, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x20, 0x0, 0xfffffff7000) 13:43:57 executing program 6: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:43:57 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:43:57 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:43:57 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:43:57 executing program 4: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x0, 0x0, 0xfffffff7000) 13:43:57 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) 13:43:57 executing program 5: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 596.542915] FAULT_INJECTION: forcing a failure. [ 596.542915] name failslab, interval 1, probability 0, space 0, times 0 [ 596.544586] CPU: 0 PID: 5539 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 596.545662] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 596.546951] Call Trace: [ 596.547284] dump_stack+0x107/0x167 [ 596.547859] should_fail.cold+0x5/0xa [ 596.548450] ? create_object.isra.0+0x3a/0xa30 [ 596.549155] should_failslab+0x5/0x20 [ 596.549744] kmem_cache_alloc+0x5b/0x310 [ 596.550367] create_object.isra.0+0x3a/0xa30 [ 596.551045] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 596.551836] kmem_cache_alloc+0x159/0x310 [ 596.552478] jbd2__journal_start+0x190/0x7e0 [ 596.553150] __ext4_journal_start_sb+0x214/0x390 [ 596.553878] ext4_dirty_inode+0xbc/0x130 [ 596.554493] ? ext4_setattr+0x22f0/0x22f0 [ 596.555126] __mark_inode_dirty+0x492/0xd30 [ 596.555793] ? current_time+0xac/0x120 [ 596.556397] generic_update_time+0x21c/0x370 [ 596.557053] ? igrab+0xc0/0xc0 [ 596.557549] file_update_time+0x43a/0x520 [ 596.558186] ? evict_inodes+0x470/0x470 [ 596.558799] ? down_write_killable+0x180/0x180 [ 596.559500] file_modified+0x7d/0xa0 [ 596.560076] ext4_fallocate+0x8be/0x3850 [ 596.560693] ? __x64_sys_fallocate+0xcf/0x140 [ 596.561385] ? ext4_ext_truncate+0x250/0x250 [ 596.562055] ? selinux_file_permission+0x92/0x520 [ 596.562798] ? ext4_ext_truncate+0x250/0x250 [ 596.563476] vfs_fallocate+0x48f/0xda0 [ 596.564081] __x64_sys_fallocate+0xcf/0x140 [ 596.564742] do_syscall_64+0x33/0x40 [ 596.565304] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 596.566078] RIP: 0033:0x7fb365247b19 [ 596.566643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 596.569464] RSP: 002b:00007fb3627bd188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 596.570631] RAX: ffffffffffffffda RBX: 00007fb36535af60 RCX: 00007fb365247b19 [ 596.571491] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 596.572592] RBP: 00007fb3627bd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 596.573685] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 596.574775] R13: 00007fff2047289f R14: 00007fb3627bd300 R15: 0000000000022000 13:43:57 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 2) 13:44:09 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 3) 13:44:09 executing program 6: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:09 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:44:09 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) 13:44:09 executing program 5: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:09 executing program 4: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x0, 0x0, 0xfffffff7000) 13:44:09 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:09 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 608.915600] FAULT_INJECTION: forcing a failure. [ 608.915600] name failslab, interval 1, probability 0, space 0, times 0 [ 608.918675] CPU: 1 PID: 5558 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 608.920422] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 608.922148] Call Trace: [ 608.922817] dump_stack+0x107/0x167 [ 608.923650] should_fail.cold+0x5/0xa [ 608.924457] ? ext4_init_io_end+0x23/0x180 [ 608.925331] should_failslab+0x5/0x20 [ 608.926117] kmem_cache_alloc+0x5b/0x310 [ 608.926967] ext4_init_io_end+0x23/0x180 [ 608.928016] ext4_writepages+0x8ec/0x3350 [ 608.928930] ? ext4_fallocate+0x8be/0x3850 [ 608.929988] ? vfs_fallocate+0x48f/0xda0 [ 608.930886] ? __x64_sys_fallocate+0xcf/0x140 [ 608.932042] ? do_syscall_64+0x33/0x40 [ 608.932861] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 608.933976] ? lock_chain_count+0x20/0x20 [ 608.934862] ? mark_held_locks+0x9e/0xe0 [ 608.935699] ? __ext4_mark_inode_dirty+0x770/0x770 [ 608.936752] ? register_lock_class+0xbb/0x17b0 [ 608.937703] ? kmem_cache_free+0xa7/0x2d0 [ 608.938794] ? slab_free_freelist_hook+0xa9/0x180 [ 608.939801] ? jbd2_journal_stop+0x61f/0xdc0 [ 608.940960] ? __lock_acquire+0x1657/0x5b00 [ 608.941879] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 608.943210] ? __ext4_mark_inode_dirty+0x770/0x770 [ 608.944279] do_writepages+0xee/0x2a0 [ 608.945296] ? page_writeback_cpu_online+0x20/0x20 [ 608.946321] ? lock_acquire+0x197/0x470 [ 608.947335] ? ext4_fallocate+0x21ac/0x3850 13:44:09 executing program 4: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x0, 0x0, 0xfffffff7000) [ 608.948285] ? lock_release+0x680/0x680 [ 608.949297] __filemap_fdatawrite_range+0x24b/0x2f0 [ 608.950313] ? igrab+0xc0/0xc0 [ 608.950975] ? delete_from_page_cache_batch+0xa30/0xa30 [ 608.952090] ? down_write+0xe0/0x160 [ 608.952854] ? down_write_killable+0x180/0x180 [ 608.953787] filemap_write_and_wait_range+0x65/0x100 [ 608.954825] ext4_fallocate+0x220f/0x3850 [ 608.955679] ? __x64_sys_fallocate+0xcf/0x140 [ 608.956637] ? ext4_ext_truncate+0x250/0x250 [ 608.957536] ? selinux_file_permission+0x92/0x520 [ 608.958525] ? ext4_ext_truncate+0x250/0x250 [ 608.959419] vfs_fallocate+0x48f/0xda0 [ 608.960251] __x64_sys_fallocate+0xcf/0x140 [ 608.961121] do_syscall_64+0x33/0x40 [ 608.961876] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 608.962912] RIP: 0033:0x7fb365247b19 [ 608.963666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 608.967740] RSP: 002b:00007fb3627bd188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 608.969366] RAX: ffffffffffffffda RBX: 00007fb36535af60 RCX: 00007fb365247b19 [ 608.970850] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 608.972377] RBP: 00007fb3627bd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 608.973903] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 608.975436] R13: 00007fff2047289f R14: 00007fb3627bd300 R15: 0000000000022000 13:44:09 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) 13:44:09 executing program 4: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0x0) 13:44:10 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(0xffffffffffffffff, 0x20, 0x0, 0xfffffff7000) 13:44:10 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 4) 13:44:10 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x0) 13:44:10 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(0xffffffffffffffff, 0x20, 0x0, 0xfffffff7000) [ 609.332819] FAULT_INJECTION: forcing a failure. [ 609.332819] name failslab, interval 1, probability 0, space 0, times 0 [ 609.335672] CPU: 1 PID: 5575 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 609.337120] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 609.338841] Call Trace: [ 609.339408] dump_stack+0x107/0x167 [ 609.340177] should_fail.cold+0x5/0xa [ 609.340981] ? create_object.isra.0+0x3a/0xa30 [ 609.341937] should_failslab+0x5/0x20 [ 609.342735] kmem_cache_alloc+0x5b/0x310 [ 609.343589] ? _raw_spin_unlock_irq+0x1f/0x30 [ 609.344555] create_object.isra.0+0x3a/0xa30 [ 609.345477] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 609.346542] kmem_cache_alloc+0x159/0x310 [ 609.347422] ext4_init_io_end+0x23/0x180 [ 609.348279] ext4_writepages+0x8ec/0x3350 [ 609.349152] ? ext4_fallocate+0x8be/0x3850 [ 609.350034] ? vfs_fallocate+0x48f/0xda0 [ 609.350888] ? __x64_sys_fallocate+0xcf/0x140 [ 609.351839] ? do_syscall_64+0x33/0x40 [ 609.352653] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 609.353777] ? lock_chain_count+0x20/0x20 [ 609.354642] ? mark_held_locks+0x9e/0xe0 [ 609.355509] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 609.356688] ? mark_held_locks+0x9e/0xe0 [ 609.357544] ? __ext4_mark_inode_dirty+0x770/0x770 [ 609.358578] ? register_lock_class+0xbb/0x17b0 [ 609.359545] ? kmem_cache_free+0xa7/0x2d0 [ 609.360435] ? slab_free_freelist_hook+0xa9/0x180 [ 609.361449] ? jbd2_journal_stop+0x61f/0xdc0 [ 609.362373] ? __lock_acquire+0x1657/0x5b00 [ 609.363293] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 609.364398] ? __ext4_mark_inode_dirty+0x770/0x770 [ 609.365435] do_writepages+0xee/0x2a0 [ 609.366236] ? page_writeback_cpu_online+0x20/0x20 [ 609.367263] ? lock_acquire+0x197/0x470 [ 609.368182] ? ext4_fallocate+0x21ac/0x3850 [ 609.369321] ? lock_release+0x680/0x680 [ 609.370259] __filemap_fdatawrite_range+0x24b/0x2f0 [ 609.371508] ? igrab+0xc0/0xc0 [ 609.372410] ? delete_from_page_cache_batch+0xa30/0xa30 [ 609.373604] ? down_write+0xe0/0x160 [ 609.374403] ? down_write_killable+0x180/0x180 [ 609.375391] filemap_write_and_wait_range+0x65/0x100 [ 609.376501] ext4_fallocate+0x220f/0x3850 [ 609.377412] ? __x64_sys_fallocate+0xcf/0x140 [ 609.378382] ? ext4_ext_truncate+0x250/0x250 [ 609.379323] ? selinux_file_permission+0x92/0x520 [ 609.380373] ? ext4_ext_truncate+0x250/0x250 [ 609.381327] vfs_fallocate+0x48f/0xda0 [ 609.382187] __x64_sys_fallocate+0xcf/0x140 [ 609.383123] do_syscall_64+0x33/0x40 [ 609.383949] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 609.385060] RIP: 0033:0x7fb365247b19 [ 609.385855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 609.389813] RSP: 002b:00007fb3627bd188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 609.391436] RAX: ffffffffffffffda RBX: 00007fb36535af60 RCX: 00007fb365247b19 [ 609.392981] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 609.394494] RBP: 00007fb3627bd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 609.396031] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 609.397559] R13: 00007fff2047289f R14: 00007fb3627bd300 R15: 0000000000022000 13:44:10 executing program 4: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0x0) 13:44:23 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(0xffffffffffffffff, 0x20, 0x0, 0xfffffff7000) 13:44:23 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:23 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x0) 13:44:23 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:23 executing program 4: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0x0) [ 623.081883] FAULT_INJECTION: forcing a failure. [ 623.081883] name failslab, interval 1, probability 0, space 0, times 0 [ 623.083493] CPU: 1 PID: 5598 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 623.084284] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 623.085224] Call Trace: [ 623.085529] dump_stack+0x107/0x167 [ 623.085956] should_fail.cold+0x5/0xa [ 623.086420] ? ext4_init_io_end+0x23/0x180 [ 623.086922] should_failslab+0x5/0x20 [ 623.087368] kmem_cache_alloc+0x5b/0x310 [ 623.087836] ext4_init_io_end+0x23/0x180 [ 623.088322] ext4_writepages+0xee9/0x3350 [ 623.088814] ? ext4_fallocate+0x8be/0x3850 [ 623.089316] ? vfs_fallocate+0x48f/0xda0 [ 623.089779] ? __x64_sys_fallocate+0xcf/0x140 [ 623.090298] ? do_syscall_64+0x33/0x40 [ 623.090845] ? lock_chain_count+0x20/0x20 [ 623.091471] ? mark_held_locks+0x9e/0xe0 [ 623.091934] ? __ext4_mark_inode_dirty+0x770/0x770 [ 623.092657] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 623.093408] ? quarantine_put+0x8b/0x1a0 [ 623.093941] ? trace_hardirqs_on+0x5b/0x180 [ 623.094499] ? kmem_cache_free+0xa7/0x2d0 [ 623.094976] ? slab_free_freelist_hook+0xa9/0x180 [ 623.095638] ? jbd2_journal_stop+0x61f/0xdc0 [ 623.096213] ? __lock_acquire+0x1657/0x5b00 [ 623.096744] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 623.097378] ? __ext4_mark_inode_dirty+0x770/0x770 [ 623.097964] do_writepages+0xee/0x2a0 [ 623.098410] ? page_writeback_cpu_online+0x20/0x20 [ 623.099051] ? lock_acquire+0x197/0x470 [ 623.099618] ? ext4_fallocate+0x21ac/0x3850 [ 623.100197] ? lock_release+0x680/0x680 [ 623.100662] __filemap_fdatawrite_range+0x24b/0x2f0 [ 623.101386] ? igrab+0xc0/0xc0 [ 623.101855] ? delete_from_page_cache_batch+0xa30/0xa30 [ 623.102595] ? down_write+0xe0/0x160 [ 623.103078] ? down_write_killable+0x180/0x180 [ 623.103612] filemap_write_and_wait_range+0x65/0x100 [ 623.104197] ext4_fallocate+0x220f/0x3850 [ 623.104762] ? __x64_sys_fallocate+0xcf/0x140 [ 623.105377] ? ext4_ext_truncate+0x250/0x250 [ 623.105898] ? selinux_file_permission+0x92/0x520 [ 623.106478] ? ext4_ext_truncate+0x250/0x250 [ 623.106989] vfs_fallocate+0x48f/0xda0 [ 623.107451] __x64_sys_fallocate+0xcf/0x140 [ 623.107942] do_syscall_64+0x33/0x40 [ 623.108373] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 623.109063] RIP: 0033:0x7fb365247b19 [ 623.109552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 623.112121] RSP: 002b:00007fb3627bd188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 623.112998] RAX: ffffffffffffffda RBX: 00007fb36535af60 RCX: 00007fb365247b19 [ 623.113987] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 623.114810] RBP: 00007fb3627bd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 623.115794] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 623.116717] R13: 00007fff2047289f R14: 00007fb3627bd300 R15: 0000000000022000 13:44:23 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 5) 13:44:23 executing program 6: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) 13:44:23 executing program 5: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:24 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x0, 0x0, 0xfffffff7000) 13:44:24 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 1) [ 623.259866] FAULT_INJECTION: forcing a failure. [ 623.259866] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 623.261567] CPU: 1 PID: 5608 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 623.262367] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 623.263331] Call Trace: [ 623.263658] dump_stack+0x107/0x167 [ 623.264106] should_fail.cold+0x5/0xa [ 623.264568] _copy_from_user+0x2e/0x1b0 [ 623.265055] io_uring_setup+0x9b/0x2980 [ 623.265529] ? __mutex_unlock_slowpath+0xe1/0x600 [ 623.266084] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 623.266658] ? wait_for_completion_io+0x270/0x270 [ 623.267213] ? rcu_read_lock_any_held+0x75/0xa0 [ 623.267736] ? vfs_write+0x354/0xb10 [ 623.268172] ? fput_many+0x2f/0x1a0 [ 623.268584] ? ksys_write+0x1a9/0x260 [ 623.269017] ? __ia32_sys_read+0xb0/0xb0 [ 623.269488] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 623.270087] ? syscall_enter_from_user_mode+0x1d/0x50 [ 623.270676] do_syscall_64+0x33/0x40 [ 623.271101] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 623.271685] RIP: 0033:0x7f084f4a7b19 [ 623.272113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 623.274212] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 623.275072] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 623.275880] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 623.276699] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 623.277553] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 623.278390] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:44:24 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x0, 0x0, 0xfffffff7000) 13:44:24 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x0) 13:44:24 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:24 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:24 executing program 5: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:24 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 6) [ 623.487454] FAULT_INJECTION: forcing a failure. [ 623.487454] name failslab, interval 1, probability 0, space 0, times 0 [ 623.489188] CPU: 1 PID: 5619 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 623.489977] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 623.490932] Call Trace: [ 623.491247] dump_stack+0x107/0x167 [ 623.491664] should_fail.cold+0x5/0xa [ 623.492119] ? ext4_init_io_end+0x23/0x180 [ 623.492602] should_failslab+0x5/0x20 [ 623.493044] kmem_cache_alloc+0x5b/0x310 [ 623.493512] ext4_init_io_end+0x23/0x180 [ 623.494125] ext4_writepages+0xee9/0x3350 [ 623.494669] ? ext4_fallocate+0x8be/0x3850 13:44:24 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x0, 0x0, 0xfffffff7000) 13:44:24 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 2) [ 623.495198] ? vfs_fallocate+0x48f/0xda0 [ 623.495960] ? __x64_sys_fallocate+0xcf/0x140 [ 623.496621] ? do_syscall_64+0x33/0x40 [ 623.497091] ? lock_chain_count+0x20/0x20 [ 623.497571] ? mark_held_locks+0x9e/0xe0 [ 623.498131] ? mark_held_locks+0x9e/0xe0 [ 623.498598] ? __ext4_mark_inode_dirty+0x770/0x770 [ 623.499156] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 623.499793] ? quarantine_put+0x8b/0x1a0 [ 623.500378] ? trace_hardirqs_on+0x5b/0x180 [ 623.500914] ? kmem_cache_free+0xa7/0x2d0 [ 623.501498] ? slab_free_freelist_hook+0xa9/0x180 [ 623.502219] ? jbd2_journal_stop+0x61f/0xdc0 [ 623.502883] ? __lock_acquire+0x1657/0x5b00 [ 623.503395] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 623.504178] ? __ext4_mark_inode_dirty+0x770/0x770 [ 623.504736] do_writepages+0xee/0x2a0 [ 623.505323] ? page_writeback_cpu_online+0x20/0x20 [ 623.505979] ? lock_acquire+0x197/0x470 [ 623.506565] ? ext4_fallocate+0x21ac/0x3850 [ 623.507140] ? lock_release+0x680/0x680 [ 623.507606] __filemap_fdatawrite_range+0x24b/0x2f0 [ 623.508333] ? igrab+0xc0/0xc0 [ 623.508703] ? delete_from_page_cache_batch+0xa30/0xa30 [ 623.509469] ? down_write+0xe0/0x160 [ 623.509940] ? down_write_killable+0x180/0x180 [ 623.510613] filemap_write_and_wait_range+0x65/0x100 [ 623.511391] ext4_fallocate+0x220f/0x3850 [ 623.511864] ? __x64_sys_fallocate+0xcf/0x140 [ 623.512429] ? ext4_ext_truncate+0x250/0x250 [ 623.513056] ? selinux_file_permission+0x92/0x520 [ 623.513665] ? ext4_ext_truncate+0x250/0x250 [ 623.514262] vfs_fallocate+0x48f/0xda0 [ 623.514844] __x64_sys_fallocate+0xcf/0x140 [ 623.515532] do_syscall_64+0x33/0x40 [ 623.515960] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 623.516604] RIP: 0033:0x7fb365247b19 [ 623.517132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 623.519735] RSP: 002b:00007fb3627bd188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 623.520656] RAX: ffffffffffffffda RBX: 00007fb36535af60 RCX: 00007fb365247b19 [ 623.521559] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 623.522574] RBP: 00007fb3627bd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 623.523618] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 623.524584] R13: 00007fff2047289f R14: 00007fb3627bd300 R15: 0000000000022000 [ 623.529918] FAULT_INJECTION: forcing a failure. [ 623.529918] name failslab, interval 1, probability 0, space 0, times 0 [ 623.531287] CPU: 1 PID: 5625 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 623.532313] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 623.533364] Call Trace: [ 623.533666] dump_stack+0x107/0x167 [ 623.534109] should_fail.cold+0x5/0xa [ 623.534680] ? io_uring_setup+0x258/0x2980 [ 623.535163] should_failslab+0x5/0x20 [ 623.535613] kmem_cache_alloc_trace+0x55/0x320 [ 623.536325] io_uring_setup+0x258/0x2980 [ 623.536793] ? __mutex_unlock_slowpath+0xe1/0x600 [ 623.537479] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 623.538232] ? wait_for_completion_io+0x270/0x270 [ 623.538863] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 623.539509] ? syscall_enter_from_user_mode+0x1d/0x50 [ 623.540214] do_syscall_64+0x33/0x40 [ 623.540677] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 623.541358] RIP: 0033:0x7f084f4a7b19 [ 623.541978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 623.544420] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 623.545515] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 623.546526] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 623.547514] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 623.548417] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 623.549277] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:44:24 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0x0) 13:44:24 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:24 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) (fail_nth: 1) 13:44:24 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 3) 13:44:24 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 1) 13:44:24 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 623.758599] FAULT_INJECTION: forcing a failure. [ 623.758599] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 623.761682] CPU: 0 PID: 5633 Comm: syz-executor.1 Not tainted 5.10.254 #1 [ 623.763224] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 623.765117] Call Trace: [ 623.765721] dump_stack+0x107/0x167 [ 623.766545] should_fail.cold+0x5/0xa [ 623.767413] _copy_to_user+0x2e/0x180 [ 623.768302] simple_read_from_buffer+0xcc/0x160 [ 623.769368] proc_fail_nth_read+0x198/0x230 [ 623.770355] ? proc_sessionid_read+0x230/0x230 [ 623.771394] ? security_file_permission+0xb1/0xe0 [ 623.772505] ? proc_sessionid_read+0x230/0x230 [ 623.773386] FAULT_INJECTION: forcing a failure. [ 623.773386] name failslab, interval 1, probability 0, space 0, times 0 [ 623.773550] vfs_read+0x228/0x620 [ 623.775607] ksys_read+0x12d/0x260 [ 623.776422] ? vfs_write+0xb10/0xb10 [ 623.777272] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 623.778460] ? syscall_enter_from_user_mode+0x1d/0x50 [ 623.779627] do_syscall_64+0x33/0x40 [ 623.780486] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 623.781646] RIP: 0033:0x7f3a975b769c [ 623.782486] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 623.786674] RSP: 002b:00007f3a94b59170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 623.788422] RAX: ffffffffffffffda RBX: 0000000000050000 RCX: 00007f3a975b769c [ 623.790048] RDX: 000000000000000f RSI: 00007f3a94b591e0 RDI: 0000000000000005 [ 623.791667] RBP: 00007f3a94b591d0 R08: 0000000000000000 R09: 0000000000000000 [ 623.793296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 623.794907] R13: 00007ffc6d9d6dff R14: 00007f3a94b59300 R15: 0000000000022000 [ 623.796560] CPU: 1 PID: 5635 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 623.797348] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 623.798317] Call Trace: [ 623.798630] dump_stack+0x107/0x167 [ 623.799070] should_fail.cold+0x5/0xa [ 623.799522] ? jbd2__journal_start+0x190/0x7e0 [ 623.800069] should_failslab+0x5/0x20 [ 623.800519] kmem_cache_alloc+0x5b/0x310 [ 623.800993] jbd2__journal_start+0x190/0x7e0 [ 623.801514] __ext4_journal_start_sb+0x214/0x390 [ 623.802063] ext4_dirty_inode+0xbc/0x130 [ 623.802533] ? ext4_setattr+0x22f0/0x22f0 [ 623.803010] __mark_inode_dirty+0x492/0xd30 [ 623.803505] ? current_time+0xac/0x120 [ 623.803955] generic_update_time+0x21c/0x370 [ 623.804471] ? igrab+0xc0/0xc0 [ 623.804840] file_update_time+0x43a/0x520 [ 623.805321] ? evict_inodes+0x470/0x470 [ 623.805793] ? down_write_killable+0x180/0x180 [ 623.806329] file_modified+0x7d/0xa0 [ 623.806757] ext4_fallocate+0x8be/0x3850 [ 623.807243] ? __x64_sys_fallocate+0xcf/0x140 [ 623.807769] ? ext4_ext_truncate+0x250/0x250 [ 623.808306] ? selinux_file_permission+0x92/0x520 [ 623.808860] ? ext4_ext_truncate+0x250/0x250 [ 623.809364] vfs_fallocate+0x48f/0xda0 [ 623.809808] __x64_sys_fallocate+0xcf/0x140 [ 623.810306] do_syscall_64+0x33/0x40 [ 623.810745] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 623.811345] RIP: 0033:0x7f3b30543b19 [ 623.811775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 623.813917] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 623.814788] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 623.815629] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 623.816448] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 623.817264] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 623.818081] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 13:44:24 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0x0) [ 623.915389] FAULT_INJECTION: forcing a failure. [ 623.915389] name failslab, interval 1, probability 0, space 0, times 0 [ 623.918201] CPU: 0 PID: 5641 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 623.919896] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 623.921853] Call Trace: [ 623.922490] dump_stack+0x107/0x167 [ 623.923365] should_fail.cold+0x5/0xa [ 623.924283] ? create_object.isra.0+0x3a/0xa30 [ 623.925372] should_failslab+0x5/0x20 [ 623.926271] kmem_cache_alloc+0x5b/0x310 [ 623.927256] create_object.isra.0+0x3a/0xa30 [ 623.928305] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 623.929531] kmem_cache_alloc_trace+0x151/0x320 [ 623.930641] io_uring_setup+0x258/0x2980 [ 623.931613] ? __mutex_unlock_slowpath+0xe1/0x600 [ 623.932791] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 623.933999] ? wait_for_completion_io+0x270/0x270 [ 623.935195] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 623.936462] ? syscall_enter_from_user_mode+0x1d/0x50 [ 623.937691] do_syscall_64+0x33/0x40 [ 623.938590] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 623.939806] RIP: 0033:0x7f084f4a7b19 [ 623.940696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 623.945032] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 623.946887] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 623.948627] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 623.950349] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 623.952075] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 623.953813] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 637.351897] FAULT_INJECTION: forcing a failure. [ 637.351897] name failslab, interval 1, probability 0, space 0, times 0 [ 637.354382] CPU: 0 PID: 5653 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 637.354947] FAULT_INJECTION: forcing a failure. [ 637.354947] name failslab, interval 1, probability 0, space 0, times 0 [ 637.355856] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 637.355867] Call Trace: [ 637.355902] dump_stack+0x107/0x167 [ 637.355946] should_fail.cold+0x5/0xa [ 637.355986] ? io_uring_setup+0x33c/0x2980 [ 637.356023] should_failslab+0x5/0x20 [ 637.356050] __kmalloc+0x72/0x390 [ 637.356079] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 637.356122] io_uring_setup+0x33c/0x2980 [ 637.356148] ? __mutex_unlock_slowpath+0xe1/0x600 [ 637.356178] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 637.356194] ? wait_for_completion_io+0x270/0x270 [ 637.356263] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 637.370005] ? syscall_enter_from_user_mode+0x1d/0x50 [ 637.371122] do_syscall_64+0x33/0x40 [ 637.371924] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 637.373025] RIP: 0033:0x7f084f4a7b19 [ 637.373820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 637.377734] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 637.379361] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 637.380894] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 637.382415] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 637.383930] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 637.385471] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 637.387105] CPU: 1 PID: 5659 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 637.388045] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 637.389161] Call Trace: [ 637.389526] dump_stack+0x107/0x167 [ 637.390019] should_fail.cold+0x5/0xa [ 637.390501] ? create_object.isra.0+0x3a/0xa30 [ 637.391235] should_failslab+0x5/0x20 13:44:38 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 7) 13:44:38 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:38 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:38 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 2) 13:44:38 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:44:38 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 4) 13:44:38 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) r0 = open$dir(&(0x7f0000000040)='./file0/file0\x00', 0x600000, 0x49287a9b0f8ec11e) r1 = syz_mount_image$vfat(&(0x7f0000000380), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x920420, &(0x7f00000000c0)=ANY=[]) unlinkat(r1, &(0x7f0000000180)='./file0/file0\x00', 0x0) r2 = open_tree(r0, &(0x7f0000000080)='./file1\x00', 0x80800) recvfrom(r2, &(0x7f00000001c0)=""/84, 0x54, 0x40000041, &(0x7f0000000240)=@alg={0x26, 'hash\x00', 0x0, 0x0, 'tgr192\x00'}, 0x80) 13:44:38 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0x0) [ 637.391824] kmem_cache_alloc+0x5b/0x310 [ 637.392484] create_object.isra.0+0x3a/0xa30 [ 637.393025] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 637.393654] kmem_cache_alloc+0x159/0x310 [ 637.394172] jbd2__journal_start+0x190/0x7e0 [ 637.394719] __ext4_journal_start_sb+0x214/0x390 [ 637.395311] ext4_dirty_inode+0xbc/0x130 [ 637.395809] ? ext4_setattr+0x22f0/0x22f0 [ 637.396332] __mark_inode_dirty+0x492/0xd30 [ 637.396858] ? current_time+0xac/0x120 [ 637.397344] generic_update_time+0x21c/0x370 [ 637.397878] ? igrab+0xc0/0xc0 [ 637.398286] file_update_time+0x43a/0x520 [ 637.398793] ? evict_inodes+0x470/0x470 [ 637.399311] ? down_write_killable+0x180/0x180 [ 637.399900] file_modified+0x7d/0xa0 [ 637.400395] ext4_fallocate+0x8be/0x3850 [ 637.400932] ? __x64_sys_fallocate+0xcf/0x140 [ 637.401528] ? ext4_ext_truncate+0x250/0x250 [ 637.402082] ? selinux_file_permission+0x92/0x520 [ 637.402694] ? ext4_ext_truncate+0x250/0x250 [ 637.403254] vfs_fallocate+0x48f/0xda0 [ 637.403752] __x64_sys_fallocate+0xcf/0x140 [ 637.404307] do_syscall_64+0x33/0x40 [ 637.404796] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 637.405464] RIP: 0033:0x7f3b30543b19 [ 637.405922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 637.406821] FAULT_INJECTION: forcing a failure. [ 637.406821] name failslab, interval 1, probability 0, space 0, times 0 [ 637.408216] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 637.408231] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 637.408237] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 637.408244] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 637.408250] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 637.408256] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 [ 637.421352] CPU: 0 PID: 5660 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 637.422792] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 637.424555] Call Trace: [ 637.425119] dump_stack+0x107/0x167 [ 637.425899] should_fail.cold+0x5/0xa [ 637.426705] ? jbd2__journal_start+0x190/0x7e0 [ 637.427671] should_failslab+0x5/0x20 [ 637.428505] kmem_cache_alloc+0x5b/0x310 [ 637.429373] jbd2__journal_start+0x190/0x7e0 [ 637.430316] __ext4_journal_start_sb+0x214/0x390 [ 637.431329] ext4_writepages+0x102d/0x3350 [ 637.432242] ? ext4_fallocate+0x8be/0x3850 [ 637.433133] ? vfs_fallocate+0x48f/0xda0 [ 637.433988] ? __x64_sys_fallocate+0xcf/0x140 [ 637.434940] ? do_syscall_64+0x33/0x40 [ 637.435770] ? lock_chain_count+0x20/0x20 [ 637.436724] ? mark_held_locks+0x9e/0xe0 [ 637.437624] ? __ext4_mark_inode_dirty+0x770/0x770 [ 637.438758] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 637.439874] ? quarantine_put+0x8b/0x1a0 [ 637.440746] ? trace_hardirqs_on+0x5b/0x180 [ 637.441655] ? kmem_cache_free+0xa7/0x2d0 [ 637.442551] ? slab_free_freelist_hook+0xa9/0x180 [ 637.443572] ? jbd2_journal_stop+0x61f/0xdc0 [ 637.444520] ? __lock_acquire+0x1657/0x5b00 [ 637.445462] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 637.446575] ? __ext4_mark_inode_dirty+0x770/0x770 [ 637.447610] do_writepages+0xee/0x2a0 [ 637.448432] ? page_writeback_cpu_online+0x20/0x20 [ 637.449476] ? lock_acquire+0x197/0x470 [ 637.450327] ? ext4_fallocate+0x21ac/0x3850 [ 637.451245] ? lock_release+0x680/0x680 [ 637.452105] __filemap_fdatawrite_range+0x24b/0x2f0 [ 637.453160] ? igrab+0xc0/0xc0 [ 637.453840] ? delete_from_page_cache_batch+0xa30/0xa30 [ 637.454980] ? down_write+0xe0/0x160 [ 637.455770] ? down_write_killable+0x180/0x180 [ 637.456760] filemap_write_and_wait_range+0x65/0x100 [ 637.457835] ext4_fallocate+0x220f/0x3850 [ 637.458713] ? __x64_sys_fallocate+0xcf/0x140 [ 637.459682] ? ext4_ext_truncate+0x250/0x250 [ 637.460618] ? selinux_file_permission+0x92/0x520 [ 637.461643] ? ext4_ext_truncate+0x250/0x250 [ 637.462587] vfs_fallocate+0x48f/0xda0 [ 637.463432] __x64_sys_fallocate+0xcf/0x140 [ 637.464365] do_syscall_64+0x33/0x40 [ 637.465155] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 637.466241] RIP: 0033:0x7fb365247b19 [ 637.467028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 637.470927] RSP: 002b:00007fb3627bd188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 637.472542] RAX: ffffffffffffffda RBX: 00007fb36535af60 RCX: 00007fb365247b19 [ 637.474048] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 637.475553] RBP: 00007fb3627bd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 637.477068] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 637.478589] R13: 00007fff2047289f R14: 00007fb3627bd300 R15: 0000000000022000 [ 637.481872] EXT4-fs (sda): ext4_writepages: jbd2_start: 9223372036854775807 pages, ino 16022; err -12 13:44:38 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 3) [ 637.626758] FAULT_INJECTION: forcing a failure. [ 637.626758] name failslab, interval 1, probability 0, space 0, times 0 [ 637.629270] CPU: 1 PID: 5669 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 637.630062] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 637.631012] Call Trace: [ 637.631321] dump_stack+0x107/0x167 [ 637.631738] should_fail.cold+0x5/0xa [ 637.632187] ? ext4_init_io_end+0x23/0x180 [ 637.632669] should_failslab+0x5/0x20 [ 637.633107] kmem_cache_alloc+0x5b/0x310 [ 637.633571] ext4_init_io_end+0x23/0x180 [ 637.634047] ext4_writepages+0x8ec/0x3350 [ 637.634536] ? ext4_fallocate+0x8be/0x3850 [ 637.635028] ? vfs_fallocate+0x48f/0xda0 [ 637.635503] ? __x64_sys_fallocate+0xcf/0x140 [ 637.636020] ? do_syscall_64+0x33/0x40 [ 637.636502] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 637.637137] ? lock_acquire+0x197/0x470 [ 637.637612] ? lock_chain_count+0x20/0x20 [ 637.638117] ? mark_held_locks+0x9e/0xe0 [ 637.638595] ? __ext4_mark_inode_dirty+0x770/0x770 [ 637.639162] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 637.639770] ? quarantine_put+0x8b/0x1a0 [ 637.640266] ? trace_hardirqs_on+0x5b/0x180 [ 637.640757] ? kmem_cache_free+0xa7/0x2d0 [ 637.641265] ? slab_free_freelist_hook+0xa9/0x180 [ 637.641816] ? jbd2_journal_stop+0x61f/0xdc0 [ 637.642334] ? __lock_acquire+0x1657/0x5b00 [ 637.642845] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 637.643450] ? __ext4_mark_inode_dirty+0x770/0x770 [ 637.644011] do_writepages+0xee/0x2a0 [ 637.644468] ? page_writeback_cpu_online+0x20/0x20 [ 637.645043] ? lock_acquire+0x197/0x470 [ 637.645499] ? ext4_fallocate+0x21ac/0x3850 [ 637.645998] ? lock_release+0x680/0x680 [ 637.646460] __filemap_fdatawrite_range+0x24b/0x2f0 [ 637.647034] ? igrab+0xc0/0xc0 [ 637.647405] ? delete_from_page_cache_batch+0xa30/0xa30 [ 637.648019] ? down_write+0xe0/0x160 [ 637.648626] ? down_write_killable+0x180/0x180 [ 637.649159] filemap_write_and_wait_range+0x65/0x100 [ 637.649737] ext4_fallocate+0x220f/0x3850 [ 637.650212] ? __x64_sys_fallocate+0xcf/0x140 [ 637.650733] ? ext4_ext_truncate+0x250/0x250 [ 637.651241] ? selinux_file_permission+0x92/0x520 [ 637.651793] ? ext4_ext_truncate+0x250/0x250 [ 637.652305] vfs_fallocate+0x48f/0xda0 [ 637.652879] __x64_sys_fallocate+0xcf/0x140 [ 637.653406] do_syscall_64+0x33/0x40 [ 637.653834] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 637.654420] RIP: 0033:0x7f3b30543b19 [ 637.654850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 637.657113] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 637.657983] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 637.658799] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 637.659618] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 637.660444] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 637.661261] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 13:44:51 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:51 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 4) 13:44:51 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x10, 0x4) 13:44:51 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(0x0, 0x0, 0xb) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r0, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:51 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 8) 13:44:51 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 5) 13:44:51 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 1) 13:44:51 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 650.440690] FAULT_INJECTION: forcing a failure. [ 650.440690] name failslab, interval 1, probability 0, space 0, times 0 [ 650.443310] CPU: 1 PID: 5681 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 650.444722] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 650.446421] Call Trace: [ 650.446983] dump_stack+0x107/0x167 [ 650.447750] should_fail.cold+0x5/0xa [ 650.448553] ? jbd2__journal_start+0x190/0x7e0 [ 650.449485] should_failslab+0x5/0x20 [ 650.450295] kmem_cache_alloc+0x5b/0x310 [ 650.451142] jbd2__journal_start+0x190/0x7e0 [ 650.452046] __ext4_journal_start_sb+0x214/0x390 [ 650.453059] ext4_dirty_inode+0xbc/0x130 [ 650.454064] ? ext4_setattr+0x22f0/0x22f0 [ 650.455067] __mark_inode_dirty+0x492/0xd30 [ 650.456103] ? current_time+0xac/0x120 [ 650.457055] generic_update_time+0x21c/0x370 [ 650.458125] ? igrab+0xc0/0xc0 [ 650.458906] file_update_time+0x43a/0x520 [ 650.459907] ? evict_inodes+0x470/0x470 [ 650.460886] ? down_write_killable+0x180/0x180 [ 650.462014] file_modified+0x7d/0xa0 [ 650.462917] ext4_fallocate+0x8be/0x3850 [ 650.463897] ? __x64_sys_fallocate+0xcf/0x140 [ 650.465008] ? ext4_ext_truncate+0x250/0x250 [ 650.466088] ? selinux_file_permission+0x92/0x520 [ 650.467264] ? ext4_ext_truncate+0x250/0x250 [ 650.468352] vfs_fallocate+0x48f/0xda0 [ 650.469302] __x64_sys_fallocate+0xcf/0x140 [ 650.470358] do_syscall_64+0x33/0x40 [ 650.471280] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 650.472560] RIP: 0033:0x7f518f061b19 [ 650.473466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 650.477960] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 650.479835] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 650.481632] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 650.483371] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 650.485123] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 650.486899] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 [ 650.518348] FAULT_INJECTION: forcing a failure. [ 650.518348] name failslab, interval 1, probability 0, space 0, times 0 [ 650.521422] CPU: 0 PID: 5690 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 650.522981] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 650.524777] Call Trace: [ 650.524965] FAULT_INJECTION: forcing a failure. [ 650.524965] name failslab, interval 1, probability 0, space 0, times 0 [ 650.525348] dump_stack+0x107/0x167 [ 650.525371] should_fail.cold+0x5/0xa [ 650.525394] ? create_object.isra.0+0x3a/0xa30 [ 650.525412] should_failslab+0x5/0x20 [ 650.525431] kmem_cache_alloc+0x5b/0x310 [ 650.525449] ? _raw_spin_unlock_irq+0x1f/0x30 [ 650.525475] create_object.isra.0+0x3a/0xa30 [ 650.534117] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 650.535195] kmem_cache_alloc+0x159/0x310 [ 650.536079] ext4_init_io_end+0x23/0x180 [ 650.536946] ext4_writepages+0x8ec/0x3350 [ 650.537822] ? event_sched_in+0x5b1/0xaa0 [ 650.538715] ? perf_pmu_nop_int+0x5/0x10 [ 650.539575] ? merge_sched_in+0x142/0xfb0 [ 650.540502] ? __lock_acquire+0x1657/0x5b00 [ 650.541415] ? __ext4_mark_inode_dirty+0x770/0x770 [ 650.542452] ? mark_lock+0xf5/0x2df0 [ 650.543250] ? lock_chain_count+0x20/0x20 [ 650.544153] ? __lock_acquire+0x1657/0x5b00 [ 650.545071] ? mark_lock+0xf5/0x2df0 [ 650.545861] ? mark_held_locks+0x9e/0xe0 [ 650.546729] ? lock_chain_count+0x20/0x20 [ 650.547641] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 650.548763] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 650.549898] ? trace_hardirqs_on+0x5b/0x180 [ 650.550821] ? __ext4_mark_inode_dirty+0x770/0x770 [ 650.551856] do_writepages+0xee/0x2a0 [ 650.552684] ? page_writeback_cpu_online+0x20/0x20 [ 650.553728] ? lock_acquire+0x1b9/0x470 [ 650.554588] ? mark_held_locks+0x9e/0xe0 [ 650.555463] __filemap_fdatawrite_range+0x24b/0x2f0 [ 650.556532] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 650.557683] ? delete_from_page_cache_batch+0xa30/0xa30 [ 650.558820] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 650.559982] ? ext4_break_layouts+0x55/0x90 [ 650.560917] filemap_write_and_wait_range+0x65/0x100 [ 650.561991] ext4_fallocate+0x220f/0x3850 [ 650.562870] ? __x64_sys_fallocate+0xcf/0x140 [ 650.563838] ? ext4_ext_truncate+0x250/0x250 [ 650.564783] ? selinux_file_permission+0x92/0x520 [ 650.565823] ? ext4_ext_truncate+0x250/0x250 [ 650.566761] vfs_fallocate+0x48f/0xda0 [ 650.567637] __x64_sys_fallocate+0xcf/0x140 [ 650.568593] do_syscall_64+0x33/0x40 [ 650.569412] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 650.570516] RIP: 0033:0x7f3b30543b19 [ 650.571305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 650.575178] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 650.576792] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 650.578302] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 650.579806] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 650.581346] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 650.582843] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 [ 650.584405] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 650.586135] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 650.588147] Call Trace: [ 650.588836] dump_stack+0x107/0x167 [ 650.589709] should_fail.cold+0x5/0xa [ 650.590622] ? jbd2__journal_start+0x190/0x7e0 [ 650.591738] should_failslab+0x5/0x20 [ 650.592670] kmem_cache_alloc+0x5b/0x310 [ 650.593643] jbd2__journal_start+0x190/0x7e0 [ 650.594768] __ext4_journal_start_sb+0x214/0x390 [ 650.595931] ext4_writepages+0x102d/0x3350 [ 650.596986] ? ext4_fallocate+0x8be/0x3850 [ 650.598058] ? vfs_fallocate+0x48f/0xda0 [ 650.599047] ? __x64_sys_fallocate+0xcf/0x140 [ 650.600155] ? do_syscall_64+0x33/0x40 [ 650.601104] ? lock_chain_count+0x20/0x20 [ 650.602132] ? mark_held_locks+0x9e/0xe0 [ 650.603100] ? __ext4_mark_inode_dirty+0x770/0x770 [ 650.604356] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 650.605876] ? quarantine_put+0x8b/0x1a0 [ 650.606821] ? trace_hardirqs_on+0x5b/0x180 [ 650.607899] ? kmem_cache_free+0xa7/0x2d0 [ 650.608922] ? slab_free_freelist_hook+0xa9/0x180 [ 650.610107] ? jbd2_journal_stop+0x61f/0xdc0 [ 650.611233] ? __lock_acquire+0x1657/0x5b00 [ 650.612332] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 650.613600] ? __ext4_mark_inode_dirty+0x770/0x770 [ 650.614799] do_writepages+0xee/0x2a0 [ 650.615710] ? page_writeback_cpu_online+0x20/0x20 [ 650.616884] ? lock_acquire+0x197/0x470 [ 650.617849] ? ext4_fallocate+0x21ac/0x3850 [ 650.618906] ? lock_release+0x680/0x680 [ 650.619889] __filemap_fdatawrite_range+0x24b/0x2f0 [ 650.621043] ? igrab+0xc0/0xc0 [ 650.621830] ? delete_from_page_cache_batch+0xa30/0xa30 [ 650.623104] ? down_write+0xe0/0x160 [ 650.623995] ? down_write_killable+0x180/0x180 [ 650.625111] filemap_write_and_wait_range+0x65/0x100 [ 650.626343] ext4_fallocate+0x220f/0x3850 [ 650.627326] ? __x64_sys_fallocate+0xcf/0x140 [ 650.628396] ? ext4_ext_truncate+0x250/0x250 [ 650.629439] ? selinux_file_permission+0x92/0x520 [ 650.630610] ? ext4_ext_truncate+0x250/0x250 [ 650.631700] vfs_fallocate+0x48f/0xda0 [ 650.632668] __x64_sys_fallocate+0xcf/0x140 [ 650.633677] do_syscall_64+0x33/0x40 [ 650.634565] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 650.635794] RIP: 0033:0x7fb365247b19 [ 650.636698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 650.641248] RSP: 002b:00007fb3627bd188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 650.643006] RAX: ffffffffffffffda RBX: 00007fb36535af60 RCX: 00007fb365247b19 [ 650.644716] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 650.646433] RBP: 00007fb3627bd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 650.648095] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 650.649760] R13: 00007fff2047289f R14: 00007fb3627bd300 R15: 0000000000022000 [ 650.651811] EXT4-fs (sda): ext4_writepages: jbd2_start: 9223372036854775807 pages, ino 16029; err -12 [ 650.656766] FAULT_INJECTION: forcing a failure. [ 650.656766] name failslab, interval 1, probability 0, space 0, times 0 [ 650.659323] CPU: 1 PID: 5692 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 650.660962] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 650.662926] Call Trace: [ 650.663545] dump_stack+0x107/0x167 [ 650.664409] should_fail.cold+0x5/0xa [ 650.665303] ? create_object.isra.0+0x3a/0xa30 [ 650.666389] should_failslab+0x5/0x20 [ 650.667303] kmem_cache_alloc+0x5b/0x310 [ 650.668279] create_object.isra.0+0x3a/0xa30 [ 650.669338] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 650.670547] __kmalloc+0x16e/0x390 [ 650.671363] io_uring_setup+0x33c/0x2980 [ 650.672313] ? __mutex_unlock_slowpath+0xe1/0x600 [ 650.673483] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 650.674712] ? wait_for_completion_io+0x270/0x270 [ 650.675847] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 650.677095] ? syscall_enter_from_user_mode+0x1d/0x50 [ 650.678285] do_syscall_64+0x33/0x40 [ 650.679172] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 650.680408] RIP: 0033:0x7f084f4a7b19 [ 650.681303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 650.685717] RSP: 002b:00007f084c9fc108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 650.687552] RAX: ffffffffffffffda RBX: 00007f084f5bb020 RCX: 00007f084f4a7b19 [ 650.689234] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 650.690894] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 650.692601] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 650.694300] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:44:51 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 9) 13:44:51 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 5) 13:44:51 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 2) [ 650.878867] FAULT_INJECTION: forcing a failure. [ 650.878867] name failslab, interval 1, probability 0, space 0, times 0 [ 650.881348] CPU: 0 PID: 5696 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 650.882636] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 650.884230] Call Trace: [ 650.884735] dump_stack+0x107/0x167 [ 650.885425] should_fail.cold+0x5/0xa [ 650.886165] ? create_object.isra.0+0x3a/0xa30 [ 650.887035] should_failslab+0x5/0x20 [ 650.887773] kmem_cache_alloc+0x5b/0x310 [ 650.888566] create_object.isra.0+0x3a/0xa30 [ 650.889410] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 650.890364] kmem_cache_alloc+0x159/0x310 [ 650.891160] jbd2__journal_start+0x190/0x7e0 [ 650.891988] __ext4_journal_start_sb+0x214/0x390 [ 650.892904] ext4_dirty_inode+0xbc/0x130 [ 650.893686] ? ext4_setattr+0x22f0/0x22f0 [ 650.894481] __mark_inode_dirty+0x492/0xd30 [ 650.895288] ? current_time+0xac/0x120 [ 650.896031] generic_update_time+0x21c/0x370 [ 650.896867] ? igrab+0xc0/0xc0 [ 650.897493] file_update_time+0x43a/0x520 [ 650.898294] ? evict_inodes+0x470/0x470 [ 650.899041] ? down_write_killable+0x180/0x180 [ 650.899905] file_modified+0x7d/0xa0 [ 650.900622] ext4_fallocate+0x8be/0x3850 [ 650.901398] ? __x64_sys_fallocate+0xcf/0x140 [ 650.902271] ? ext4_ext_truncate+0x250/0x250 [ 650.903102] ? selinux_file_permission+0x92/0x520 [ 650.904020] ? ext4_ext_truncate+0x250/0x250 [ 650.904856] vfs_fallocate+0x48f/0xda0 [ 650.905582] __x64_sys_fallocate+0xcf/0x140 [ 650.906394] do_syscall_64+0x33/0x40 [ 650.907092] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 650.908070] RIP: 0033:0x7f518f061b19 [ 650.908780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 650.912215] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 650.913641] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 650.915290] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 650.916973] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 650.918653] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 650.920316] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 13:44:51 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 650.967919] FAULT_INJECTION: forcing a failure. [ 650.967919] name failslab, interval 1, probability 0, space 0, times 0 [ 650.970402] CPU: 0 PID: 5698 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 650.971634] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 650.973156] Call Trace: [ 650.973639] dump_stack+0x107/0x167 [ 650.974320] should_fail.cold+0x5/0xa [ 650.975026] ? ext4_init_io_end+0x23/0x180 [ 650.975806] should_failslab+0x5/0x20 [ 650.976522] kmem_cache_alloc+0x5b/0x310 [ 650.977279] ext4_init_io_end+0x23/0x180 [ 650.978024] ext4_writepages+0xee9/0x3350 [ 650.978791] ? ext4_fallocate+0x8be/0x3850 [ 650.979589] ? vfs_fallocate+0x48f/0xda0 [ 650.980376] ? __x64_sys_fallocate+0xcf/0x140 [ 650.981244] ? do_syscall_64+0x33/0x40 [ 650.981992] ? lock_chain_count+0x20/0x20 [ 650.982776] ? mark_held_locks+0x9e/0xe0 [ 650.983538] ? __ext4_mark_inode_dirty+0x770/0x770 [ 650.984479] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 650.985481] ? quarantine_put+0x8b/0x1a0 [ 650.986236] ? trace_hardirqs_on+0x5b/0x180 [ 650.987066] ? kmem_cache_free+0xa7/0x2d0 [ 650.987835] ? slab_free_freelist_hook+0xa9/0x180 [ 650.988769] ? jbd2_journal_stop+0x61f/0xdc0 [ 650.989592] ? __lock_acquire+0x1657/0x5b00 [ 650.990448] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 650.991422] ? __ext4_mark_inode_dirty+0x770/0x770 [ 650.992367] do_writepages+0xee/0x2a0 [ 650.993081] ? page_writeback_cpu_online+0x20/0x20 [ 650.994021] ? lock_acquire+0x197/0x470 [ 650.994775] ? ext4_fallocate+0x21ac/0x3850 [ 650.995592] ? lock_release+0x680/0x680 [ 650.996365] __filemap_fdatawrite_range+0x24b/0x2f0 [ 650.997293] ? igrab+0xc0/0xc0 [ 650.997912] ? delete_from_page_cache_batch+0xa30/0xa30 [ 650.998986] ? down_write+0xe0/0x160 [ 650.999716] ? down_write_killable+0x180/0x180 [ 651.000605] filemap_write_and_wait_range+0x65/0x100 [ 651.001574] ext4_fallocate+0x220f/0x3850 [ 651.002355] ? __x64_sys_fallocate+0xcf/0x140 [ 651.003223] ? ext4_ext_truncate+0x250/0x250 [ 651.004060] ? selinux_file_permission+0x92/0x520 [ 651.004997] ? ext4_ext_truncate+0x250/0x250 [ 651.005842] vfs_fallocate+0x48f/0xda0 [ 651.006597] __x64_sys_fallocate+0xcf/0x140 [ 651.007424] do_syscall_64+0x33/0x40 [ 651.008135] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 651.009144] RIP: 0033:0x7f3b30543b19 [ 651.009868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 651.013417] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 651.014858] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 651.016212] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 651.017831] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 651.019366] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 651.020946] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 13:44:51 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 3) [ 651.105597] FAULT_INJECTION: forcing a failure. [ 651.105597] name failslab, interval 1, probability 0, space 0, times 0 [ 651.107569] CPU: 0 PID: 5705 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 651.108727] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 651.110115] Call Trace: [ 651.110554] dump_stack+0x107/0x167 [ 651.111162] should_fail.cold+0x5/0xa [ 651.111797] ? ext4_init_io_end+0x23/0x180 [ 651.112511] should_failslab+0x5/0x20 [ 651.113145] kmem_cache_alloc+0x5b/0x310 [ 651.113824] ext4_init_io_end+0x23/0x180 [ 651.114518] ext4_writepages+0x8ec/0x3350 [ 651.115222] ? ext4_fallocate+0x8be/0x3850 [ 651.115951] ? vfs_fallocate+0x48f/0xda0 [ 651.116654] ? __x64_sys_fallocate+0xcf/0x140 [ 651.117404] ? do_syscall_64+0x33/0x40 [ 651.118046] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 651.119006] ? lock_acquire+0x197/0x470 [ 651.119845] ? lock_chain_count+0x20/0x20 [ 651.120754] ? mark_held_locks+0x9e/0xe0 [ 651.121591] ? __ext4_mark_inode_dirty+0x770/0x770 [ 651.122614] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 651.123721] ? quarantine_put+0x8b/0x1a0 [ 651.124602] ? trace_hardirqs_on+0x5b/0x180 [ 651.125541] ? kmem_cache_free+0xa7/0x2d0 [ 651.126317] ? slab_free_freelist_hook+0xa9/0x180 [ 651.127155] ? jbd2_journal_stop+0x61f/0xdc0 [ 651.127927] ? __lock_acquire+0x1657/0x5b00 [ 651.128806] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 651.129671] ? __ext4_mark_inode_dirty+0x770/0x770 [ 651.130534] do_writepages+0xee/0x2a0 [ 651.131158] ? page_writeback_cpu_online+0x20/0x20 [ 651.131915] ? lock_acquire+0x197/0x470 [ 651.132524] ? ext4_fallocate+0x21ac/0x3850 [ 651.133216] ? lock_release+0x680/0x680 [ 651.133854] __filemap_fdatawrite_range+0x24b/0x2f0 [ 651.134608] ? igrab+0xc0/0xc0 [ 651.135115] ? delete_from_page_cache_batch+0xa30/0xa30 [ 651.135960] ? down_write+0xe0/0x160 [ 651.136550] ? down_write_killable+0x180/0x180 [ 651.137290] filemap_write_and_wait_range+0x65/0x100 [ 651.138084] ext4_fallocate+0x220f/0x3850 [ 651.138722] ? __x64_sys_fallocate+0xcf/0x140 [ 651.139434] ? ext4_ext_truncate+0x250/0x250 [ 651.140101] ? selinux_file_permission+0x92/0x520 [ 651.140861] ? ext4_ext_truncate+0x250/0x250 [ 651.141544] vfs_fallocate+0x48f/0xda0 [ 651.142139] __x64_sys_fallocate+0xcf/0x140 [ 651.142815] do_syscall_64+0x33/0x40 [ 651.143402] entry_SYSCALL_64_after_hwframe+0x67/0xd1 13:44:51 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 6) [ 651.144186] RIP: 0033:0x7f518f061b19 [ 651.144963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 651.147791] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 651.148963] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 651.150060] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 651.151157] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 651.152273] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 651.153389] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 13:44:51 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(0x0, 0x0, 0xb) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r0, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:52 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x483c9, 0x4) [ 651.219728] FAULT_INJECTION: forcing a failure. [ 651.219728] name failslab, interval 1, probability 0, space 0, times 0 [ 651.223236] CPU: 1 PID: 5710 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 651.224995] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 651.227257] Call Trace: [ 651.228085] dump_stack+0x107/0x167 [ 651.228942] should_fail.cold+0x5/0xa [ 651.229978] ? create_object.isra.0+0x3a/0xa30 [ 651.231066] should_failslab+0x5/0x20 [ 651.232081] kmem_cache_alloc+0x5b/0x310 [ 651.233296] create_object.isra.0+0x3a/0xa30 [ 651.234382] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 651.235658] kmem_cache_alloc+0x159/0x310 [ 651.236867] ext4_init_io_end+0x23/0x180 [ 651.237951] ext4_writepages+0xee9/0x3350 [ 651.238987] ? ext4_fallocate+0x8be/0x3850 [ 651.240076] ? vfs_fallocate+0x48f/0xda0 [ 651.241198] ? __x64_sys_fallocate+0xcf/0x140 [ 651.242404] ? do_syscall_64+0x33/0x40 [ 651.243443] ? lock_chain_count+0x20/0x20 [ 651.244619] ? mark_held_locks+0x9e/0xe0 [ 651.245747] ? __ext4_mark_inode_dirty+0x770/0x770 [ 651.247013] ? register_lock_class+0xbb/0x17b0 [ 651.248123] ? kmem_cache_free+0xa7/0x2d0 [ 651.249360] ? slab_free_freelist_hook+0xa9/0x180 [ 651.250596] ? jbd2_journal_stop+0x61f/0xdc0 [ 651.251735] ? __lock_acquire+0x1657/0x5b00 [ 651.253016] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 651.254407] ? __ext4_mark_inode_dirty+0x770/0x770 [ 651.255558] do_writepages+0xee/0x2a0 [ 651.256645] ? page_writeback_cpu_online+0x20/0x20 [ 651.257955] ? lock_acquire+0x197/0x470 [ 651.258856] ? ext4_fallocate+0x21ac/0x3850 [ 651.260139] ? lock_release+0x680/0x680 [ 651.261268] __filemap_fdatawrite_range+0x24b/0x2f0 [ 651.262519] ? igrab+0xc0/0xc0 [ 651.263247] ? delete_from_page_cache_batch+0xa30/0xa30 [ 651.264479] ? down_write+0xe0/0x160 [ 651.265439] ? down_write_killable+0x180/0x180 [ 651.266748] filemap_write_and_wait_range+0x65/0x100 [ 651.268065] ext4_fallocate+0x220f/0x3850 [ 651.269012] ? __x64_sys_fallocate+0xcf/0x140 [ 651.270145] ? ext4_ext_truncate+0x250/0x250 [ 651.271376] ? selinux_file_permission+0x92/0x520 [ 651.272624] ? ext4_ext_truncate+0x250/0x250 [ 651.273635] vfs_fallocate+0x48f/0xda0 [ 651.274571] __x64_sys_fallocate+0xcf/0x140 [ 651.275795] do_syscall_64+0x33/0x40 [ 651.276826] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 651.278098] RIP: 0033:0x7f3b30543b19 [ 651.279059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 651.283588] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 651.285585] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 651.287363] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 651.289369] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 651.291070] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 651.292651] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 13:44:52 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 651.369744] FAULT_INJECTION: forcing a failure. [ 651.369744] name failslab, interval 1, probability 0, space 0, times 0 [ 651.372797] CPU: 1 PID: 5699 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 651.374430] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 651.376383] Call Trace: [ 651.377017] dump_stack+0x107/0x167 [ 651.377870] should_fail.cold+0x5/0xa [ 651.378757] ? jbd2__journal_start+0x246/0x7e0 [ 651.379814] should_failslab+0x5/0x20 [ 651.380704] kmem_cache_alloc+0x5b/0x310 [ 651.381651] jbd2__journal_start+0x246/0x7e0 [ 651.382677] __ext4_journal_start_sb+0x214/0x390 [ 651.383779] ext4_writepages+0x102d/0x3350 [ 651.384765] ? ext4_fallocate+0x8be/0x3850 [ 651.385738] ? vfs_fallocate+0x48f/0xda0 [ 651.386672] ? __x64_sys_fallocate+0xcf/0x140 [ 651.387708] ? do_syscall_64+0x33/0x40 [ 651.388616] ? lock_chain_count+0x20/0x20 [ 651.389593] ? mark_held_locks+0x9e/0xe0 [ 651.390505] ? __ext4_mark_inode_dirty+0x770/0x770 [ 651.391628] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 651.392834] ? quarantine_put+0x8b/0x1a0 [ 651.393763] ? trace_hardirqs_on+0x5b/0x180 [ 651.394750] ? kmem_cache_free+0xa7/0x2d0 [ 651.395704] ? slab_free_freelist_hook+0xa9/0x180 [ 651.396812] ? jbd2_journal_stop+0x61f/0xdc0 [ 651.397824] ? __lock_acquire+0x1657/0x5b00 [ 651.398824] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 651.400006] ? __ext4_mark_inode_dirty+0x770/0x770 [ 651.401129] do_writepages+0xee/0x2a0 [ 651.402011] ? page_writeback_cpu_online+0x20/0x20 [ 651.403144] ? lock_acquire+0x197/0x470 [ 651.404057] ? ext4_fallocate+0x21ac/0x3850 [ 651.405069] ? lock_release+0x680/0x680 [ 651.405991] __filemap_fdatawrite_range+0x24b/0x2f0 [ 651.407119] ? igrab+0xc0/0xc0 [ 651.407841] ? delete_from_page_cache_batch+0xa30/0xa30 [ 651.409076] ? down_write+0xe0/0x160 [ 651.409912] ? down_write_killable+0x180/0x180 [ 651.410962] filemap_write_and_wait_range+0x65/0x100 [ 651.412106] ext4_fallocate+0x220f/0x3850 [ 651.413052] ? __x64_sys_fallocate+0xcf/0x140 [ 651.414073] ? ext4_ext_truncate+0x250/0x250 [ 651.415063] ? selinux_file_permission+0x92/0x520 [ 651.416152] ? ext4_ext_truncate+0x250/0x250 [ 651.417171] vfs_fallocate+0x48f/0xda0 [ 651.418055] __x64_sys_fallocate+0xcf/0x140 [ 651.419027] do_syscall_64+0x33/0x40 [ 651.419854] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 651.421007] RIP: 0033:0x7fb365247b19 [ 651.421850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 651.426136] RSP: 002b:00007fb3627bd188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 651.427918] RAX: ffffffffffffffda RBX: 00007fb36535af60 RCX: 00007fb365247b19 [ 651.429608] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 651.431302] RBP: 00007fb3627bd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 651.432970] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 651.434610] R13: 00007fff2047289f R14: 00007fb3627bd300 R15: 0000000000022000 [ 651.436669] EXT4-fs (sda): ext4_writepages: jbd2_start: 9223372036854775807 pages, ino 16025; err -12 13:44:52 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 4) 13:44:52 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x10000000, 0x4) 13:44:52 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 6) 13:44:52 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:44:52 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(0x0, 0x0, 0xb) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r0, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 651.550101] FAULT_INJECTION: forcing a failure. [ 651.550101] name failslab, interval 1, probability 0, space 0, times 0 [ 651.552853] CPU: 1 PID: 5720 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 651.554624] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 651.556762] Call Trace: [ 651.557377] dump_stack+0x107/0x167 [ 651.558281] should_fail.cold+0x5/0xa [ 651.559352] ? io_uring_setup+0x40b/0x2980 [ 651.560440] should_failslab+0x5/0x20 [ 651.561341] kmem_cache_alloc_trace+0x55/0x320 [ 651.562493] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 651.563689] io_uring_setup+0x40b/0x2980 [ 651.564898] ? __mutex_unlock_slowpath+0xe1/0x600 [ 651.566118] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 651.567301] ? wait_for_completion_io+0x270/0x270 [ 651.568517] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 651.569914] ? syscall_enter_from_user_mode+0x1d/0x50 [ 651.571162] do_syscall_64+0x33/0x40 [ 651.572001] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 651.573318] RIP: 0033:0x7f084f4a7b19 [ 651.574388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 651.578897] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 651.580680] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 651.582404] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 651.584011] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 651.585994] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 651.587734] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 651.621907] FAULT_INJECTION: forcing a failure. [ 651.621907] name failslab, interval 1, probability 0, space 0, times 0 [ 651.625285] CPU: 1 PID: 5719 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 651.627054] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 651.629047] Call Trace: [ 651.629796] dump_stack+0x107/0x167 [ 651.630799] should_fail.cold+0x5/0xa [ 651.631767] ? create_object.isra.0+0x3a/0xa30 [ 651.632801] should_failslab+0x5/0x20 [ 651.633648] kmem_cache_alloc+0x5b/0x310 [ 651.634680] ? _raw_spin_unlock_irq+0x1f/0x30 [ 651.635945] create_object.isra.0+0x3a/0xa30 [ 651.637044] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 651.638345] kmem_cache_alloc+0x159/0x310 [ 651.639499] ext4_init_io_end+0x23/0x180 [ 651.640422] ext4_writepages+0x8ec/0x3350 [ 651.641346] ? ext4_fallocate+0x8be/0x3850 [ 651.642407] ? vfs_fallocate+0x48f/0xda0 [ 651.643313] ? __x64_sys_fallocate+0xcf/0x140 [ 651.644319] ? do_syscall_64+0x33/0x40 [ 651.645184] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 651.646375] ? lock_chain_count+0x20/0x20 [ 651.647323] ? mark_held_locks+0x9e/0xe0 [ 651.648229] ? __ext4_mark_inode_dirty+0x770/0x770 [ 651.649326] ? register_lock_class+0xbb/0x17b0 [ 651.650341] ? kmem_cache_free+0xa7/0x2d0 [ 651.651272] ? slab_free_freelist_hook+0xa9/0x180 [ 651.652352] ? jbd2_journal_stop+0x61f/0xdc0 [ 651.653336] ? __lock_acquire+0x1657/0x5b00 [ 651.654317] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 651.655482] ? __ext4_mark_inode_dirty+0x770/0x770 [ 651.656573] do_writepages+0xee/0x2a0 [ 651.657423] ? page_writeback_cpu_online+0x20/0x20 [ 651.658514] ? lock_acquire+0x197/0x470 [ 651.659394] ? ext4_fallocate+0x21ac/0x3850 [ 651.660367] ? lock_release+0x680/0x680 [ 651.661261] __filemap_fdatawrite_range+0x24b/0x2f0 [ 651.662370] ? delete_from_page_cache_batch+0xa30/0xa30 [ 651.663559] ? down_write+0xe0/0x160 [ 651.664393] ? down_write_killable+0x180/0x180 [ 651.665420] filemap_write_and_wait_range+0x65/0x100 [ 651.666547] ext4_fallocate+0x220f/0x3850 [ 651.667466] ? __x64_sys_fallocate+0xcf/0x140 [ 651.668489] ? ext4_ext_truncate+0x250/0x250 [ 651.669467] ? selinux_file_permission+0x92/0x520 [ 651.670547] ? ext4_ext_truncate+0x250/0x250 [ 651.671525] vfs_fallocate+0x48f/0xda0 [ 651.672411] __x64_sys_fallocate+0xcf/0x140 [ 651.673377] do_syscall_64+0x33/0x40 [ 651.674210] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 651.675349] RIP: 0033:0x7f518f061b19 [ 651.676176] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 651.680273] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 651.681965] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 651.683554] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 651.685144] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 651.686726] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 651.688320] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 13:44:52 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:45:05 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 7) 13:45:05 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_POWER_SAVE(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, 0x0, 0x523, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x3}, @NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x8004) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001e00)=ANY=[@ANYBLOB="180000001d00210c000000000000000003ffee00040012"], 0x18}}, 0x0) 13:45:05 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 