] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fc39eed2b62 [ 1922.831446] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 1922.832276] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1922.833087] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200003c0 [ 1922.833916] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 10:28:55 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x5}, 0x4) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x4000000000000) 10:28:55 executing program 1: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x4000) syz_io_uring_setup(0x69cc, &(0x7f0000000340), &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) (fail_nth: 67) 10:28:55 executing program 6: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000040)='reno\x00', 0x5) sendfile(r2, r0, 0x0, 0x7fffffff) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r3 = epoll_create(0x3ff) r4 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000200)) 10:28:55 executing program 4: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_create(0x3ff) r2 = epoll_create(0x8001) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000200)) [ 1922.965943] FAULT_INJECTION: forcing a failure. [ 1922.965943] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1922.967401] CPU: 1 PID: 11457 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1922.968212] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1922.969160] Call Trace: [ 1922.969474] dump_stack+0x107/0x167 [ 1922.969906] should_fail.cold+0x5/0xa [ 1922.970360] __alloc_pages_nodemask+0x182/0x600 [ 1922.970932] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1922.971641] ? walk_mem_res+0x170/0x170 [ 1922.972111] alloc_pages_current+0x187/0x280 [ 1922.972634] pte_alloc_one+0x16/0x1a0 [ 1922.973082] __pte_alloc+0x1d/0x330 [ 1922.973510] remap_pfn_range_internal+0x9a3/0xf60 [ 1922.974079] ? lookup_memtype+0x5b/0x200 [ 1922.974564] ? apply_to_existing_page_range+0x40/0x40 [ 1922.975185] remap_pfn_range+0xcd/0x160 [ 1922.975653] ? remap_pfn_range_notrack+0x70/0x70 [ 1922.976207] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1922.976814] io_uring_mmap+0x398/0x530 [ 1922.977273] mmap_file+0x5e/0xe0 [ 1922.977673] mmap_region+0xc4d/0x1500 [ 1922.978129] do_mmap+0x868/0x1370 [ 1922.978540] vm_mmap_pgoff+0x198/0x1f0 [ 1922.979009] ? randomize_page+0xb0/0xb0 [ 1922.979486] ksys_mmap_pgoff+0x41c/0x560 [ 1922.979966] ? find_mergeable_anon_vma+0x250/0x250 [ 1922.980549] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1922.981165] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1922.981772] do_syscall_64+0x33/0x40 [ 1922.982206] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1922.982799] RIP: 0033:0x7fc39eed2b62 [ 1922.983237] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1922.985386] RSP: 002b:00007fc39c4480f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1922.986278] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fc39eed2b62 [ 1922.987117] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 1922.987958] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1922.988773] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200003c0 [ 1922.989586] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1923.023635] ------------[ cut here ]------------ [ 1923.024256] WARNING: CPU: 1 PID: 11457 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270 [ 1923.025530] Modules linked in: [ 1923.025917] CPU: 1 PID: 11457 Comm: syz-executor.1 Not tainted 5.10.247 #1 [ 1923.026729] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1923.027720] RIP: 0010:get_pat_info+0x216/0x270 [ 1923.028255] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 31 89 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 1a 89 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 f5 a2 5a 00 e9 [ 1923.030402] RSP: 0018:ffff88804dd57890 EFLAGS: 00010212 [ 1923.031051] RAX: 0000000000013eb4 RBX: ffff88804825f600 RCX: ffffc90001803000 [ 1923.031898] RDX: 0000000000040000 RSI: ffffffff81124466 RDI: 0000000000000007 [ 1923.032736] RBP: ffff88804dd57948 R08: 0000000000000000 R09: ffff88804dd57818 [ 1923.035230] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028 [ 1923.037792] R13: 