5) 13:45:05 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:45:05 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 10) 13:45:05 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0xc9830400, 0x4) 13:45:05 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 7) 13:45:05 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 664.726477] FAULT_INJECTION: forcing a failure. [ 664.726477] name failslab, interval 1, probability 0, space 0, times 0 [ 664.727876] CPU: 1 PID: 5745 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 664.728681] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 664.729642] Call Trace: [ 664.729957] dump_stack+0x107/0x167 [ 664.730398] should_fail.cold+0x5/0xa [ 664.730859] ? jbd2__journal_start+0x190/0x7e0 [ 664.731398] should_failslab+0x5/0x20 [ 664.731504] FAULT_INJECTION: forcing a failure. [ 664.731504] name failslab, interval 1, probability 0, space 0, times 0 [ 664.731843] kmem_cache_alloc+0x5b/0x310 [ 664.731861] jbd2__journal_start+0x190/0x7e0 [ 664.735200] __ext4_journal_start_sb+0x214/0x390 [ 664.735758] ext4_writepages+0x102d/0x3350 [ 664.736254] ? ext4_fallocate+0x8be/0x3850 [ 664.736761] ? vfs_fallocate+0x48f/0xda0 [ 664.737236] ? __x64_sys_fallocate+0xcf/0x140 [ 664.737757] ? do_syscall_64+0x33/0x40 [ 664.738218] ? lock_chain_count+0x20/0x20 [ 664.738712] ? mark_held_locks+0x9e/0xe0 [ 664.739190] ? __ext4_mark_inode_dirty+0x770/0x770 [ 664.739760] ? register_lock_class+0xbb/0x17b0 [ 664.740298] ? kmem_cache_free+0xa7/0x2d0 [ 664.740800] ? slab_free_freelist_hook+0xa9/0x180 [ 664.741374] ? jbd2_journal_stop+0x61f/0xdc0 [ 664.741896] ? __lock_acquire+0x1657/0x5b00 [ 664.742414] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 664.743072] ? __ext4_mark_inode_dirty+0x770/0x770 [ 664.743642] do_writepages+0xee/0x2a0 [ 664.744097] ? page_writeback_cpu_online+0x20/0x20 [ 664.744683] ? lock_acquire+0x197/0x470 [ 664.745143] ? ext4_fallocate+0x21ac/0x3850 [ 664.745648] ? lock_release+0x680/0x680 [ 664.746122] __filemap_fdatawrite_range+0x24b/0x2f0 [ 664.746699] ? igrab+0xc0/0xc0 [ 664.747072] ? delete_from_page_cache_batch+0xa30/0xa30 [ 664.747696] ? down_write+0xe0/0x160 [ 664.748129] ? down_write_killable+0x180/0x180 [ 664.748681] filemap_write_and_wait_range+0x65/0x100 [ 664.749282] ext4_fallocate+0x220f/0x3850 [ 664.749762] ? __x64_sys_fallocate+0xcf/0x140 [ 664.750297] ? ext4_ext_truncate+0x250/0x250 [ 664.750807] ? selinux_file_permission+0x92/0x520 [ 664.751369] ? ext4_ext_truncate+0x250/0x250 [ 664.751876] vfs_fallocate+0x48f/0xda0 [ 664.752335] __x64_sys_fallocate+0xcf/0x140 [ 664.752849] do_syscall_64+0x33/0x40 [ 664.753285] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 664.753878] RIP: 0033:0x7f3b30543b19 [ 664.754313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 664.756444] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 664.757336] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 664.758162] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 664.758978] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 664.759804] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 664.760643] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 [ 664.761499] CPU: 0 PID: 5746 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 664.761686] EXT4-fs (sda): ext4_writepages: jbd2_start: 9223372036854775807 pages, ino 16009; err -12 [ 664.762960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 664.762966] Call Trace: [ 664.762993] dump_stack+0x107/0x167 [ 664.763016] should_fail.cold+0x5/0xa [ 664.763041] ? ext4_init_io_end+0x23/0x180 [ 664.768832] should_failslab+0x5/0x20 [ 664.769649] kmem_cache_alloc+0x5b/0x310 [ 664.770517] ext4_init_io_end+0x23/0x180 [ 664.771370] ext4_writepages+0xee9/0x3350 [ 664.772258] ? ext4_fallocate+0x8be/0x3850 [ 664.773158] ? vfs_fallocate+0x48f/0xda0 [ 664.774022] ? __x64_sys_fallocate+0xcf/0x140 [ 664.774967] ? do_syscall_64+0x33/0x40 [ 664.775794] ? lock_chain_count+0x20/0x20 [ 664.776709] ? mark_held_locks+0x9e/0xe0 [ 664.777565] ? __ext4_mark_inode_dirty+0x770/0x770 [ 664.778606] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 664.779719] ? quarantine_put+0x8b/0x1a0 [ 664.780586] ? trace_hardirqs_on+0x5b/0x180 [ 664.781507] ? kmem_cache_free+0xa7/0x2d0 [ 664.782415] ? slab_free_freelist_hook+0xa9/0x180 13:45:05 executing program 4: r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffbfffffffff, 0xffffffffffffffff, 0x0) sendmsg$ETHTOOL_MSG_EEE_GET(0xffffffffffffffff, &(0x7f0000001800)={&(0x7f0000000200), 0xc, &(0x7f00000017c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES32, @ANYBLOB="47b894f90ba1024923ce7053b9b4ffe5db34a4b2b7353135db0f2b2cbce46aaa25a86783af2aa828d3f2205912fab50e8be5c71d481ae64880e0e495786e6c48ff5b8b0995dd45575cf64502ff652387161770965941a42d024257e1aa42011e9d4b38157dacb70ec1f355b1199bc6520c683b710662cebfd26a9bede2528576c985d7d64d8aa189c73a3ba109cdbb6c1245851597d8f9543a249d0600cbf255605bc852bc97b91f72d0a11795b94f5ef3c483f20997041729e57a7e1a7096412b76f61e9f0460d2999b20a3eb055401d470df5a2d714d910d83a29cee0ae3e8b6"], 0x34}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) r1 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x105142, 0x40) r2 = openat(r1, &(0x7f0000000000)='/proc/self/exe\x00', 0x591f00, 0x89) socket$inet6_tcp(0xa, 0x1, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x400) setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x16, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x54000, 0x20) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000140)=0x8001, 0x1d87) copy_file_range(r2, 0x0, r1, 0x0, 0x10001, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(r2, 0x2402, 0xfff) r3 = accept(r0, 0x0, 0x0) r4 = accept4$packet(r2, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000080)=0x14, 0x800) r5 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/attr/keycreate\x00', 0x2, 0x0) close_range(r4, r5, 0x2) sendfile(0xffffffffffffffff, r3, &(0x7f00000001c0)=0x88, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) sendfile(r1, r6, 0x0, 0x20d315) [ 664.783434] ? jbd2_journal_stop+0x61f/0xdc0 [ 664.784506] ? __lock_acquire+0x1657/0x5b00 [ 664.785445] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 664.786541] ? __ext4_mark_inode_dirty+0x770/0x770 [ 664.787581] do_writepages+0xee/0x2a0 [ 664.788385] ? page_writeback_cpu_online+0x20/0x20 [ 664.789424] ? lock_acquire+0x197/0x470 [ 664.790252] ? ext4_fallocate+0x21ac/0x3850 [ 664.791165] ? lock_release+0x680/0x680 [ 664.792011] __filemap_fdatawrite_range+0x24b/0x2f0 [ 664.793063] ? igrab+0xc0/0xc0 [ 664.793750] ? delete_from_page_cache_batch+0xa30/0xa30 [ 664.794898] ? down_write+0xe0/0x160 [ 664.795694] ? down_write_killable+0x180/0x180 [ 664.796669] filemap_write_and_wait_range+0x65/0x100 [ 664.797745] ext4_fallocate+0x220f/0x3850 [ 664.798619] ? __x64_sys_fallocate+0xcf/0x140 [ 664.799603] ? ext4_ext_truncate+0x250/0x250 [ 664.800544] ? selinux_file_permission+0x92/0x520 [ 664.801572] ? ext4_ext_truncate+0x250/0x250 [ 664.802495] vfs_fallocate+0x48f/0xda0 [ 664.803333] __x64_sys_fallocate+0xcf/0x140 [ 664.804242] do_syscall_64+0x33/0x40 [ 664.805031] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 664.806112] RIP: 0033:0x7f518f061b19 [ 664.806895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 664.810812] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 664.812423] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 664.813929] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 664.815441] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 664.816965] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 664.818506] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 [ 664.840781] FAULT_INJECTION: forcing a failure. [ 664.840781] name failslab, interval 1, probability 0, space 0, times 0 [ 664.843561] CPU: 0 PID: 5755 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 664.845016] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 664.846742] Call Trace: [ 664.847296] dump_stack+0x107/0x167 [ 664.848076] should_fail.cold+0x5/0xa [ 664.848890] ? create_object.isra.0+0x3a/0xa30 [ 664.849860] should_failslab+0x5/0x20 [ 664.850671] kmem_cache_alloc+0x5b/0x310 [ 664.851522] ? mark_held_locks+0x9e/0xe0 [ 664.852383] create_object.isra.0+0x3a/0xa30 [ 664.853314] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 664.854408] kmem_cache_alloc+0x159/0x310 [ 664.855482] jbd2__journal_start+0x246/0x7e0 [ 664.856436] __ext4_journal_start_sb+0x214/0x390 [ 664.857454] ext4_writepages+0x102d/0x3350 [ 664.858347] ? ext4_fallocate+0x8be/0x3850 [ 664.859236] ? vfs_fallocate+0x48f/0xda0 [ 664.860097] ? __x64_sys_fallocate+0xcf/0x140 [ 664.861052] ? do_syscall_64+0x33/0x40 [ 664.861880] ? lock_chain_count+0x20/0x20 [ 664.862781] ? mark_held_locks+0x9e/0xe0 [ 664.863642] ? __ext4_mark_inode_dirty+0x770/0x770 [ 664.864687] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 664.865792] ? quarantine_put+0x8b/0x1a0 [ 664.866644] ? trace_hardirqs_on+0x5b/0x180 [ 664.867560] ? kmem_cache_free+0xa7/0x2d0 [ 664.868455] ? slab_free_freelist_hook+0xa9/0x180 [ 664.869482] ? jbd2_journal_stop+0x61f/0xdc0 [ 664.870426] ? __lock_acquire+0x1657/0x5b00 [ 664.871362] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 664.872478] ? __ext4_mark_inode_dirty+0x770/0x770 [ 664.873512] do_writepages+0xee/0x2a0 [ 664.874318] ? page_writeback_cpu_online+0x20/0x20 [ 664.875359] ? lock_acquire+0x197/0x470 [ 664.876193] ? ext4_fallocate+0x21ac/0x3850 [ 664.877121] ? lock_release+0x680/0x680 [ 664.877965] __filemap_fdatawrite_range+0x24b/0x2f0 [ 664.879021] ? igrab+0xc0/0xc0 [ 664.879704] ? delete_from_page_cache_batch+0xa30/0xa30 [ 664.880856] ? down_write+0xe0/0x160 [ 664.881640] ? down_write_killable+0x180/0x180 [ 664.882608] filemap_write_and_wait_range+0x65/0x100 [ 664.883676] ext4_fallocate+0x220f/0x3850 [ 664.884553] ? __x64_sys_fallocate+0xcf/0x140 [ 664.885518] ? ext4_ext_truncate+0x250/0x250 [ 664.886449] ? selinux_file_permission+0x92/0x520 [ 664.887471] ? ext4_ext_truncate+0x250/0x250 [ 664.888415] vfs_fallocate+0x48f/0xda0 [ 664.889266] __x64_sys_fallocate+0xcf/0x140 [ 664.890180] do_syscall_64+0x33/0x40 [ 664.890968] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 664.892070] RIP: 0033:0x7fb365247b19 [ 664.892874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 664.896782] RSP: 002b:00007fb3627bd188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 664.898398] RAX: ffffffffffffffda RBX: 00007fb36535af60 RCX: 00007fb365247b19 [ 664.899909] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 664.901425] RBP: 00007fb3627bd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 664.902936] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 664.904454] R13: 00007fff2047289f R14: 00007fb3627bd300 R15: 0000000000022000 [ 664.913226] FAULT_INJECTION: forcing a failure. [ 664.913226] name failslab, interval 1, probability 0, space 0, times 0 [ 664.915705] CPU: 0 PID: 5754 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 664.917170] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 664.918932] Call Trace: [ 664.919499] dump_stack+0x107/0x167 [ 664.920288] should_fail.cold+0x5/0xa [ 664.921120] ? create_object.isra.0+0x3a/0xa30 [ 664.922100] should_failslab+0x5/0x20 [ 664.922908] kmem_cache_alloc+0x5b/0x310 [ 664.923786] create_object.isra.0+0x3a/0xa30 [ 664.924731] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 13:45:05 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 664.925826] kmem_cache_alloc_trace+0x151/0x320 [ 664.927014] io_uring_setup+0x40b/0x2980 [ 664.927862] ? __mutex_unlock_slowpath+0xe1/0x600 [ 664.928934] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 664.929990] ? wait_for_completion_io+0x270/0x270 [ 664.931064] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 664.932175] ? syscall_enter_from_user_mode+0x1d/0x50 [ 664.933301] do_syscall_64+0x33/0x40 [ 664.934127] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 664.935398] RIP: 0033:0x7f084f4a7b19 [ 664.936197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 664.940089] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 664.941726] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 664.943393] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 664.945268] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 664.947142] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 664.949046] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:45:05 executing program 4: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x4, 0x6f}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)=0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) r3 = syz_io_uring_setup(0x1aa, &(0x7f00000002c0)={0x0, 0x3}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000180)) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r2, 0x0, &(0x7f0000001d00)="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", 0x1000, 0x0, 0x1, {0x0, r4}}, 0x4c) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x5, 0x2004, @fd=r5, 0x869f13b, 0x0, 0x0, 0x4, 0x0, {0x3}}, 0x0) r6 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x220c, &(0x7f00000003c0)={0x0, 0xe4a3, 0x0, 0x0, 0xfffffbff, 0x0, r6}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ff4000/0x1000)=nil, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)) pipe2(&(0x7f0000000180), 0x0) syz_open_procfs(0x0, &(0x7f0000000040)='timerslack_ns\x00') io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_io_uring_setup(0x0, 0x0, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ff1000/0x4000)=nil, 0x0, 0x0) 13:45:05 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 8) 13:45:05 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 6) 13:45:05 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 11) [ 665.080382] FAULT_INJECTION: forcing a failure. [ 665.080382] name failslab, interval 1, probability 0, space 0, times 0 [ 665.083452] CPU: 0 PID: 5768 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 665.084869] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 665.086570] Call Trace: [ 665.087113] dump_stack+0x107/0x167 [ 665.087862] should_fail.cold+0x5/0xa [ 665.088646] ? create_object.isra.0+0x3a/0xa30 [ 665.089579] should_failslab+0x5/0x20 [ 665.090397] kmem_cache_alloc+0x5b/0x310 [ 665.091229] create_object.isra.0+0x3a/0xa30 [ 665.092119] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 665.093174] kmem_cache_alloc+0x159/0x310 [ 665.094027] jbd2__journal_start+0x190/0x7e0 [ 665.094929] __ext4_journal_start_sb+0x214/0x390 [ 665.095901] ext4_writepages+0x102d/0x3350 [ 665.096819] ? event_sched_in+0x5b1/0xaa0 [ 665.097706] ? perf_pmu_nop_int+0x5/0x10 [ 665.098551] ? merge_sched_in+0x142/0xfb0 [ 665.099420] ? __lock_acquire+0x1657/0x5b00 [ 665.100305] ? __ext4_mark_inode_dirty+0x770/0x770 [ 665.101310] ? register_lock_class+0xbb/0x17b0 [ 665.102257] ? mark_lock+0xf5/0x2df0 [ 665.103059] ? lock_chain_count+0x20/0x20 [ 665.103956] ? __lock_acquire+0x1657/0x5b00 [ 665.104921] ? __ext4_mark_inode_dirty+0x770/0x770 [ 665.105940] do_writepages+0xee/0x2a0 [ 665.106719] ? page_writeback_cpu_online+0x20/0x20 [ 665.107749] __filemap_fdatawrite_range+0x24b/0x2f0 [ 665.108810] ? igrab+0xc0/0xc0 [ 665.109470] ? delete_from_page_cache_batch+0xa30/0xa30 [ 665.110601] ? down_write+0xe0/0x160 [ 665.111370] ? down_write_killable+0x180/0x180 [ 665.112350] filemap_write_and_wait_range+0x65/0x100 [ 665.113448] ext4_fallocate+0x220f/0x3850 [ 665.113463] FAULT_INJECTION: forcing a failure. [ 665.113463] name failslab, interval 1, probability 0, space 0, times 0 [ 665.114330] ? __x64_sys_fallocate+0xcf/0x140 [ 665.114362] ? ext4_ext_truncate+0x250/0x250 [ 665.114389] ? selinux_file_permission+0x92/0x520 [ 665.114414] ? ext4_ext_truncate+0x250/0x250 [ 665.119556] vfs_fallocate+0x48f/0xda0 [ 665.120368] __x64_sys_fallocate+0xcf/0x140 [ 665.121268] do_syscall_64+0x33/0x40 [ 665.122045] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 665.123110] RIP: 0033:0x7f3b30543b19 [ 665.123894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 665.127725] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 665.129327] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 665.130811] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 665.132303] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 665.133792] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 665.135287] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 [ 665.136797] CPU: 1 PID: 5773 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 665.137640] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 665.138613] Call Trace: [ 665.138931] dump_stack+0x107/0x167 [ 665.139365] should_fail.cold+0x5/0xa [ 665.139824] ? ext4_alloc_io_end_vec+0x1f/0x120 [ 665.140374] should_failslab+0x5/0x20 [ 665.140839] kmem_cache_alloc+0x5b/0x310 [ 665.141319] ext4_alloc_io_end_vec+0x1f/0x120 [ 665.141841] ext4_writepages+0x17a5/0x3350 [ 665.142318] ? vfs_fallocate+0x48f/0xda0 [ 665.142802] ? __x64_sys_fallocate+0xcf/0x140 [ 665.143306] ? do_syscall_64+0x33/0x40 [ 665.143771] ? lock_chain_count+0x20/0x20 [ 665.144250] ? mark_held_locks+0x9e/0xe0 [ 665.144743] ? __ext4_mark_inode_dirty+0x770/0x770 [ 665.145318] ? register_lock_class+0xbb/0x17b0 [ 665.145831] ? kmem_cache_free+0xa7/0x2d0 [ 665.146328] ? slab_free_freelist_hook+0xa9/0x180 [ 665.146865] ? jbd2_journal_stop+0x61f/0xdc0 [ 665.147351] ? __lock_acquire+0x1657/0x5b00 [ 665.147838] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 665.148469] ? __ext4_mark_inode_dirty+0x770/0x770 [ 665.149008] do_writepages+0xee/0x2a0 [ 665.149462] ? page_writeback_cpu_online+0x20/0x20 [ 665.150017] ? lock_acquire+0x197/0x470 [ 665.150495] ? ext4_fallocate+0x21ac/0x3850 [ 665.150985] ? lock_release+0x680/0x680 [ 665.151460] __filemap_fdatawrite_range+0x24b/0x2f0 [ 665.152015] ? igrab+0xc0/0xc0 [ 665.152397] ? delete_from_page_cache_batch+0xa30/0xa30 [ 665.153006] ? down_write+0xe0/0x160 [ 665.153445] ? down_write_killable+0x180/0x180 [ 665.153960] filemap_write_and_wait_range+0x65/0x100 [ 665.154560] ext4_fallocate+0x220f/0x3850 [ 665.155020] ? __x64_sys_fallocate+0xcf/0x140 [ 665.155565] ? ext4_ext_truncate+0x250/0x250 [ 665.156062] ? selinux_file_permission+0x92/0x520 [ 665.156648] ? ext4_ext_truncate+0x250/0x250 [ 665.157136] vfs_fallocate+0x48f/0xda0 [ 665.157602] __x64_sys_fallocate+0xcf/0x140 [ 665.158084] do_syscall_64+0x33/0x40 [ 665.158523] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 665.159096] RIP: 0033:0x7fb365247b19 [ 665.159569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 665.161600] RSP: 002b:00007fb3627bd188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 665.162500] RAX: ffffffffffffffda RBX: 00007fb36535af60 RCX: 00007fb365247b19 [ 665.163354] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 665.164217] RBP: 00007fb3627bd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 665.165066] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 665.165901] R13: 00007fff2047289f R14: 00007fb3627bd300 R15: 0000000000022000 [ 665.169785] FAULT_INJECTION: forcing a failure. [ 665.169785] name failslab, interval 1, probability 0, space 0, times 0 [ 665.171149] CPU: 1 PID: 5774 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 665.171959] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 665.172952] Call Trace: [ 665.173270] dump_stack+0x107/0x167 [ 665.173705] should_fail.cold+0x5/0xa [ 665.174173] ? ext4_init_io_end+0x23/0x180 [ 665.174671] should_failslab+0x5/0x20 [ 665.175267] kmem_cache_alloc+0x5b/0x310 [ 665.175951] ext4_init_io_end+0x23/0x180 [ 665.176468] ext4_writepages+0xee9/0x3350 [ 665.176963] ? ext4_fallocate+0x8be/0x3850 [ 665.177456] ? vfs_fallocate+0x48f/0xda0 [ 665.177962] ? __x64_sys_fallocate+0xcf/0x140 [ 665.178510] ? do_syscall_64+0x33/0x40 [ 665.178993] ? lock_chain_count+0x20/0x20 [ 665.179515] ? mark_held_locks+0x9e/0xe0 [ 665.179998] ? __ext4_mark_inode_dirty+0x770/0x770 [ 665.180587] ? register_lock_class+0xbb/0x17b0 [ 665.181143] ? kmem_cache_free+0xa7/0x2d0 [ 665.181706] ? slab_free_freelist_hook+0xa9/0x180 [ 665.182391] ? jbd2_journal_stop+0x61f/0xdc0 [ 665.182907] ? __lock_acquire+0x1657/0x5b00 [ 665.183430] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 665.184059] ? __ext4_mark_inode_dirty+0x770/0x770 [ 665.184660] do_writepages+0xee/0x2a0 [ 665.185121] ? page_writeback_cpu_online+0x20/0x20 [ 665.185717] ? lock_acquire+0x197/0x470 [ 665.186186] ? ext4_fallocate+0x21ac/0x3850 [ 665.186708] ? lock_release+0x680/0x680 [ 665.187216] __filemap_fdatawrite_range+0x24b/0x2f0 [ 665.187810] ? igrab+0xc0/0xc0 [ 665.188218] ? delete_from_page_cache_batch+0xa30/0xa30 [ 665.188858] ? down_write+0xe0/0x160 [ 665.189322] ? down_write_killable+0x180/0x180 [ 665.189863] filemap_write_and_wait_range+0x65/0x100 [ 665.190461] ext4_fallocate+0x220f/0x3850 [ 665.190946] ? __x64_sys_fallocate+0xcf/0x140 [ 665.191500] ? ext4_ext_truncate+0x250/0x250 [ 665.192020] ? selinux_file_permission+0x92/0x520 [ 665.192613] ? ext4_ext_truncate+0x250/0x250 [ 665.193140] vfs_fallocate+0x48f/0xda0 [ 665.193628] __x64_sys_fallocate+0xcf/0x140 [ 665.194182] do_syscall_64+0x33/0x40 [ 665.194628] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 665.195232] RIP: 0033:0x7f518f061b19 [ 665.195682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 665.197876] RSP: 002b:00007f518c5b6188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 665.198767] RAX: ffffffffffffffda RBX: 00007f518f175020 RCX: 00007f518f061b19 [ 665.199608] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 665.200457] RBP: 00007f518c5b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 665.201309] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 665.202154] R13: 00007ffdb3f5d5af R14: 00007f518c5b6300 R15: 0000000000022000 13:45:17 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 8) 13:45:17 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0xfeffffff, 0x4) 13:45:17 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:45:17 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 676.804538] FAULT_INJECTION: forcing a failure. [ 676.804538] name failslab, interval 1, probability 0, space 0, times 0 [ 676.806210] CPU: 0 PID: 5790 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 676.807160] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 676.808323] Call Trace: [ 676.808716] dump_stack+0x107/0x167 [ 676.809228] should_fail.cold+0x5/0xa [ 676.809764] ? jbd2__journal_start+0x246/0x7e0 [ 676.810407] should_failslab+0x5/0x20 [ 676.810942] kmem_cache_alloc+0x5b/0x310 [ 676.811512] jbd2__journal_start+0x246/0x7e0 [ 676.812130] __ext4_journal_start_sb+0x214/0x390 [ 676.812802] ext4_writepages+0x102d/0x3350 [ 676.813391] ? ext4_fallocate+0x8be/0x3850 [ 676.813977] ? vfs_fallocate+0x48f/0xda0 [ 676.814533] ? __x64_sys_fallocate+0xcf/0x140 [ 676.815161] ? do_syscall_64+0x33/0x40 [ 676.815710] ? lock_chain_count+0x20/0x20 [ 676.816301] ? mark_held_locks+0x9e/0xe0 [ 676.816868] ? __ext4_mark_inode_dirty+0x770/0x770 [ 676.817560] ? register_lock_class+0xbb/0x17b0 [ 676.818223] ? kmem_cache_free+0xa7/0x2d0 [ 676.818827] ? slab_free_freelist_hook+0xa9/0x180 [ 676.819520] ? jbd2_journal_stop+0x61f/0xdc0 [ 676.820168] ? __lock_acquire+0x1657/0x5b00 [ 676.820825] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 676.821594] ? __ext4_mark_inode_dirty+0x770/0x770 [ 676.822308] do_writepages+0xee/0x2a0 13:45:17 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r0 = syz_io_uring_setup(0x5c0b, &(0x7f0000000200), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB="2c7766649358a2b2ca9199ee605e4dfba7bbbc676e6f3d", @ANYRESHEX=r0, @ANYBLOB]) 13:45:17 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 9) 13:45:17 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 7) 13:45:17 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 12) [ 676.822864] ? page_writeback_cpu_online+0x20/0x20 [ 676.823749] ? lock_acquire+0x197/0x470 [ 676.824310] ? ext4_fallocate+0x21ac/0x3850 [ 676.824917] ? lock_release+0x680/0x680 [ 676.825496] __filemap_fdatawrite_range+0x24b/0x2f0 [ 676.826188] ? igrab+0xc0/0xc0 [ 676.826660] ? delete_from_page_cache_batch+0xa30/0xa30 [ 676.827421] ? down_write+0xe0/0x160 [ 676.827949] ? down_write_killable+0x180/0x180 [ 676.828620] filemap_write_and_wait_range+0x65/0x100 [ 676.829347] ext4_fallocate+0x220f/0x3850 [ 676.829944] ? __x64_sys_fallocate+0xcf/0x140 [ 676.830584] ? ext4_ext_truncate+0x250/0x250 [ 676.831227] ? selinux_file_permission+0x92/0x520 [ 676.831909] ? ext4_ext_truncate+0x250/0x250 [ 676.832543] vfs_fallocate+0x48f/0xda0 [ 676.833557] __x64_sys_fallocate+0xcf/0x140 [ 676.834631] do_syscall_64+0x33/0x40 [ 676.835553] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 676.836848] RIP: 0033:0x7f3b30543b19 [ 676.837762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 676.841882] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 676.843567] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 676.845165] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 676.846761] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 676.848352] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 676.849956] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 [ 676.852308] EXT4-fs (sda): ext4_writepages: jbd2_start: 9223372036854775807 pages, ino 16019; err -12 [ 676.857902] FAULT_INJECTION: forcing a failure. [ 676.857902] name failslab, interval 1, probability 0, space 0, times 0 [ 676.860438] CPU: 0 PID: 5787 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 676.861910] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 676.863705] Call Trace: [ 676.864276] dump_stack+0x107/0x167 [ 676.865044] should_fail.cold+0x5/0xa [ 676.865860] ? create_object.isra.0+0x3a/0xa30 [ 676.866857] should_failslab+0x5/0x20 [ 676.867712] kmem_cache_alloc+0x5b/0x310 [ 676.868623] create_object.isra.0+0x3a/0xa30 [ 676.869565] kmemleak_alloc_percpu+0xa0/0x100 [ 676.870539] pcpu_alloc+0x4e2/0x1240 [ 676.871372] ? io_tctx_exit_cb+0xf0/0xf0 [ 676.872228] percpu_ref_init+0x31/0x3d0 [ 676.873128] io_uring_setup+0x47a/0x2980 [ 676.874029] ? __mutex_unlock_slowpath+0xe1/0x600 [ 676.875072] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 676.876195] ? wait_for_completion_io+0x270/0x270 [ 676.877309] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 676.878495] ? syscall_enter_from_user_mode+0x1d/0x50 [ 676.879654] do_syscall_64+0x33/0x40 [ 676.880443] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 676.881574] RIP: 0033:0x7f084f4a7b19 [ 676.882399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 676.886377] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 676.888045] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 676.889623] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 676.891235] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 676.892823] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 676.894375] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 676.900191] FAULT_INJECTION: forcing a failure. [ 676.900191] name failslab, interval 1, probability 0, space 0, times 0 [ 676.902411] CPU: 1 PID: 5796 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 676.903585] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 676.905004] Call Trace: [ 676.905459] dump_stack+0x107/0x167 [ 676.906077] should_fail.cold+0x5/0xa [ 676.906732] ? create_object.isra.0+0x3a/0xa30 [ 676.907508] should_failslab+0x5/0x20 [ 676.908148] kmem_cache_alloc+0x5b/0x310 [ 676.908850] create_object.isra.0+0x3a/0xa30 [ 676.909600] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 676.910463] kmem_cache_alloc+0x159/0x310 [ 676.911178] ext4_alloc_io_end_vec+0x1f/0x120 [ 676.911939] ext4_writepages+0x17a5/0x3350 [ 676.912673] ? vfs_fallocate+0x48f/0xda0 [ 676.913366] ? __x64_sys_fallocate+0xcf/0x140 [ 676.914137] ? do_syscall_64+0x33/0x40 [ 676.914806] ? lock_chain_count+0x20/0x20 [ 676.915533] ? mark_held_locks+0x9e/0xe0 [ 676.916216] ? __ext4_mark_inode_dirty+0x770/0x770 [ 676.917053] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 676.917941] ? quarantine_put+0x8b/0x1a0 [ 676.918624] ? trace_hardirqs_on+0x5b/0x180 [ 676.919350] ? kmem_cache_free+0xa7/0x2d0 [ 676.920047] ? slab_free_freelist_hook+0xa9/0x180 [ 676.920891] ? jbd2_journal_stop+0x61f/0xdc0 [ 676.921642] ? __lock_acquire+0x1657/0x5b00 [ 676.922390] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 676.923282] ? __ext4_mark_inode_dirty+0x770/0x770 [ 676.924115] do_writepages+0xee/0x2a0 [ 676.924775] ? page_writeback_cpu_online+0x20/0x20 [ 676.925601] ? lock_acquire+0x197/0x470 [ 676.926272] ? ext4_fallocate+0x21ac/0x3850 [ 676.926984] ? lock_release+0x680/0x680 [ 676.927659] __filemap_fdatawrite_range+0x24b/0x2f0 [ 676.928504] ? igrab+0xc0/0xc0 [ 676.929065] ? delete_from_page_cache_batch+0xa30/0xa30 [ 676.929965] ? down_write+0xe0/0x160 [ 676.930597] ? down_write_killable+0x180/0x180 [ 676.931387] filemap_write_and_wait_range+0x65/0x100 [ 676.932252] ext4_fallocate+0x220f/0x3850 [ 676.932957] ? __x64_sys_fallocate+0xcf/0x140 [ 676.933723] ? ext4_ext_truncate+0x250/0x250 [ 676.934467] ? selinux_file_permission+0x92/0x520 [ 676.935289] ? ext4_ext_truncate+0x250/0x250 [ 676.936043] vfs_fallocate+0x48f/0xda0 [ 676.936735] __x64_sys_fallocate+0xcf/0x140 [ 676.937480] do_syscall_64+0x33/0x40 [ 676.938110] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 676.938992] RIP: 0033:0x7fb365247b19 [ 676.939627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 676.942757] RSP: 002b:00007fb36279c188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 676.944069] RAX: ffffffffffffffda RBX: 00007fb36535b020 RCX: 00007fb365247b19 [ 676.945278] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 676.946486] RBP: 00007fb36279c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 676.947696] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 676.948924] R13: 00007fff2047289f R14: 00007fb36279c300 R15: 0000000000022000 [ 676.952877] FAULT_INJECTION: forcing a failure. [ 676.952877] name failslab, interval 1, probability 0, space 0, times 0 [ 676.955049] CPU: 1 PID: 5792 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 676.956201] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 676.957630] Call Trace: [ 676.958087] dump_stack+0x107/0x167 [ 676.958702] should_fail.cold+0x5/0xa [ 676.959338] ? jbd2__journal_start+0x190/0x7e0 [ 676.960116] should_failslab+0x5/0x20 [ 676.960782] kmem_cache_alloc+0x5b/0x310 [ 676.961473] jbd2__journal_start+0x190/0x7e0 [ 676.962227] __ext4_journal_start_sb+0x214/0x390 [ 676.963039] ext4_writepages+0x102d/0x3350 [ 676.963760] ? ext4_fallocate+0x8be/0x3850 [ 676.964481] ? vfs_fallocate+0x48f/0xda0 [ 676.965171] ? __x64_sys_fallocate+0xcf/0x140 [ 676.965923] ? do_syscall_64+0x33/0x40 [ 676.966580] ? lock_chain_count+0x20/0x20 [ 676.967314] ? mark_held_locks+0x9e/0xe0 [ 676.968011] ? __ext4_mark_inode_dirty+0x770/0x770 [ 676.968854] ? register_lock_class+0xbb/0x17b0 [ 676.969623] ? kmem_cache_free+0xa7/0x2d0 [ 676.970339] ? slab_free_freelist_hook+0xa9/0x180 [ 676.971149] ? jbd2_journal_stop+0x61f/0xdc0 [ 676.971895] ? __lock_acquire+0x1657/0x5b00 [ 676.972654] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 676.973531] ? __ext4_mark_inode_dirty+0x770/0x770 [ 676.974353] do_writepages+0xee/0x2a0 [ 676.974995] ? page_writeback_cpu_online+0x20/0x20 [ 676.975829] ? lock_acquire+0x197/0x470 [ 676.976500] ? ext4_fallocate+0x21ac/0x3850 [ 676.977252] ? lock_release+0x680/0x680 [ 676.977936] __filemap_fdatawrite_range+0x24b/0x2f0 [ 676.978768] ? igrab+0xc0/0xc0 [ 676.979311] ? delete_from_page_cache_batch+0xa30/0xa30 [ 676.980210] ? down_write+0xe0/0x160 [ 676.980851] ? down_write_killable+0x180/0x180 [ 676.981652] filemap_write_and_wait_range+0x65/0x100 [ 676.982512] ext4_fallocate+0x220f/0x3850 [ 676.983222] ? __x64_sys_fallocate+0xcf/0x140 [ 676.984004] ? ext4_ext_truncate+0x250/0x250 [ 676.984783] ? selinux_file_permission+0x92/0x520 [ 676.985612] ? ext4_ext_truncate+0x250/0x250 [ 676.986372] vfs_fallocate+0x48f/0xda0 [ 676.987041] __x64_sys_fallocate+0xcf/0x140 [ 676.987783] do_syscall_64+0x33/0x40 [ 676.988410] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 676.989621] RIP: 0033:0x7f518f061b19 [ 676.990381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 676.993606] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 676.994915] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 676.996170] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 676.997418] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 676.998651] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 676.999923] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 [ 677.001474] EXT4-fs (sda): ext4_writepages: jbd2_start: 9223372036854775807 pages, ino 16024; err -12 13:45:17 executing program 4: ioctl$F2FS_IOC_RESIZE_FS(0xffffffffffffffff, 0x4008f510, &(0x7f0000000040)=0x2) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x19, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000dbf4655fdbf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e36383530363930383600"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000244b8e9b57f04b59aa229cc218853f95010040000c00000000000000dbf4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000dbf4655fdbf4655fdbf4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000dbf4655fdbf4655fdbf4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020dbf4655fdbf4655fdbf4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000dbf4655fdbf4655fdbf4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffdbf4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7033340075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x20000}, {&(0x7f0000012500)="0c0000000c0001022e000000020000000c0002022e2e00000d0000001000050166696c65300000000e000000d807050766696c653100"/64, 0x40, 0x28000}, {&(0x7f0000012600)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x30000}, {&(0x7f0000012b00)='syzkallers\x00'/32, 0x20, 0x38000}, {&(0x7f0000012c00)="000002ea0100000001000000270f240c000000000000000000000000000000000601f8070000000006000000779b539778617474723100000601f00700000000060000007498539778617474723200"/96, 0x60, 0x40000}, {&(0x7f0000012d00)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xattr2\x00\x00xattr1\x00\x00', 0x20, 0x407e0}, {&(0x7f0000012e00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x50000}], 0x0, &(0x7f0000012f00)) r0 = openat2(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x581200, 0x21, 0x4}, 0x18) statx(r0, &(0x7f0000000140)='./file0\x00', 0x4000, 0x40, &(0x7f0000000480)) 13:45:17 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 10) 13:45:17 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 9) [ 677.108885] FAULT_INJECTION: forcing a failure. [ 677.108885] name failslab, interval 1, probability 0, space 0, times 0 [ 677.111292] CPU: 0 PID: 5802 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 677.112743] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 677.114495] Call Trace: [ 677.115073] dump_stack+0x107/0x167 [ 677.115855] should_fail.cold+0x5/0xa [ 677.116665] ? create_object.isra.0+0x3a/0xa30 [ 677.117621] should_failslab+0x5/0x20 [ 677.118409] kmem_cache_alloc+0x5b/0x310 [ 677.119268] create_object.isra.0+0x3a/0xa30 [ 677.120197] kmemleak_alloc_percpu+0xa0/0x100 [ 677.121141] pcpu_alloc+0x4e2/0x1240 [ 677.121943] ? io_tctx_exit_cb+0xf0/0xf0 [ 677.122780] percpu_ref_init+0x31/0x3d0 [ 677.123610] io_uring_setup+0x47a/0x2980 [ 677.124448] ? __mutex_unlock_slowpath+0xe1/0x600 [ 677.125446] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 677.126485] ? wait_for_completion_io+0x270/0x270 [ 677.127516] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 677.128605] ? syscall_enter_from_user_mode+0x1d/0x50 [ 677.129665] do_syscall_64+0x33/0x40 [ 677.130426] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 677.131477] RIP: 0033:0x7f084f4a7b19 13:45:17 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 13) 13:45:17 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 8) [ 677.132234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 677.136162] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 677.137731] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 677.139188] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 677.140658] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 677.142127] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 677.143588] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 677.159240] loop4: detected capacity change from 0 to 1048576 [ 677.167853] FAULT_INJECTION: forcing a failure. [ 677.167853] name failslab, interval 1, probability 0, space 0, times 0 [ 677.170482] CPU: 0 PID: 5807 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 677.172030] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 677.173735] Call Trace: [ 677.174276] dump_stack+0x107/0x167 [ 677.175025] should_fail.cold+0x5/0xa [ 677.175805] ? create_object.isra.0+0x3a/0xa30 [ 677.176760] should_failslab+0x5/0x20 [ 677.177548] kmem_cache_alloc+0x5b/0x310 [ 677.178388] ? mark_held_locks+0x9e/0xe0 [ 677.179227] create_object.isra.0+0x3a/0xa30 [ 677.180124] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 677.181205] kmem_cache_alloc+0x159/0x310 [ 677.182062] jbd2__journal_start+0x246/0x7e0 [ 677.183003] __ext4_journal_start_sb+0x214/0x390 [ 677.183984] ext4_writepages+0x102d/0x3350 [ 677.184881] ? ext4_fallocate+0x8be/0x3850 [ 677.185744] ? vfs_fallocate+0x48f/0xda0 [ 677.186593] ? __x64_sys_fallocate+0xcf/0x140 [ 677.187499] ? do_syscall_64+0x33/0x40 [ 677.188293] ? lock_chain_count+0x20/0x20 [ 677.189173] ? mark_held_locks+0x9e/0xe0 [ 677.190002] ? __ext4_mark_inode_dirty+0x770/0x770 [ 677.190991] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 677.192048] ? quarantine_put+0x8b/0x1a0 [ 677.192878] ? trace_hardirqs_on+0x5b/0x180 [ 677.193753] ? kmem_cache_free+0xa7/0x2d0 [ 677.194604] ? slab_free_freelist_hook+0xa9/0x180 [ 677.195579] ? jbd2_journal_stop+0x61f/0xdc0 [ 677.196481] ? __lock_acquire+0x1657/0x5b00 [ 677.197377] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 677.198444] ? __ext4_mark_inode_dirty+0x770/0x770 [ 677.199434] do_writepages+0xee/0x2a0 [ 677.200213] ? page_writeback_cpu_online+0x20/0x20 [ 677.201223] ? lock_acquire+0x197/0x470 [ 677.202030] ? ext4_fallocate+0x21ac/0x3850 [ 677.202907] ? lock_release+0x680/0x680 [ 677.203720] __filemap_fdatawrite_range+0x24b/0x2f0 [ 677.204743] ? igrab+0xc0/0xc0 [ 677.205399] ? delete_from_page_cache_batch+0xa30/0xa30 [ 677.206483] ? down_write+0xe0/0x160 [ 677.207243] ? down_write_killable+0x180/0x180 [ 677.208208] filemap_write_and_wait_range+0x65/0x100 [ 677.209254] ext4_fallocate+0x220f/0x3850 [ 677.210095] ? __x64_sys_fallocate+0xcf/0x140 [ 677.211023] ? ext4_ext_truncate+0x250/0x250 [ 677.211912] ? selinux_file_permission+0x92/0x520 [ 677.212899] ? ext4_ext_truncate+0x250/0x250 [ 677.213797] vfs_fallocate+0x48f/0xda0 [ 677.214596] __x64_sys_fallocate+0xcf/0x140 [ 677.215475] do_syscall_64+0x33/0x40 [ 677.216258] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 677.217319] RIP: 0033:0x7f3b30543b19 [ 677.218082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 677.221816] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 677.223357] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 677.224818] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 677.226285] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 677.227731] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 677.229203] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 13:45:18 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:45:18 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:45:18 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 11) [ 677.326539] FAULT_INJECTION: forcing a failure. [ 677.326539] name failslab, interval 1, probability 0, space 0, times 0 [ 677.328902] CPU: 1 PID: 5814 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 677.330042] FAULT_INJECTION: forcing a failure. [ 677.330042] name failslab, interval 1, probability 0, space 0, times 0 [ 677.331746] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 677.331752] Call Trace: [ 677.331776] dump_stack+0x107/0x167 [ 677.331792] should_fail.cold+0x5/0xa [ 677.331809] ? jbd2__journal_start+0x190/0x7e0 [ 677.331823] should_failslab+0x5/0x20 [ 677.331837] kmem_cache_alloc+0x5b/0x310 [ 677.331857] jbd2__journal_start+0x190/0x7e0 [ 677.331876] __ext4_journal_start_sb+0x214/0x390 [ 677.331902] ext4_writepages+0x102d/0x3350 [ 677.331917] ? ext4_fallocate+0x8be/0x3850 [ 677.331930] ? vfs_fallocate+0x48f/0xda0 [ 677.340595] ? __x64_sys_fallocate+0xcf/0x140 [ 677.341344] ? do_syscall_64+0x33/0x40 [ 677.341939] ? lock_chain_count+0x20/0x20 [ 677.342639] ? mark_held_locks+0x9e/0xe0 [ 677.343273] ? __ext4_mark_inode_dirty+0x770/0x770 [ 677.344049] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 677.344851] ? quarantine_put+0x8b/0x1a0 [ 677.345466] ? trace_hardirqs_on+0x5b/0x180 [ 677.346121] ? kmem_cache_free+0xa7/0x2d0 [ 677.346750] ? slab_free_freelist_hook+0xa9/0x180 [ 677.347483] ? jbd2_journal_stop+0x61f/0xdc0 [ 677.348148] ? __lock_acquire+0x1657/0x5b00 [ 677.348817] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 677.349609] ? __ext4_mark_inode_dirty+0x770/0x770 [ 677.350350] do_writepages+0xee/0x2a0 [ 677.350922] ? page_writeback_cpu_online+0x20/0x20 [ 677.351665] ? lock_acquire+0x197/0x470 [ 677.352273] ? ext4_fallocate+0x21ac/0x3850 [ 677.352931] ? lock_release+0x680/0x680 [ 677.353546] __filemap_fdatawrite_range+0x24b/0x2f0 [ 677.354343] ? igrab+0xc0/0xc0 [ 677.354824] ? delete_from_page_cache_batch+0xa30/0xa30 [ 677.355697] ? down_write+0xe0/0x160 [ 677.356281] ? down_write_killable+0x180/0x180 [ 677.357028] filemap_write_and_wait_range+0x65/0x100 [ 677.357795] ext4_fallocate+0x220f/0x3850 [ 677.358467] ? __x64_sys_fallocate+0xcf/0x140 [ 677.359168] ? ext4_ext_truncate+0x250/0x250 [ 677.359884] ? selinux_file_permission+0x92/0x520 [ 677.360707] ? ext4_ext_truncate+0x250/0x250 [ 677.361436] vfs_fallocate+0x48f/0xda0 [ 677.362213] __x64_sys_fallocate+0xcf/0x140 [ 677.362943] do_syscall_64+0x33/0x40 [ 677.363524] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 677.364513] RIP: 0033:0x7f518f061b19 [ 677.365260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 677.368303] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 677.369472] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 677.370666] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 677.371775] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 677.372981] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 677.374146] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 [ 677.375475] CPU: 0 PID: 5816 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 677.376991] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 677.377776] EXT4-fs (sda): ext4_writepages: jbd2_start: 9223372036854775807 pages, ino 16022; err -12 [ 677.378716] Call Trace: [ 677.378747] dump_stack+0x107/0x167 [ 677.378769] should_fail.cold+0x5/0xa [ 677.378791] ? ext4_find_extent+0xa77/0xd70 [ 677.378810] should_failslab+0x5/0x20 [ 677.378828] __kmalloc+0x72/0x390 [ 677.378846] ? mark_lock+0xf5/0x2df0 [ 677.378870] ext4_find_extent+0xa77/0xd70 [ 677.378902] ext4_ext_map_blocks+0x1c8/0x5870 [ 677.378936] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 677.378957] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 677.378979] ? __lock_acquire+0x1657/0x5b00 [ 677.379002] ? ext4_ext_release+0x10/0x10 [ 677.379022] ? ext4_map_blocks+0x5cd/0x1910 [ 677.379046] ? lock_release+0x680/0x680 [ 677.379067] ? ext4_es_lookup_extent+0x485/0xa80 [ 677.379087] ? lock_downgrade+0x6d0/0x6d0 [ 677.379121] ? down_write+0xe0/0x160 [ 677.379139] ? down_write_killable+0x180/0x180 [ 677.379169] ext4_map_blocks+0x63f/0x1910 [ 677.379201] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 677.379218] ? trace_hardirqs_on+0x5b/0x180 [ 677.379243] ? kmem_cache_alloc+0x2a6/0x310 [ 677.379280] ext4_writepages+0x19bf/0x3350 [ 677.401545] ? vfs_fallocate+0x48f/0xda0 [ 677.402408] ? __x64_sys_fallocate+0xcf/0x140 [ 677.403361] ? do_syscall_64+0x33/0x40 [ 677.404281] ? lock_chain_count+0x20/0x20 [ 677.405168] ? mark_held_locks+0x9e/0xe0 [ 677.406023] ? __ext4_mark_inode_dirty+0x770/0x770 [ 677.407026] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 677.408123] ? quarantine_put+0x8b/0x1a0 [ 677.408973] ? trace_hardirqs_on+0x5b/0x180 [ 677.409856] ? kmem_cache_free+0xa7/0x2d0 [ 677.410731] ? jbd2_journal_stop+0x61f/0xdc0 [ 677.411638] ? __lock_acquire+0x1657/0x5b00 [ 677.412569] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 677.413645] ? __ext4_mark_inode_dirty+0x770/0x770 [ 677.414667] do_writepages+0xee/0x2a0 [ 677.415452] ? page_writeback_cpu_online+0x20/0x20 [ 677.416487] ? lock_acquire+0x197/0x470 [ 677.417319] ? ext4_fallocate+0x21ac/0x3850 [ 677.418228] ? lock_release+0x680/0x680 [ 677.419054] __filemap_fdatawrite_range+0x24b/0x2f0 [ 677.420088] ? igrab+0xc0/0xc0 [ 677.420756] ? delete_from_page_cache_batch+0xa30/0xa30 [ 677.421877] ? down_write+0xe0/0x160 [ 677.422635] ? down_write_killable+0x180/0x180 [ 677.423593] filemap_write_and_wait_range+0x65/0x100 [ 677.424644] ext4_fallocate+0x220f/0x3850 [ 677.425496] ? __x64_sys_fallocate+0xcf/0x140 [ 677.426431] ? ext4_ext_truncate+0x250/0x250 [ 677.427360] ? selinux_file_permission+0x92/0x520 [ 677.428343] ? ext4_ext_truncate+0x250/0x250 [ 677.429281] vfs_fallocate+0x48f/0xda0 [ 677.430087] __x64_sys_fallocate+0xcf/0x140 [ 677.430986] do_syscall_64+0x33/0x40 [ 677.431750] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 677.432819] RIP: 0033:0x7fb365247b19 [ 677.433591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 677.437357] RSP: 002b:00007fb3627bd188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 677.438940] RAX: ffffffffffffffda RBX: 00007fb36535af60 RCX: 00007fb365247b19 [ 677.440406] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 677.441863] RBP: 00007fb3627bd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 677.443310] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 677.444768] R13: 00007fff2047289f R14: 00007fb3627bd300 R15: 0000000000022000 [ 677.490699] FAULT_INJECTION: forcing a failure. [ 677.490699] name failslab, interval 1, probability 0, space 0, times 0 [ 677.492920] CPU: 1 PID: 5823 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 677.494026] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 677.495274] Call Trace: [ 677.495704] dump_stack+0x107/0x167 [ 677.496252] should_fail.cold+0x5/0xa [ 677.496880] ? ext4_alloc_io_end_vec+0x1f/0x120 [ 677.497707] should_failslab+0x5/0x20 [ 677.498403] kmem_cache_alloc+0x5b/0x310 [ 677.499169] ext4_alloc_io_end_vec+0x1f/0x120 [ 677.499995] ext4_writepages+0x17a5/0x3350 [ 677.500742] ? vfs_fallocate+0x48f/0xda0 [ 677.501499] ? __x64_sys_fallocate+0xcf/0x140 [ 677.502272] ? do_syscall_64+0x33/0x40 [ 677.502924] ? lock_chain_count+0x20/0x20 [ 677.503649] ? mark_held_locks+0x9e/0xe0 [ 677.504430] ? __ext4_mark_inode_dirty+0x770/0x770 [ 677.505329] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 677.506340] ? quarantine_put+0x8b/0x1a0 [ 677.506972] ? trace_hardirqs_on+0x5b/0x180 [ 677.507670] ? kmem_cache_free+0xa7/0x2d0 [ 677.508364] ? slab_free_freelist_hook+0xa9/0x180 [ 677.509365] ? jbd2_journal_stop+0x61f/0xdc0 [ 677.510053] ? __lock_acquire+0x1657/0x5b00 [ 677.510765] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 677.511576] ? __ext4_mark_inode_dirty+0x770/0x770 [ 677.512548] do_writepages+0xee/0x2a0 [ 677.513196] ? page_writeback_cpu_online+0x20/0x20 [ 677.514112] ? lock_acquire+0x197/0x470 [ 677.514817] ? ext4_fallocate+0x21ac/0x3850 [ 677.515507] ? lock_release+0x680/0x680 [ 677.516123] __filemap_fdatawrite_range+0x24b/0x2f0 [ 677.516953] ? igrab+0xc0/0xc0 [ 677.517444] ? delete_from_page_cache_batch+0xa30/0xa30 [ 677.518393] ? down_write+0xe0/0x160 [ 677.519149] ? down_write_killable+0x180/0x180 [ 677.519905] filemap_write_and_wait_range+0x65/0x100 [ 677.520696] ext4_fallocate+0x220f/0x3850 [ 677.521375] ? __x64_sys_fallocate+0xcf/0x140 [ 677.522075] ? ext4_ext_truncate+0x250/0x250 [ 677.522921] ? selinux_file_permission+0x92/0x520 [ 677.523838] ? ext4_ext_truncate+0x250/0x250 [ 677.524714] vfs_fallocate+0x48f/0xda0 [ 677.525311] __x64_sys_fallocate+0xcf/0x140 [ 677.526047] do_syscall_64+0x33/0x40 [ 677.526808] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 677.527634] RIP: 0033:0x7f3b30543b19 [ 677.528340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 677.531925] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 677.533216] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 677.534471] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 677.535778] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 677.537171] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 677.538363] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 13:45:18 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 10) [ 677.560693] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 677.562469] ext4 filesystem being mounted at /syzkaller-testdir840217519/syzkaller.PWY4sl/94/file0 supports timestamps until 2038-01-19 (0x7fffffff) 13:45:18 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0xfffffffe, 0x4) 13:45:18 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 9) 13:45:18 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 14) [ 677.683844] FAULT_INJECTION: forcing a failure. [ 677.683844] name failslab, interval 1, probability 0, space 0, times 0 [ 677.686159] CPU: 1 PID: 5829 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 677.687234] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 677.688493] Call Trace: [ 677.688918] dump_stack+0x107/0x167 [ 677.689506] should_fail.cold+0x5/0xa [ 677.690094] ? ext4_find_extent+0xa77/0xd70 [ 677.690784] should_failslab+0x5/0x20 [ 677.691373] __kmalloc+0x72/0x390 [ 677.691928] ? mark_lock+0xf5/0x2df0 [ 677.692500] ext4_find_extent+0xa77/0xd70 [ 677.693227] ext4_ext_map_blocks+0x1c8/0x5870 [ 677.693910] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 677.694743] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 677.695535] ? __lock_acquire+0x1657/0x5b00 [ 677.696232] ? ext4_ext_release+0x10/0x10 [ 677.696858] ? ext4_map_blocks+0x5cd/0x1910 [ 677.697576] ? lock_release+0x680/0x680 [ 677.698186] ? ext4_es_lookup_extent+0x485/0xa80 [ 677.698950] ? lock_downgrade+0x6d0/0x6d0 [ 677.699594] ? down_write+0xe0/0x160 [ 677.700183] ? down_write_killable+0x180/0x180 [ 677.700891] ext4_map_blocks+0x63f/0x1910 [ 677.701567] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 677.702241] ? trace_hardirqs_on+0x5b/0x180 [ 677.702933] ? kmem_cache_alloc+0x2a6/0x310 [ 677.703595] ext4_writepages+0x19bf/0x3350 [ 677.704271] ? vfs_fallocate+0x48f/0xda0 [ 677.704889] ? __x64_sys_fallocate+0xcf/0x140 [ 677.705639] ? do_syscall_64+0x33/0x40 [ 677.706224] ? lock_chain_count+0x20/0x20 [ 677.706916] ? mark_held_locks+0x9e/0xe0 [ 677.707529] ? __ext4_mark_inode_dirty+0x770/0x770 [ 677.708308] ? register_lock_class+0xbb/0x17b0 [ 677.709004] ? kmem_cache_free+0xa7/0x2d0 [ 677.709682] ? jbd2_journal_stop+0x61f/0xdc0 [ 677.710351] ? __lock_acquire+0x1657/0x5b00 [ 677.711070] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 677.711855] ? __ext4_mark_inode_dirty+0x770/0x770 [ 677.712635] do_writepages+0xee/0x2a0 [ 677.713215] ? page_writeback_cpu_online+0x20/0x20 [ 677.713998] ? lock_acquire+0x197/0x470 [ 677.714624] ? ext4_fallocate+0x21ac/0x3850 [ 677.715277] ? lock_release+0x680/0x680 [ 677.715920] __filemap_fdatawrite_range+0x24b/0x2f0 [ 677.716676] ? igrab+0xc0/0xc0 [ 677.717201] ? delete_from_page_cache_batch+0xa30/0xa30 [ 677.718008] ? down_write+0xe0/0x160 [ 677.718594] ? down_write_killable+0x180/0x180 [ 677.719285] filemap_write_and_wait_range+0x65/0x100 [ 677.720096] ext4_fallocate+0x220f/0x3850 [ 677.720727] ? __x64_sys_fallocate+0xcf/0x140 [ 677.721459] ? ext4_ext_truncate+0x250/0x250 [ 677.722120] ? selinux_file_permission+0x92/0x520 [ 677.722909] ? ext4_ext_truncate+0x250/0x250 [ 677.723575] vfs_fallocate+0x48f/0xda0 [ 677.724198] __x64_sys_fallocate+0xcf/0x140 [ 677.724859] do_syscall_64+0x33/0x40 [ 677.725463] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 677.726231] RIP: 0033:0x7fb365247b19 [ 677.726836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 677.729587] RSP: 002b:00007fb3627bd188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 677.730807] RAX: ffffffffffffffda RBX: 00007fb36535af60 RCX: 00007fb365247b19 [ 677.731883] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 677.733022] RBP: 00007fb3627bd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 677.734154] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 677.735288] R13: 00007fff2047289f R14: 00007fb3627bd300 R15: 0000000000022000 [ 677.821722] FAULT_INJECTION: forcing a failure. [ 677.821722] name failslab, interval 1, probability 0, space 0, times 0 [ 677.823700] CPU: 1 PID: 5831 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 677.824802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 677.826049] Call Trace: [ 677.826477] dump_stack+0x107/0x167 [ 677.827027] should_fail.cold+0x5/0xa [ 677.827641] ? create_object.isra.0+0x3a/0xa30 [ 677.828327] should_failslab+0x5/0x20 [ 677.828952] kmem_cache_alloc+0x5b/0x310 [ 677.829571] create_object.isra.0+0x3a/0xa30 [ 677.830273] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 677.831045] kmem_cache_alloc+0x159/0x310 [ 677.831718] jbd2__journal_start+0x190/0x7e0 [ 677.832386] __ext4_journal_start_sb+0x214/0x390 [ 677.833165] ext4_writepages+0x102d/0x3350 [ 677.833800] ? ext4_fallocate+0x8be/0x3850 [ 677.834479] ? vfs_fallocate+0x48f/0xda0 [ 677.835114] ? __x64_sys_fallocate+0xcf/0x140 [ 677.835842] ? do_syscall_64+0x33/0x40 [ 677.836443] ? lock_chain_count+0x20/0x20 [ 677.837137] ? mark_held_locks+0x9e/0xe0 [ 677.837749] ? __ext4_mark_inode_dirty+0x770/0x770 [ 677.838532] ? register_lock_class+0xbb/0x17b0 [ 677.839218] ? kmem_cache_free+0xa7/0x2d0 [ 677.839896] ? slab_free_freelist_hook+0xa9/0x180 [ 677.840633] ? jbd2_journal_stop+0x61f/0xdc0 [ 677.841352] ? __lock_acquire+0x1657/0x5b00 [ 677.842017] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 677.842848] ? __ext4_mark_inode_dirty+0x770/0x770 [ 677.843588] do_writepages+0xee/0x2a0 [ 677.844208] ? page_writeback_cpu_online+0x20/0x20 [ 677.844957] ? lock_acquire+0x197/0x470 [ 677.845599] ? ext4_fallocate+0x21ac/0x3850 [ 677.846249] ? lock_release+0x680/0x680 [ 677.846895] __filemap_fdatawrite_range+0x24b/0x2f0 [ 677.847695] ? igrab+0xc0/0xc0 [ 677.848213] ? delete_from_page_cache_batch+0xa30/0xa30 [ 677.849073] ? down_write+0xe0/0x160 [ 677.849658] ? down_write_killable+0x180/0x180 [ 677.850397] filemap_write_and_wait_range+0x65/0x100 [ 677.851201] ext4_fallocate+0x220f/0x3850 [ 677.851853] ? __x64_sys_fallocate+0xcf/0x140 [ 677.852595] ? ext4_ext_truncate+0x250/0x250 [ 677.853304] ? selinux_file_permission+0x92/0x520 [ 677.854080] ? ext4_ext_truncate+0x250/0x250 [ 677.854798] vfs_fallocate+0x48f/0xda0 [ 677.855393] __x64_sys_fallocate+0xcf/0x140 [ 677.856084] do_syscall_64+0x33/0x40 [ 677.856661] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 677.857502] RIP: 0033:0x7f518f061b19 [ 677.858119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 677.861057] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 677.862277] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 677.863415] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 677.864559] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 677.865686] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000001 [ 677.866820] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 [ 677.869889] FAULT_INJECTION: forcing a failure. [ 677.869889] name failslab, interval 1, probability 0, space 0, times 0 [ 677.871860] CPU: 1 PID: 5832 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 677.872998] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 677.874337] Call Trace: [ 677.874764] dump_stack+0x107/0x167 [ 677.875357] should_fail.cold+0x5/0xa [ 677.875977] ? percpu_ref_init+0xd8/0x3d0 [ 677.876651] should_failslab+0x5/0x20 [ 677.877266] kmem_cache_alloc_trace+0x55/0x320 [ 677.877997] ? io_tctx_exit_cb+0xf0/0xf0 [ 677.878639] percpu_ref_init+0xd8/0x3d0 [ 677.879266] io_uring_setup+0x47a/0x2980 [ 677.879911] ? __mutex_unlock_slowpath+0xe1/0x600 [ 677.880692] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 677.881485] ? wait_for_completion_io+0x270/0x270 [ 677.882280] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 677.883103] ? syscall_enter_from_user_mode+0x1d/0x50 [ 677.883925] do_syscall_64+0x33/0x40 [ 677.884511] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 677.885331] RIP: 0033:0x7f084f4a7b19 [ 677.885920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 677.888840] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 677.890032] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 677.891141] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 677.892270] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 677.893401] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 677.894535] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:45:33 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:45:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x10000000000, 0x4) 13:45:33 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 12) 13:45:33 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:45:33 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 11) 13:45:33 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 15) 13:45:33 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 10) 13:45:33 executing program 7: semget$private(0x0, 0x4, 0x100) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 692.657396] FAULT_INJECTION: forcing a failure. [ 692.657396] name failslab, interval 1, probability 0, space 0, times 0 [ 692.660210] CPU: 1 PID: 5846 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 692.661761] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 692.663613] Call Trace: [ 692.664354] dump_stack+0x107/0x167 [ 692.665417] should_fail.cold+0x5/0xa [ 692.666515] ? ext4_mb_new_blocks+0x6a4/0x44b0 [ 692.667794] should_failslab+0x5/0x20 [ 692.668664] kmem_cache_alloc+0x5b/0x310 [ 692.669623] ext4_mb_new_blocks+0x6a4/0x44b0 [ 692.670637] ? trace_hardirqs_on+0x5b/0x180 [ 692.671607] ? kasan_unpoison_shadow+0x33/0x50 [ 692.672602] ? ext4_cache_extents+0x68/0x2d0 [ 692.673616] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 692.674759] ? ext4_discard_preallocations+0xd80/0xd80 [ 692.675953] ? ext4_ext_search_right+0x2e8/0xbd0 [ 692.677028] ? ext4_inode_to_goal_block+0x320/0x430 [ 692.678146] ext4_ext_map_blocks+0x1a55/0x5870 [ 692.679188] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 692.680379] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 692.681588] ? __lock_acquire+0x1657/0x5b00 [ 692.682549] ? ext4_ext_release+0x10/0x10 [ 692.683462] ? ext4_map_blocks+0x5cd/0x1910 [ 692.684415] ? lock_release+0x680/0x680 [ 692.685305] ? ext4_es_lookup_extent+0x485/0xa80 [ 692.686353] ? lock_downgrade+0x6d0/0x6d0 [ 692.687299] ? down_write_killable+0x180/0x180 [ 692.688308] ext4_map_blocks+0x63f/0x1910 [ 692.689239] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 692.690220] ? trace_hardirqs_on+0x5b/0x180 [ 692.691172] ? kmem_cache_alloc+0x2a6/0x310 [ 692.692123] ext4_writepages+0x19bf/0x3350 [ 692.693068] ? vfs_fallocate+0x48f/0xda0 [ 692.693965] ? __x64_sys_fallocate+0xcf/0x140 [ 692.694937] ? do_syscall_64+0x33/0x40 [ 692.695779] ? lock_chain_count+0x20/0x20 [ 692.696728] ? mark_held_locks+0x9e/0xe0 [ 692.697625] ? __ext4_mark_inode_dirty+0x770/0x770 [ 692.698682] ? register_lock_class+0xbb/0x17b0 [ 692.699688] ? kmem_cache_free+0xa7/0x2d0 [ 692.700600] ? jbd2_journal_stop+0x61f/0xdc0 [ 692.701575] ? __lock_acquire+0x1657/0x5b00 [ 692.702518] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 692.703653] ? __ext4_mark_inode_dirty+0x770/0x770 [ 692.704711] do_writepages+0xee/0x2a0 [ 692.705553] ? page_writeback_cpu_online+0x20/0x20 [ 692.706603] ? lock_acquire+0x197/0x470 [ 692.707456] ? ext4_fallocate+0x21ac/0x3850 [ 692.708389] ? lock_release+0x680/0x680 [ 692.709272] __filemap_fdatawrite_range+0x24b/0x2f0 [ 692.710352] ? igrab+0xc0/0xc0 [ 692.711049] ? delete_from_page_cache_batch+0xa30/0xa30 [ 692.712193] ? down_write+0xe0/0x160 [ 692.713015] ? down_write_killable+0x180/0x180 [ 692.714023] filemap_write_and_wait_range+0x65/0x100 [ 692.715111] ext4_fallocate+0x220f/0x3850 [ 692.716007] ? __x64_sys_fallocate+0xcf/0x140 [ 692.716988] ? ext4_ext_truncate+0x250/0x250 [ 692.717958] ? selinux_file_permission+0x92/0x520 [ 692.718998] ? ext4_ext_truncate+0x250/0x250 [ 692.719940] vfs_fallocate+0x48f/0xda0 [ 692.720808] __x64_sys_fallocate+0xcf/0x140 [ 692.721745] do_syscall_64+0x33/0x40 [ 692.722547] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 692.723646] RIP: 0033:0x7fb365247b19 [ 692.724444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 692.728391] RSP: 002b:00007fb3627bd188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 692.730060] RAX: ffffffffffffffda RBX: 00007fb36535af60 RCX: 00007fb365247b19 [ 692.731595] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 692.733125] RBP: 00007fb3627bd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 692.734670] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 692.736187] R13: 00007fff2047289f R14: 00007fb3627bd300 R15: 0000000000022000 [ 692.741388] FAULT_INJECTION: forcing a failure. [ 692.741388] name failslab, interval 1, probability 0, space 0, times 0 [ 692.742940] CPU: 0 PID: 5850 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 692.743868] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 692.744959] Call Trace: [ 692.745335] dump_stack+0x107/0x167 [ 692.745837] should_fail.cold+0x5/0xa [ 692.746359] ? create_object.isra.0+0x3a/0xa30 [ 692.746974] should_failslab+0x5/0x20 [ 692.747474] kmem_cache_alloc+0x5b/0x310 [ 692.748024] create_object.isra.0+0x3a/0xa30 [ 692.748607] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 692.749270] kmem_cache_alloc_trace+0x151/0x320 [ 692.749873] ? io_tctx_exit_cb+0xf0/0xf0 [ 692.750429] percpu_ref_init+0xd8/0x3d0 [ 692.750978] io_uring_setup+0x47a/0x2980 [ 692.751512] ? __mutex_unlock_slowpath+0xe1/0x600 [ 692.752136] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 692.752782] ? wait_for_completion_io+0x270/0x270 [ 692.753446] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 692.754114] ? syscall_enter_from_user_mode+0x1d/0x50 [ 692.754809] do_syscall_64+0x33/0x40 [ 692.755289] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 692.755968] RIP: 0033:0x7f084f4a7b19 [ 692.756439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 692.758845] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 692.759816] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 692.760745] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 692.761706] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 692.762671] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 692.763609] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:45:33 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 692.801461] FAULT_INJECTION: forcing a failure. [ 692.801461] name failslab, interval 1, probability 0, space 0, times 0 [ 692.804280] FAULT_INJECTION: forcing a failure. [ 692.804280] name failslab, interval 1, probability 0, space 0, times 0 [ 692.804852] CPU: 1 PID: 5853 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 692.807312] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 692.809119] Call Trace: [ 692.809723] dump_stack+0x107/0x167 [ 692.810527] should_fail.cold+0x5/0xa [ 692.811343] ? create_object.isra.0+0x3a/0xa30 [ 692.812325] should_failslab+0x5/0x20 [ 692.813172] kmem_cache_alloc+0x5b/0x310 [ 692.814079] create_object.isra.0+0x3a/0xa30 [ 692.815033] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 692.816147] kmem_cache_alloc+0x159/0x310 [ 692.817077] start_this_handle+0x674/0x1390 [ 692.818024] ? kmem_cache_alloc+0x159/0x310 [ 692.818977] ? mark_held_locks+0x9e/0xe0 [ 692.819859] ? __jbd2_journal_unfile_buffer+0xb0/0xb0 [ 692.820994] ? trace_hardirqs_on+0x5b/0x180 [ 692.821955] ? kmem_cache_alloc+0x2a6/0x310 [ 692.822905] jbd2__journal_start+0x390/0x7e0 [ 692.823863] __ext4_journal_start_sb+0x214/0x390 [ 692.824914] ext4_writepages+0x102d/0x3350 [ 692.825834] ? ext4_fallocate+0x8be/0x3850 [ 692.826750] ? vfs_fallocate+0x48f/0xda0 [ 692.827640] ? __x64_sys_fallocate+0xcf/0x140 [ 692.828601] ? do_syscall_64+0x33/0x40 [ 692.829480] ? lock_chain_count+0x20/0x20 [ 692.830416] ? mark_held_locks+0x9e/0xe0 [ 692.831317] ? __ext4_mark_inode_dirty+0x770/0x770 [ 692.832374] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 692.833546] ? quarantine_put+0x8b/0x1a0 [ 692.834407] ? trace_hardirqs_on+0x5b/0x180 [ 692.835350] ? kmem_cache_free+0xa7/0x2d0 [ 692.836254] ? slab_free_freelist_hook+0xa9/0x180 [ 692.837317] ? jbd2_journal_stop+0x61f/0xdc0 [ 692.838291] ? __lock_acquire+0x1657/0x5b00 [ 692.839239] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 692.840370] ? __ext4_mark_inode_dirty+0x770/0x770 [ 692.841457] do_writepages+0xee/0x2a0 [ 692.842295] ? page_writeback_cpu_online+0x20/0x20 [ 692.843366] ? lock_acquire+0x197/0x470 [ 692.844221] ? ext4_fallocate+0x21ac/0x3850 [ 692.845189] ? lock_release+0x680/0x680 [ 692.846068] __filemap_fdatawrite_range+0x24b/0x2f0 [ 692.847148] ? igrab+0xc0/0xc0 [ 692.847841] ? delete_from_page_cache_batch+0xa30/0xa30 [ 692.849008] ? down_write+0xe0/0x160 [ 692.849832] ? down_write_killable+0x180/0x180 [ 692.850831] filemap_write_and_wait_range+0x65/0x100 [ 692.851953] ext4_fallocate+0x220f/0x3850 [ 692.852875] ? __x64_sys_fallocate+0xcf/0x140 [ 692.853869] ? ext4_ext_truncate+0x250/0x250 [ 