1ffff11009baaf12 R14: 0000000000000000 R15: ffff88804825f650 [ 1923.040326] FS: 00007fc39c448700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 1923.042306] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1923.043011] CR2: 00005590f5b610b8 CR3: 000000004d9f8000 CR4: 0000000000350ee0 [ 1923.043861] Call Trace: [ 1923.044170] ? pgprot_writethrough+0xc0/0xc0 [ 1923.044705] ? finish_task_switch+0x1a4/0x5d0 [ 1923.045240] untrack_pfn+0xdc/0x240 [ 1923.045748] ? track_pfn_insert+0x150/0x150 [ 1923.046253] ? lock_downgrade+0x6d0/0x6d0 [ 1923.046763] ? uprobe_munmap+0x1c/0x560 [ 1923.047231] unmap_single_vma+0x1bc/0x300 [ 1923.047745] zap_page_range_single+0x2ce/0x450 [ 1923.048273] ? unmap_single_vma+0x300/0x300 [ 1923.048796] ? remap_pfn_range_internal+0xc56/0xf60 [ 1923.049375] ? lookup_memtype+0x5b/0x200 [ 1923.049887] ? apply_to_existing_page_range+0x40/0x40 [ 1923.050494] remap_pfn_range+0x139/0x160 [ 1923.051002] ? remap_pfn_range_notrack+0x70/0x70 [ 1923.051578] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1923.052178] io_uring_mmap+0x398/0x530 [ 1923.052658] mmap_file+0x5e/0xe0 [ 1923.053051] mmap_region+0xc4d/0x1500 [ 1923.053495] do_mmap+0x868/0x1370 [ 1923.053929] vm_mmap_pgoff+0x198/0x1f0 [ 1923.054382] ? randomize_page+0xb0/0xb0 [ 1923.054882] ksys_mmap_pgoff+0x41c/0x560 [ 1923.055350] ? find_mergeable_anon_vma+0x250/0x250 [ 1923.055940] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1923.056571] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1923.057167] do_syscall_64+0x33/0x40 [ 1923.057621] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1923.058214] RIP: 0033:0x7fc39eed2b62 [ 1923.058666] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1923.060810] RSP: 002b:00007fc39c4480f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1923.061715] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fc39eed2b62 [ 1923.062563] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 1923.063393] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1923.064237] R10: 0000000000008011 R11: 0000000000000206 R12: 00000000200003c0 [ 1923.065081] R13: 0000000020ff2000 R14: 0000000020000180 R15: 0000000020ff8000 [ 1923.065941] irq event stamp: 1617 [ 1923.066348] hardirqs last enabled at (1625): [] console_unlock+0x92d/0xb40 [ 1923.067366] hardirqs last disabled at (1634): [] console_unlock+0x839/0xb40 [ 1923.068373] softirqs last enabled at (1312): [] asm_call_irq_on_stack+0x12/0x20 [ 1923.069428] softirqs last disabled at (1261): [] asm_call_irq_on_stack+0x12/0x20 [ 1923.070473] ---[ end trace 9c068e917c485457 ]--- VM DIAGNOSIS: 10:28:56 Registers: info registers vcpu 0 RAX=ffff88806ce3b2c0 RBX=ffff88806ce3b2d8 RCX=1ffffffff0acef19 RDX=ffffffff811e469f RSI=0000000000000000 RDI=ffff888034662e18 RBP=ffff88804dcc7ec8 RSP=ffff88804dcc7df8 R8 =0000000000000001 R9 =0000000000000001 R10=0000000000000000 R11=0000000000000001 R12=ffff88806ce3b2c0 R13=ffff888034661a40 R14=ffff888034661e30 R15=ffff8880174a3480 RIP=ffffffff83e8d7b3 RFL=00000287 [--S--PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007feb045f18c0 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007feb045fdd38 CR3=0000000047b6c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000ff0000 XMM01=6a6e695f31313230385f7a7973006273 XMM02=000000000000000000ffffffff000000 XMM03=00007fc39efb97c800007fc39efb97c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff822e5d4c RDI=ffffffff879f8240 RBP=ffffffff879f8200 RSP=ffff88804dd57248 R8 =0000000000000001 R9 =0000000000000003 R10=000000000000000a R11=0000000000000001 R12=0000000000000020 R13=fffffbfff0f3f095 R14=fffffbfff0f3f04a R15=dffffc0000000000 RIP=ffffffff822e5da0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fc39c448700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005590f5b610b8 CR3=000000004d9f8000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffff000000ff00000000000000000000 XMM02=00005590f500307570632f302f716d2f XMM03=7269762f736563697665642f7379732f XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00005590f5b22f9000005590f5b09550 XMM06=00005590f5b1bfd00000000000000002 XMM07=00000000000000000000000000000000 XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000