692.854827] ? selinux_file_permission+0x92/0x520 [ 692.855872] ? ext4_ext_truncate+0x250/0x250 [ 692.856847] vfs_fallocate+0x48f/0xda0 [ 692.857725] __x64_sys_fallocate+0xcf/0x140 [ 692.858668] do_syscall_64+0x33/0x40 [ 692.859481] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 692.860596] RIP: 0033:0x7f3b30543b19 [ 692.861409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 692.865415] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 692.867077] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 692.868668] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 692.870620] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 692.872484] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 692.874045] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 [ 692.875631] CPU: 0 PID: 5855 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 692.876531] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 692.877587] Call Trace: [ 692.877928] dump_stack+0x107/0x167 [ 692.878399] should_fail.cold+0x5/0xa [ 692.878862] ? jbd2__journal_start+0x246/0x7e0 [ 692.879443] should_failslab+0x5/0x20 [ 692.879917] kmem_cache_alloc+0x5b/0x310 [ 692.880429] jbd2__journal_start+0x246/0x7e0 [ 692.880998] __ext4_journal_start_sb+0x214/0x390 [ 692.881571] ext4_writepages+0x102d/0x3350 [ 692.882098] ? ext4_fallocate+0x8be/0x3850 [ 692.882616] ? vfs_fallocate+0x48f/0xda0 [ 692.883100] ? __x64_sys_fallocate+0xcf/0x140 [ 692.883640] ? do_syscall_64+0x33/0x40 [ 692.884132] ? lock_chain_count+0x20/0x20 [ 692.884664] ? mark_held_locks+0x9e/0xe0 [ 692.885174] ? __ext4_mark_inode_dirty+0x770/0x770 [ 692.885779] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 692.886425] ? quarantine_put+0x8b/0x1a0 [ 692.886924] ? trace_hardirqs_on+0x5b/0x180 [ 692.887456] ? kmem_cache_free+0xa7/0x2d0 [ 692.887955] ? slab_free_freelist_hook+0xa9/0x180 [ 692.888548] ? jbd2_journal_stop+0x61f/0xdc0 [ 692.889083] ? __lock_acquire+0x1657/0x5b00 [ 692.889601] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 692.890251] ? __ext4_mark_inode_dirty+0x770/0x770 [ 692.890839] do_writepages+0xee/0x2a0 [ 692.891316] ? page_writeback_cpu_online+0x20/0x20 [ 692.891925] ? lock_acquire+0x197/0x470 [ 692.892426] ? ext4_fallocate+0x21ac/0x3850 [ 692.892972] ? lock_release+0x680/0x680 [ 692.893471] __filemap_fdatawrite_range+0x24b/0x2f0 [ 692.894090] ? igrab+0xc0/0xc0 [ 692.894490] ? delete_from_page_cache_batch+0xa30/0xa30 [ 692.895160] ? down_write+0xe0/0x160 [ 692.895602] ? down_write_killable+0x180/0x180 [ 692.896176] filemap_write_and_wait_range+0x65/0x100 [ 692.896797] ext4_fallocate+0x220f/0x3850 [ 692.897312] ? __x64_sys_fallocate+0xcf/0x140 [ 692.897875] ? ext4_ext_truncate+0x250/0x250 [ 692.898418] ? selinux_file_permission+0x92/0x520 [ 692.898994] ? ext4_ext_truncate+0x250/0x250 [ 692.899533] vfs_fallocate+0x48f/0xda0 [ 692.900004] __x64_sys_fallocate+0xcf/0x140 [ 692.900534] do_syscall_64+0x33/0x40 [ 692.900978] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 692.901604] RIP: 0033:0x7f518f061b19 [ 692.902064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 692.904320] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 692.905269] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 692.906110] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 692.906936] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 692.907773] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 692.908608] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 [ 692.909672] EXT4-fs (sda): ext4_writepages: jbd2_start: 9223372036854775807 pages, ino 16029; err -12 13:45:51 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 12) 13:45:51 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 11) 13:45:51 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:45:51 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)={0x50, r1, 0x8, 0x70bd25, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}]}, 0x50}}, 0x5) sendmsg$NL80211_CMD_GET_REG(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x24, r1, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_REG_RULES={0x10, 0x22, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8}]}]}]}, 0x24}}, 0x0) 13:45:51 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 13) 13:45:51 executing program 7: semget$private(0x0, 0x4, 0x100) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:45:51 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x1000000000000000, 0x4) 13:45:51 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 16) [ 710.675671] FAULT_INJECTION: forcing a failure. [ 710.675671] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 710.677251] CPU: 1 PID: 5878 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 710.677868] FAULT_INJECTION: forcing a failure. [ 710.677868] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 710.678128] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 710.678133] Call Trace: [ 710.678151] dump_stack+0x107/0x167 [ 710.678164] should_fail.cold+0x5/0xa [ 710.678179] __alloc_pages_nodemask+0x182/0x600 [ 710.678193] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 710.678211] ? cap_capable+0x1cd/0x230 [ 710.678228] alloc_pages_current+0x187/0x280 [ 710.678239] __get_free_pages+0xc/0xa0 [ 710.678251] io_uring_setup+0xe27/0x2980 [ 710.678267] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 710.678278] ? wait_for_completion_io+0x270/0x270 [ 710.678305] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 710.678323] ? syscall_enter_from_user_mode+0x1d/0x50 [ 710.687781] do_syscall_64+0x33/0x40 [ 710.688240] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 710.688856] RIP: 0033:0x7f084f4a7b19 [ 710.689343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 710.691535] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 710.692445] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 710.693309] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 710.694165] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 710.695078] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 710.695929] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 710.696859] CPU: 0 PID: 5870 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 710.697767] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 710.699029] Call Trace: [ 710.699232] FAULT_INJECTION: forcing a failure. [ 710.699232] name failslab, interval 1, probability 0, space 0, times 0 [ 710.699376] dump_stack+0x107/0x167 [ 710.701232] should_fail.cold+0x5/0xa [ 710.701724] __alloc_pages_nodemask+0x182/0x600 [ 710.702346] ? stack_trace_save+0x8c/0xc0 [ 710.702875] ? stack_trace_consume_entry+0x160/0x160 [ 710.703552] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 710.704361] alloc_pages_current+0x187/0x280 [ 710.704932] allocate_slab+0x26f/0x380 [ 710.705457] ___slab_alloc+0x470/0x700 [ 710.705956] ? lock_acquire+0x197/0x470 [ 710.706500] ? create_object.isra.0+0x3a/0xa30 [ 710.707091] ? lock_release+0x680/0x680 [ 710.707631] ? find_held_lock+0x2c/0x110 [ 710.708161] ? create_object.isra.0+0x3a/0xa30 [ 710.708752] ? kmem_cache_alloc+0x301/0x310 [ 710.709305] ? create_object.isra.0+0x3a/0xa30 [ 710.709921] kmem_cache_alloc+0x301/0x310 [ 710.710456] create_object.isra.0+0x3a/0xa30 [ 710.711036] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 710.711688] kmem_cache_alloc+0x159/0x310 [ 710.712251] jbd2__journal_start+0x246/0x7e0 [ 710.712814] __ext4_journal_start_sb+0x214/0x390 [ 710.713450] ext4_writepages+0x102d/0x3350 [ 710.713986] ? ext4_fallocate+0x8be/0x3850 [ 710.714539] ? vfs_fallocate+0x48f/0xda0 [ 710.715050] ? __x64_sys_fallocate+0xcf/0x140 [ 710.715653] ? do_syscall_64+0x33/0x40 [ 710.716155] ? lock_chain_count+0x20/0x20 [ 710.716711] ? mark_held_locks+0x9e/0xe0 [ 710.717235] ? __ext4_mark_inode_dirty+0x770/0x770 [ 710.717872] ? register_lock_class+0xbb/0x17b0 [ 710.718451] ? kmem_cache_free+0xa7/0x2d0 [ 710.719004] ? slab_free_freelist_hook+0xa9/0x180 [ 710.719622] ? jbd2_journal_stop+0x61f/0xdc0 [ 710.720200] ? __lock_acquire+0x1657/0x5b00 [ 710.720777] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 710.721452] ? __ext4_mark_inode_dirty+0x770/0x770 [ 710.722092] do_writepages+0xee/0x2a0 [ 710.722572] ? page_writeback_cpu_online+0x20/0x20 [ 710.723225] ? lock_acquire+0x197/0x470 [ 710.723727] ? ext4_fallocate+0x21ac/0x3850 [ 710.724303] ? lock_release+0x680/0x680 [ 710.724810] __filemap_fdatawrite_range+0x24b/0x2f0 [ 710.725474] ? igrab+0xc0/0xc0 [ 710.725882] ? delete_from_page_cache_batch+0xa30/0xa30 [ 710.726594] ? down_write+0xe0/0x160 [ 710.727108] ? down_write_killable+0x180/0x180 [ 710.727817] filemap_write_and_wait_range+0x65/0x100 [ 710.728627] ext4_fallocate+0x220f/0x3850 [ 710.729293] ? __x64_sys_fallocate+0xcf/0x140 [ 710.730035] ? ext4_ext_truncate+0x250/0x250 [ 710.730719] ? selinux_file_permission+0x92/0x520 [ 710.731515] ? ext4_ext_truncate+0x250/0x250 [ 710.732227] vfs_fallocate+0x48f/0xda0 [ 710.732753] __x64_sys_fallocate+0xcf/0x140 [ 710.733310] do_syscall_64+0x33/0x40 [ 710.733819] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 710.734458] RIP: 0033:0x7f518f061b19 [ 710.735041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 710.737626] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 710.738639] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 710.739657] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 710.740570] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 710.741490] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 710.742398] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 [ 710.743324] CPU: 1 PID: 5874 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 710.744241] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 710.745264] Call Trace: [ 710.745594] dump_stack+0x107/0x167 [ 710.746042] should_fail.cold+0x5/0xa [ 710.746531] ? create_object.isra.0+0x3a/0xa30 [ 710.747116] should_failslab+0x5/0x20 [ 710.747589] kmem_cache_alloc+0x5b/0x310 [ 710.748115] create_object.isra.0+0x3a/0xa30 [ 710.748659] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 710.749260] kmem_cache_alloc+0x159/0x310 [ 710.749785] ext4_mb_new_blocks+0x6a4/0x44b0 [ 710.750330] ? trace_hardirqs_on+0x5b/0x180 [ 710.750875] ? kasan_unpoison_shadow+0x33/0x50 [ 710.751424] ? ext4_cache_extents+0x68/0x2d0 [ 710.751959] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 710.752554] ? ext4_discard_preallocations+0xd80/0xd80 [ 710.753224] ? ext4_ext_search_right+0x2e8/0xbd0 [ 710.753784] ? ext4_inode_to_goal_block+0x320/0x430 [ 710.754425] ext4_ext_map_blocks+0x1a55/0x5870 [ 710.754995] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 710.755681] ? SOFTIRQ_verbose+0x10/0x10 [ 710.756187] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 710.756849] ? SOFTIRQ_verbose+0x10/0x10 [ 710.757368] ? __lock_acquire+0x1657/0x5b00 [ 710.757917] ? ext4_ext_release+0x10/0x10 [ 710.758447] ? ext4_map_blocks+0x5cd/0x1910 [ 710.758993] ? lock_release+0x680/0x680 [ 710.759492] ? ext4_es_lookup_extent+0x485/0xa80 [ 710.760091] ? lock_downgrade+0x6d0/0x6d0 [ 710.760618] ? down_write_killable+0x180/0x180 [ 710.761184] ext4_map_blocks+0x63f/0x1910 [ 710.761712] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 710.762258] ? trace_hardirqs_on+0x5b/0x180 [ 710.762786] ? kmem_cache_alloc+0x2a6/0x310 [ 710.763317] ext4_writepages+0x19bf/0x3350 [ 710.763853] ? vfs_fallocate+0x48f/0xda0 [ 710.764341] ? __x64_sys_fallocate+0xcf/0x140 [ 710.764912] ? do_syscall_64+0x33/0x40 [ 710.765405] ? lock_chain_count+0x20/0x20 [ 710.765944] ? mark_held_locks+0x9e/0xe0 [ 710.766463] ? __ext4_mark_inode_dirty+0x770/0x770 [ 710.767087] ? register_lock_class+0xbb/0x17b0 [ 710.767660] ? kmem_cache_free+0xa7/0x2d0 [ 710.768171] ? jbd2_journal_stop+0x61f/0xdc0 [ 710.768741] ? __lock_acquire+0x1657/0x5b00 [ 710.769282] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 710.769943] ? __ext4_mark_inode_dirty+0x770/0x770 [ 710.770524] do_writepages+0xee/0x2a0 [ 710.771002] ? page_writeback_cpu_online+0x20/0x20 [ 710.771589] ? lock_acquire+0x197/0x470 [ 710.772094] ? ext4_fallocate+0x21ac/0x3850 [ 710.772608] ? lock_release+0x680/0x680 [ 710.773136] __filemap_fdatawrite_range+0x24b/0x2f0 [ 710.773734] ? igrab+0xc0/0xc0 [ 710.774149] ? delete_from_page_cache_batch+0xa30/0xa30 [ 710.774826] ? down_write+0xe0/0x160 [ 710.775297] ? down_write_killable+0x180/0x180 [ 710.775870] filemap_write_and_wait_range+0x65/0x100 [ 710.776487] ext4_fallocate+0x220f/0x3850 [ 710.777004] ? __x64_sys_fallocate+0xcf/0x140 [ 710.777557] ? ext4_ext_truncate+0x250/0x250 [ 710.778089] ? selinux_file_permission+0x92/0x520 [ 710.778679] ? ext4_ext_truncate+0x250/0x250 [ 710.779213] vfs_fallocate+0x48f/0xda0 [ 710.779688] __x64_sys_fallocate+0xcf/0x140 [ 710.780218] do_syscall_64+0x33/0x40 [ 710.780649] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 710.781275] RIP: 0033:0x7fb365247b19 [ 710.781702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 710.783917] RSP: 002b:00007fb3627bd188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 710.784836] RAX: ffffffffffffffda RBX: 00007fb36535af60 RCX: 00007fb365247b19 [ 710.785707] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 710.786571] RBP: 00007fb3627bd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 710.787430] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 710.788286] R13: 00007fff2047289f R14: 00007fb3627bd300 R15: 0000000000022000 [ 710.802412] FAULT_INJECTION: forcing a failure. [ 710.802412] name failslab, interval 1, probability 0, space 0, times 0 [ 710.803880] CPU: 0 PID: 5880 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 710.804728] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 710.805781] Call Trace: [ 710.806142] dump_stack+0x107/0x167 [ 710.806718] should_fail.cold+0x5/0xa [ 710.807217] ? ext4_find_extent+0xa77/0xd70 [ 710.807755] should_failslab+0x5/0x20 [ 710.808240] __kmalloc+0x72/0x390 [ 710.808681] ? mark_lock+0xf5/0x2df0 [ 710.809151] ext4_find_extent+0xa77/0xd70 [ 710.809701] ext4_ext_map_blocks+0x1c8/0x5870 [ 710.810251] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 710.810931] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 710.811598] ? __lock_acquire+0x1657/0x5b00 [ 710.812135] ? ext4_ext_release+0x10/0x10 [ 710.812671] ? ext4_map_blocks+0x5cd/0x1910 [ 710.813207] ? lock_release+0x680/0x680 [ 710.813718] ? ext4_es_lookup_extent+0x485/0xa80 [ 710.814313] ? lock_downgrade+0x6d0/0x6d0 [ 710.814864] ? down_write+0xe0/0x160 [ 710.815320] ? down_write_killable+0x180/0x180 [ 710.815911] ext4_map_blocks+0x63f/0x1910 [ 710.816421] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 710.817015] ? trace_hardirqs_on+0x5b/0x180 [ 710.817538] ? kmem_cache_alloc+0x2a6/0x310 [ 710.818093] ext4_writepages+0x19bf/0x3350 [ 710.818610] ? vfs_fallocate+0x48f/0xda0 [ 710.819125] ? __x64_sys_fallocate+0xcf/0x140 [ 710.819672] ? do_syscall_64+0x33/0x40 [ 710.820155] ? lock_chain_count+0x20/0x20 [ 710.820695] ? mark_held_locks+0x9e/0xe0 [ 710.821194] ? __ext4_mark_inode_dirty+0x770/0x770 [ 710.821822] ? register_lock_class+0xbb/0x17b0 [ 710.822386] ? kmem_cache_free+0xa7/0x2d0 [ 710.822924] ? jbd2_journal_stop+0x61f/0xdc0 [ 710.823468] ? __lock_acquire+0x1657/0x5b00 [ 710.824033] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 710.824689] ? __ext4_mark_inode_dirty+0x770/0x770 [ 710.825283] do_writepages+0xee/0x2a0 [ 710.825780] ? page_writeback_cpu_online+0x20/0x20 [ 710.826371] ? lock_acquire+0x197/0x470 [ 710.826885] ? ext4_fallocate+0x21ac/0x3850 [ 710.827405] ? lock_release+0x680/0x680 [ 710.827931] __filemap_fdatawrite_range+0x24b/0x2f0 [ 710.828535] ? igrab+0xc0/0xc0 [ 710.828944] ? delete_from_page_cache_batch+0xa30/0xa30 [ 710.829662] ? down_write+0xe0/0x160 [ 710.830221] ? down_write_killable+0x180/0x180 [ 710.830918] filemap_write_and_wait_range+0x65/0x100 [ 710.831655] ext4_fallocate+0x220f/0x3850 [ 710.832266] ? __x64_sys_fallocate+0xcf/0x140 [ 710.832954] ? ext4_ext_truncate+0x250/0x250 [ 710.833606] ? selinux_file_permission+0x92/0x520 [ 710.834330] ? ext4_ext_truncate+0x250/0x250 [ 710.834960] vfs_fallocate+0x48f/0xda0 [ 710.835430] __x64_sys_fallocate+0xcf/0x140 [ 710.835991] do_syscall_64+0x33/0x40 [ 710.836436] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 710.837140] RIP: 0033:0x7f3b30543b19 [ 710.837587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 710.839904] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 710.840852] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 710.841763] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 710.842660] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 710.843542] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 710.844417] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 13:45:51 executing program 7: semget$private(0x0, 0x4, 0x100) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:45:51 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:45:51 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 17) 13:45:51 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 12) 13:45:51 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 13) [ 710.895435] FAULT_INJECTION: forcing a failure. [ 710.895435] name failslab, interval 1, probability 0, space 0, times 0 [ 710.896902] CPU: 0 PID: 5884 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 710.897724] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 710.898721] Call Trace: [ 710.899035] dump_stack+0x107/0x167 [ 710.899477] should_fail.cold+0x5/0xa [ 710.899939] ? create_object.isra.0+0x3a/0xa30 [ 710.900493] should_failslab+0x5/0x20 [ 710.900966] kmem_cache_alloc+0x5b/0x310 [ 710.901468] create_object.isra.0+0x3a/0xa30 [ 710.902002] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 710.902626] kmem_cache_alloc+0x159/0x310 [ 710.903125] ext4_alloc_io_end_vec+0x1f/0x120 [ 710.903659] ext4_writepages+0x17a5/0x3350 [ 710.904161] ? vfs_fallocate+0x48f/0xda0 [ 710.904612] ? __x64_sys_fallocate+0xcf/0x140 [ 710.905176] ? do_syscall_64+0x33/0x40 [ 710.905646] ? lock_chain_count+0x20/0x20 [ 710.906167] ? mark_held_locks+0x9e/0xe0 [ 710.906646] ? __ext4_mark_inode_dirty+0x770/0x770 [ 710.907253] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 710.907993] ? quarantine_put+0x8b/0x1a0 [ 710.908534] ? trace_hardirqs_on+0x5b/0x180 [ 710.909077] ? kmem_cache_free+0xa7/0x2d0 [ 710.909565] ? slab_free_freelist_hook+0xa9/0x180 [ 710.910160] ? jbd2_journal_stop+0x61f/0xdc0 [ 710.910689] ? __lock_acquire+0x1657/0x5b00 [ 710.911218] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 710.911848] ? __ext4_mark_inode_dirty+0x770/0x770 [ 710.912426] do_writepages+0xee/0x2a0 [ 710.912901] ? page_writeback_cpu_online+0x20/0x20 [ 710.913487] ? lock_acquire+0x197/0x470 [ 710.913961] ? ext4_fallocate+0x21ac/0x3850 [ 710.914476] ? lock_release+0x680/0x680 [ 710.914962] __filemap_fdatawrite_range+0x24b/0x2f0 [ 710.915561] ? igrab+0xc0/0xc0 [ 710.915958] ? delete_from_page_cache_batch+0xa30/0xa30 [ 710.916647] ? down_write+0xe0/0x160 [ 710.917118] ? down_write_killable+0x180/0x180 [ 710.917676] filemap_write_and_wait_range+0x65/0x100 [ 710.918266] ext4_fallocate+0x220f/0x3850 [ 710.918745] ? __x64_sys_fallocate+0xcf/0x140 [ 710.919277] ? ext4_ext_truncate+0x250/0x250 [ 710.919816] ? selinux_file_permission+0x92/0x520 [ 710.920374] ? ext4_ext_truncate+0x250/0x250 [ 710.920917] vfs_fallocate+0x48f/0xda0 [ 710.921374] __x64_sys_fallocate+0xcf/0x140 [ 710.921906] do_syscall_64+0x33/0x40 [ 710.922342] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 710.922961] RIP: 0033:0x7f518f061b19 [ 710.923391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 710.925452] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 710.926357] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 710.927187] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 710.928038] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 710.928904] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 710.929756] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 13:45:51 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='./file1\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) sendmsg$nl_generic(r1, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f00000002c0)={0x298, 0x27, 0x904049e684bff4ba, 0x70bd29, 0x25dfdbfe, {0x1a}, [@generic="90ead95a240ce3de4a150d0fca513b66cadb5713525df08018227f33668167959b6c70ab2b0617dbe697b37109334bde390db6e98b58c0a188038fbb029fc21dcd29d7b64b84f5d80cfaf9688488d4bd2496a6fe68411483a0c3686451417f311809", @generic="20f5cec86120058f52f142fbf1c10bc5b0eba2130935774b3545ad4ddd4828a1884ca7fd0aa8250e1db29b5314f8d20ff9b85ac8dc6520b37690f957ad86b71b5881c8df13", @generic="a41944bcd1b2a116e75bedb90e036baac4dbd9348eeea51b4bfe6d3a89b47eee4efb4503d877bc9eebfb17a988d338d00f1da7bb2e1376c71a40e20a615219c98dc87204c9306b266aa7e30fd8bb58376802518494a60ff5f09af61fd62f0140ccf8ebf1980b0ac2dcdef25b9fb7a533482c201f546027065184d834d01d1a144cba0b284140b7ddb51508aed67947c9abe51670d2fb1748d854675c296b9b3d2567653ca551d8a026cd2514a8b4becb0f897dad9c52aa603fd84e4f717d4d", @generic="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", @generic="0675535805afa50751c0f070cea5e3ce", @typed={0x8, 0x41, 0x0, 0x0, @fd=r3}, @typed={0x8, 0x7, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x13}}]}, 0x298}, 0x1, 0x0, 0x0, 0x40040}, 0x20000051) getsockopt$SO_TIMESTAMP(r2, 0x1, 0x2c, 0x0, &(0x7f0000000280)) [ 710.953591] FAULT_INJECTION: forcing a failure. [ 710.953591] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 710.955092] CPU: 0 PID: 5888 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 710.955893] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 710.957011] Call Trace: [ 710.957335] dump_stack+0x107/0x167 [ 710.957771] should_fail.cold+0x5/0xa [ 710.958243] __alloc_pages_nodemask+0x182/0x600 [ 710.958929] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 710.959671] ? cap_capable+0x1cd/0x230 [ 710.960138] alloc_pages_current+0x187/0x280 [ 710.960685] __get_free_pages+0xc/0xa0 [ 710.961158] io_uring_setup+0xf9a/0x2980 [ 710.961677] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 710.962269] ? wait_for_completion_io+0x270/0x270 [ 710.962939] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 710.963564] ? syscall_enter_from_user_mode+0x1d/0x50 [ 710.964206] do_syscall_64+0x33/0x40 [ 710.964648] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 710.965274] RIP: 0033:0x7f084f4a7b19 [ 710.965712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 710.968142] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 710.969232] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 710.970268] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 710.971277] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 710.972319] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 710.973354] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:45:51 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 14) [ 711.005615] FAULT_INJECTION: forcing a failure. [ 711.005615] name failslab, interval 1, probability 0, space 0, times 0 [ 711.007791] CPU: 0 PID: 5898 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 711.008782] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 711.010018] Call Trace: [ 711.010414] dump_stack+0x107/0x167 [ 711.010947] should_fail.cold+0x5/0xa [ 711.011503] ? ext4_find_extent+0xa77/0xd70 [ 711.012131] should_failslab+0x5/0x20 [ 711.012685] __kmalloc+0x72/0x390 [ 711.013515] ? mark_lock+0xf5/0x2df0 [ 711.014469] ext4_find_extent+0xa77/0xd70 [ 711.015543] ext4_ext_map_blocks+0x1c8/0x5870 [ 711.016688] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 711.018036] ? SOFTIRQ_verbose+0x10/0x10 [ 711.018945] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 711.020139] ? SOFTIRQ_verbose+0x10/0x10 [ 711.021075] ? __lock_acquire+0x1657/0x5b00 [ 711.022094] ? ext4_ext_release+0x10/0x10 [ 711.023046] ? ext4_map_blocks+0x5cd/0x1910 [ 711.024047] ? lock_release+0x680/0x680 [ 711.024976] ? ext4_es_lookup_extent+0x485/0xa80 [ 711.026088] ? lock_downgrade+0x6d0/0x6d0 [ 711.027083] ? down_write+0xe0/0x160 [ 711.027911] ? down_write_killable+0x180/0x180 [ 711.029004] ext4_map_blocks+0x63f/0x1910 [ 711.029956] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 711.030961] ? trace_hardirqs_on+0x5b/0x180 [ 711.031954] ? kmem_cache_alloc+0x2a6/0x310 [ 711.032988] ext4_writepages+0x19bf/0x3350 [ 711.033961] ? vfs_fallocate+0x48f/0xda0 [ 711.034906] ? __x64_sys_fallocate+0xcf/0x140 [ 711.035912] ? do_syscall_64+0x33/0x40 [ 711.036823] ? lock_chain_count+0x20/0x20 [ 711.037814] ? mark_held_locks+0x9e/0xe0 [ 711.038754] ? __ext4_mark_inode_dirty+0x770/0x770 [ 711.039924] ? register_lock_class+0xbb/0x17b0 [ 711.040955] ? kmem_cache_free+0xa7/0x2d0 [ 711.041935] ? jbd2_journal_stop+0x61f/0xdc0 [ 711.042980] ? __lock_acquire+0x1657/0x5b00 [ 711.043970] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 711.045181] ? __ext4_mark_inode_dirty+0x770/0x770 [ 711.046323] do_writepages+0xee/0x2a0 [ 711.047204] ? page_writeback_cpu_online+0x20/0x20 [ 711.048321] ? lock_acquire+0x197/0x470 [ 711.049266] ? ext4_fallocate+0x21ac/0x3850 [ 711.050272] ? lock_release+0x680/0x680 [ 711.051170] __filemap_fdatawrite_range+0x24b/0x2f0 [ 711.052307] ? igrab+0xc0/0xc0 [ 711.053041] ? delete_from_page_cache_batch+0xa30/0xa30 [ 711.054277] ? down_write+0xe0/0x160 [ 711.055114] ? down_write_killable+0x180/0x180 [ 711.056159] filemap_write_and_wait_range+0x65/0x100 [ 711.057308] ext4_fallocate+0x220f/0x3850 [ 711.058245] ? __x64_sys_fallocate+0xcf/0x140 [ 711.059265] ? ext4_ext_truncate+0x250/0x250 [ 711.060270] ? selinux_file_permission+0x92/0x520 [ 711.061367] ? ext4_ext_truncate+0x250/0x250 [ 711.062347] vfs_fallocate+0x48f/0xda0 [ 711.063228] __x64_sys_fallocate+0xcf/0x140 [ 711.064193] do_syscall_64+0x33/0x40 [ 711.065042] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 711.066191] RIP: 0033:0x7f3b30543b19 [ 711.067025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 711.071276] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 711.072991] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 711.074591] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 711.076200] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 711.077802] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 711.079403] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 13:45:51 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) 13:45:51 executing program 7: perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 723.988760] FAULT_INJECTION: forcing a failure. [ 723.988760] name failslab, interval 1, probability 0, space 0, times 0 [ 723.988867] FAULT_INJECTION: forcing a failure. [ 723.988867] name failslab, interval 1, probability 0, space 0, times 0 [ 723.990198] CPU: 1 PID: 5914 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 723.990205] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 723.990209] Call Trace: [ 723.990227] dump_stack+0x107/0x167 [ 723.990240] should_fail.cold+0x5/0xa [ 723.990255] ? io_uring_setup+0x17ed/0x2980 [ 723.990267] should_failslab+0x5/0x20 [ 723.990279] kmem_cache_alloc_trace+0x55/0x320 [ 723.990289] ? alloc_pages_current+0x18f/0x280 [ 723.990303] io_uring_setup+0x17ed/0x2980 [ 723.990320] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 723.990331] ? wait_for_completion_io+0x270/0x270 [ 723.990358] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 723.990370] ? syscall_enter_from_user_mode+0x1d/0x50 [ 723.990384] do_syscall_64+0x33/0x40 [ 723.990395] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 723.990410] RIP: 0033:0x7f084f4a7b19 [ 724.002445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 724.004705] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 724.005647] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 724.006530] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 724.007414] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 724.008293] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 724.009175] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 724.010090] CPU: 0 PID: 5909 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 724.011573] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 724.013375] Call Trace: [ 724.013948] dump_stack+0x107/0x167 [ 724.014736] should_fail.cold+0x5/0xa [ 724.015563] ? ext4_mb_new_blocks+0x6a4/0x44b0 [ 724.016546] should_failslab+0x5/0x20 [ 724.017377] kmem_cache_alloc+0x5b/0x310 [ 724.018265] ext4_mb_new_blocks+0x6a4/0x44b0 [ 724.019230] ? trace_hardirqs_on+0x5b/0x180 [ 724.020166] ? kasan_unpoison_shadow+0x33/0x50 [ 724.021155] ? ext4_cache_extents+0x68/0x2d0 [ 724.022105] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 724.023198] ? ext4_discard_preallocations+0xd80/0xd80 [ 724.024328] ? ext4_ext_search_right+0x2e8/0xbd0 [ 724.025356] ? ext4_inode_to_goal_block+0x320/0x430 [ 724.026429] ext4_ext_map_blocks+0x1a55/0x5870 [ 724.027428] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.028556] ? SOFTIRQ_verbose+0x10/0x10 [ 724.029439] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.030564] ? SOFTIRQ_verbose+0x10/0x10 [ 724.031436] ? __lock_acquire+0x1657/0x5b00 [ 724.032370] ? ext4_ext_release+0x10/0x10 [ 724.033278] ? ext4_map_blocks+0x5cd/0x1910 [ 724.034212] ? lock_release+0x680/0x680 [ 724.035068] ? ext4_es_lookup_extent+0x485/0xa80 [ 724.036088] ? lock_downgrade+0x6d0/0x6d0 [ 724.037005] ? down_write_killable+0x180/0x180 [ 724.038010] ext4_map_blocks+0x63f/0x1910 [ 724.038917] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 724.039879] ? trace_hardirqs_on+0x5b/0x180 [ 724.040812] ? kmem_cache_alloc+0x2a6/0x310 [ 724.041757] ext4_writepages+0x19bf/0x3350 [ 724.042667] ? vfs_fallocate+0x48f/0xda0 [ 724.043530] ? __x64_sys_fallocate+0xcf/0x140 [ 724.044482] ? do_syscall_64+0x33/0x40 [ 724.045330] ? lock_chain_count+0x20/0x20 [ 724.046247] ? mark_held_locks+0x9e/0xe0 [ 724.047129] ? __ext4_mark_inode_dirty+0x770/0x770 [ 724.048178] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 724.049317] ? quarantine_put+0x8b/0x1a0 [ 724.050194] ? trace_hardirqs_on+0x5b/0x180 [ 724.051130] ? kmem_cache_free+0xa7/0x2d0 [ 724.052053] ? jbd2_journal_stop+0x61f/0xdc0 [ 724.053017] ? __lock_acquire+0x1657/0x5b00 [ 724.053967] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.055084] ? __ext4_mark_inode_dirty+0x770/0x770 [ 724.056143] do_writepages+0xee/0x2a0 [ 724.056975] ? page_writeback_cpu_online+0x20/0x20 [ 724.058028] ? lock_acquire+0x197/0x470 [ 724.058898] ? ext4_fallocate+0x21ac/0x3850 [ 724.059845] ? lock_release+0x680/0x680 [ 724.060700] __filemap_fdatawrite_range+0x24b/0x2f0 [ 724.061761] ? igrab+0xc0/0xc0 [ 724.062463] ? delete_from_page_cache_batch+0xa30/0xa30 [ 724.063607] ? down_write+0xe0/0x160 [ 724.064422] ? down_write_killable+0x180/0x180 [ 724.065433] filemap_write_and_wait_range+0x65/0x100 [ 724.066532] ext4_fallocate+0x220f/0x3850 [ 724.067419] ? __x64_sys_fallocate+0xcf/0x140 [ 724.068401] ? ext4_ext_truncate+0x250/0x250 [ 724.069342] ? selinux_file_permission+0x92/0x520 [ 724.070369] ? ext4_ext_truncate+0x250/0x250 [ 724.071307] vfs_fallocate+0x48f/0xda0 [ 724.072159] __x64_sys_fallocate+0xcf/0x140 [ 724.073088] do_syscall_64+0x33/0x40 [ 724.073885] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 724.074967] RIP: 0033:0x7f3b30543b19 [ 724.075749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 724.079620] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 724.081222] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 724.082744] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 724.084267] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 724.085968] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 724.087710] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 13:46:04 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 13) 13:46:04 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 15) 13:46:04 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x10f6e2, 0x0) r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) ftruncate(r0, 0x1000004) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) r5 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x300400, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, r5, 0x0, r2}, 0x0) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) r8 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000180)=0x0) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x1, 0x0, 0x0, {0x0, r11}}, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x3, 0x0, 0x0, 0x2, &(0x7f0000000140)={r6, r7+10000000}, 0x1, 0x0, 0x0, {0x0, r11}}, 0x3ff) write(r1, &(0x7f0000000200)='/', 0x1) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r12 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r12, 0x0, 0x2) copy_file_range(r0, 0x0, r12, 0x0, 0x200f5f4, 0x0) 13:46:04 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 14) 13:46:04 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0xc983040000000000, 0x4) 13:46:04 executing program 7: perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:46:04 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x2, 0x0, 0xfffffff7000) 13:46:04 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 724.122754] FAULT_INJECTION: forcing a failure. [ 724.122754] name failslab, interval 1, probability 0, space 0, times 0 [ 724.125959] CPU: 0 PID: 5927 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 724.127694] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 724.129814] Call Trace: [ 724.130492] dump_stack+0x107/0x167 [ 724.131427] should_fail.cold+0x5/0xa [ 724.132406] ? ext4_find_extent+0xa77/0xd70 [ 724.133512] should_failslab+0x5/0x20 [ 724.134469] __kmalloc+0x72/0x390 [ 724.135365] ? mark_lock+0xf5/0x2df0 [ 724.136320] ext4_find_extent+0xa77/0xd70 [ 724.137401] ext4_ext_map_blocks+0x1c8/0x5870 [ 724.138563] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.139888] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.141231] ? __lock_acquire+0x1657/0x5b00 [ 724.142318] ? ext4_ext_release+0x10/0x10 [ 724.143534] ? ext4_map_blocks+0x5cd/0x1910 [ 724.144624] ? lock_release+0x680/0x680 [ 724.145656] ? ext4_es_lookup_extent+0x485/0xa80 [ 724.146851] ? lock_downgrade+0x6d0/0x6d0 [ 724.147916] ? down_write+0xe0/0x160 [ 724.148855] ? down_write_killable+0x180/0x180 [ 724.150019] ext4_map_blocks+0x63f/0x1910 [ 724.151055] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 724.152192] ? trace_hardirqs_on+0x5b/0x180 [ 724.153280] ? kmem_cache_alloc+0x2a6/0x310 [ 724.154392] ext4_writepages+0x19bf/0x3350 [ 724.155455] ? vfs_fallocate+0x48f/0xda0 [ 724.156490] ? __x64_sys_fallocate+0xcf/0x140 [ 724.157620] ? do_syscall_64+0x33/0x40 [ 724.158615] ? lock_chain_count+0x20/0x20 [ 724.159674] ? mark_held_locks+0x9e/0xe0 [ 724.160697] ? __ext4_mark_inode_dirty+0x770/0x770 [ 724.161990] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 724.163305] ? quarantine_put+0x8b/0x1a0 [ 724.164322] ? trace_hardirqs_on+0x5b/0x180 [ 724.165427] ? kmem_cache_free+0xa7/0x2d0 [ 724.166490] ? jbd2_journal_stop+0x61f/0xdc0 [ 724.167632] ? __lock_acquire+0x1657/0x5b00 [ 724.168740] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.170097] ? __ext4_mark_inode_dirty+0x770/0x770 [ 724.171319] do_writepages+0xee/0x2a0 [ 724.172269] ? page_writeback_cpu_online+0x20/0x20 [ 724.173539] ? lock_acquire+0x197/0x470 [ 724.174540] ? ext4_fallocate+0x21ac/0x3850 [ 724.175616] ? lock_release+0x680/0x680 [ 724.176623] __filemap_fdatawrite_range+0x24b/0x2f0 [ 724.177887] ? igrab+0xc0/0xc0 [ 724.178687] ? delete_from_page_cache_batch+0xa30/0xa30 [ 724.180051] ? down_write+0xe0/0x160 [ 724.180977] ? down_write_killable+0x180/0x180 [ 724.182116] filemap_write_and_wait_range+0x65/0x100 [ 724.183389] ext4_fallocate+0x220f/0x3850 [ 724.184403] ? __x64_sys_fallocate+0xcf/0x140 [ 724.185548] ? ext4_ext_truncate+0x250/0x250 [ 724.186633] ? selinux_file_permission+0x92/0x520 [ 724.187837] ? ext4_ext_truncate+0x250/0x250 [ 724.188927] vfs_fallocate+0x48f/0xda0 [ 724.189925] __x64_sys_fallocate+0xcf/0x140 [ 724.190989] do_syscall_64+0x33/0x40 [ 724.191914] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 724.193214] RIP: 0033:0x7f518f061b19 [ 724.194124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 724.198620] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 724.200519] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 724.202296] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 724.204060] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 724.205816] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 724.207578] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 13:46:04 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0xfeffffff00000000, 0x4) 13:46:05 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x3, 0x0, 0xfffffff7000) 13:46:05 executing program 7: perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:46:05 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 16) [ 724.358590] FAULT_INJECTION: forcing a failure. [ 724.358590] name failslab, interval 1, probability 0, space 0, times 0 [ 724.359957] CPU: 1 PID: 5937 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 724.360731] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 724.361690] Call Trace: [ 724.361999] dump_stack+0x107/0x167 [ 724.362421] should_fail.cold+0x5/0xa [ 724.362858] ? create_object.isra.0+0x3a/0xa30 [ 724.363388] should_failslab+0x5/0x20 [ 724.363826] kmem_cache_alloc+0x5b/0x310 [ 724.364298] create_object.isra.0+0x3a/0xa30 [ 724.364803] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 724.365398] kmem_cache_alloc+0x159/0x310 [ 724.365877] ext4_mb_new_blocks+0x6a4/0x44b0 [ 724.366394] ? trace_hardirqs_on+0x5b/0x180 [ 724.366893] ? kasan_unpoison_shadow+0x33/0x50 [ 724.367411] ? ext4_cache_extents+0x68/0x2d0 [ 724.367914] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 724.368497] ? ext4_discard_preallocations+0xd80/0xd80 [ 724.369100] ? ext4_ext_search_right+0x2e8/0xbd0 [ 724.369644] ? ext4_inode_to_goal_block+0x320/0x430 [ 724.370221] ext4_ext_map_blocks+0x1a55/0x5870 [ 724.370755] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.371350] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.371947] ? __lock_acquire+0x1657/0x5b00 13:46:05 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 14) [ 724.372450] ? ext4_ext_release+0x10/0x10 [ 724.373071] ? ext4_map_blocks+0x5cd/0x1910 [ 724.373568] ? lock_release+0x680/0x680 [ 724.374024] ? ext4_es_lookup_extent+0x485/0xa80 [ 724.374564] ? lock_downgrade+0x6d0/0x6d0 [ 724.375055] ? down_write_killable+0x180/0x180 [ 724.375583] ext4_map_blocks+0x63f/0x1910 [ 724.376063] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 724.376571] ? trace_hardirqs_on+0x5b/0x180 [ 724.377079] ? kmem_cache_alloc+0x2a6/0x310 [ 724.377573] ext4_writepages+0x19bf/0x3350 [ 724.378054] ? vfs_fallocate+0x48f/0xda0 [ 724.378514] ? __x64_sys_fallocate+0xcf/0x140 [ 724.379025] ? do_syscall_64+0x33/0x40 [ 724.379469] ? lock_chain_count+0x20/0x20 [ 724.379956] ? mark_held_locks+0x9e/0xe0 [ 724.380425] ? __ext4_mark_inode_dirty+0x770/0x770 [ 724.380980] ? register_lock_class+0xbb/0x17b0 [ 724.381507] ? kmem_cache_free+0xa7/0x2d0 [ 724.381985] ? jbd2_journal_stop+0x61f/0xdc0 [ 724.382486] ? __lock_acquire+0x1657/0x5b00 [ 724.382986] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.383588] ? __ext4_mark_inode_dirty+0x770/0x770 [ 724.384144] do_writepages+0xee/0x2a0 [ 724.384585] ? page_writeback_cpu_online+0x20/0x20 [ 724.385147] ? lock_acquire+0x197/0x470 [ 724.385603] ? ext4_fallocate+0x21ac/0x3850 [ 724.386095] ? lock_release+0x680/0x680 [ 724.386558] __filemap_fdatawrite_range+0x24b/0x2f0 [ 724.387127] ? igrab+0xc0/0xc0 [ 724.387494] ? delete_from_page_cache_batch+0xa30/0xa30 [ 724.388100] ? down_write+0xe0/0x160 [ 724.388520] ? down_write_killable+0x180/0x180 [ 724.389051] filemap_write_and_wait_range+0x65/0x100 [ 724.389634] ext4_fallocate+0x220f/0x3850 [ 724.390107] ? __x64_sys_fallocate+0xcf/0x140 [ 724.390624] ? ext4_ext_truncate+0x250/0x250 [ 724.391130] ? selinux_file_permission+0x92/0x520 [ 724.391682] ? ext4_ext_truncate+0x250/0x250 [ 724.392184] vfs_fallocate+0x48f/0xda0 [ 724.392636] __x64_sys_fallocate+0xcf/0x140 [ 724.393137] do_syscall_64+0x33/0x40 [ 724.393558] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 724.394138] RIP: 0033:0x7f3b30543b19 [ 724.394561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 724.396647] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 724.397515] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 724.398329] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 724.399145] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 724.399955] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 724.400770] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 13:46:05 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 15) [ 724.420644] FAULT_INJECTION: forcing a failure. [ 724.420644] name failslab, interval 1, probability 0, space 0, times 0 [ 724.422180] CPU: 1 PID: 5940 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 724.422956] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 724.423905] Call Trace: [ 724.424208] dump_stack+0x107/0x167 [ 724.424623] should_fail.cold+0x5/0xa [ 724.425066] ? create_object.isra.0+0x3a/0xa30 [ 724.425586] should_failslab+0x5/0x20 [ 724.426021] kmem_cache_alloc+0x5b/0x310 [ 724.426483] ? lock_chain_count+0x20/0x20 [ 724.426959] create_object.isra.0+0x3a/0xa30 [ 724.427459] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 724.428041] __kmalloc+0x16e/0x390 [ 724.428446] ? mark_lock+0xf5/0x2df0 [ 724.428870] ext4_find_extent+0xa77/0xd70 [ 724.429356] ext4_ext_map_blocks+0x1c8/0x5870 [ 724.429876] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.430471] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.431071] ? __lock_acquire+0x1657/0x5b00 13:46:05 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0xffffffff00000000, 0x4) [ 724.431628] ? ext4_ext_release+0x10/0x10 [ 724.432141] ? ext4_map_blocks+0x5cd/0x1910 [ 724.432667] ? lock_release+0x680/0x680 [ 724.433127] ? ext4_es_lookup_extent+0x485/0xa80 [ 724.433664] ? lock_downgrade+0x6d0/0x6d0 [ 724.434143] ? down_write+0xe0/0x160 [ 724.434565] ? down_write_killable+0x180/0x180 [ 724.435088] ext4_map_blocks+0x63f/0x1910 [ 724.435565] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 724.436076] ? trace_hardirqs_on+0x5b/0x180 [ 724.436568] ? kmem_cache_alloc+0x2a6/0x310 [ 724.437069] ext4_writepages+0x19bf/0x3350 [ 724.437548] ? vfs_fallocate+0x48f/0xda0 [ 724.438007] ? __x64_sys_fallocate+0xcf/0x140 [ 724.438514] ? do_syscall_64+0x33/0x40 [ 724.438958] ? lock_chain_count+0x20/0x20 [ 724.439441] ? mark_held_locks+0x9e/0xe0 [ 724.439907] ? __ext4_mark_inode_dirty+0x770/0x770 [ 724.440465] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 724.441068] ? quarantine_put+0x8b/0x1a0 [ 724.441527] ? trace_hardirqs_on+0x5b/0x180 [ 724.442019] ? kmem_cache_free+0xa7/0x2d0 [ 724.442501] ? jbd2_journal_stop+0x61f/0xdc0 [ 724.443009] ? __lock_acquire+0x1657/0x5b00 [ 724.443506] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.444101] ? __ext4_mark_inode_dirty+0x770/0x770 [ 724.444655] do_writepages+0xee/0x2a0 [ 724.445096] ? page_writeback_cpu_online+0x20/0x20 [ 724.445653] ? lock_acquire+0x197/0x470 [ 724.446107] ? ext4_fallocate+0x21ac/0x3850 [ 724.446597] ? lock_release+0x680/0x680 [ 724.447057] __filemap_fdatawrite_range+0x24b/0x2f0 [ 724.447627] ? igrab+0xc0/0xc0 [ 724.447994] ? delete_from_page_cache_batch+0xa30/0xa30 [ 724.448603] ? down_write+0xe0/0x160 [ 724.449022] ? down_write_killable+0x180/0x180 [ 724.449551] filemap_write_and_wait_range+0x65/0x100 [ 724.450129] ext4_fallocate+0x220f/0x3850 [ 724.450599] ? __x64_sys_fallocate+0xcf/0x140 [ 724.451116] ? ext4_ext_truncate+0x250/0x250 [ 724.451615] ? selinux_file_permission+0x92/0x520 [ 724.452166] ? ext4_ext_truncate+0x250/0x250 [ 724.452671] vfs_fallocate+0x48f/0xda0 [ 724.453132] __x64_sys_fallocate+0xcf/0x140 [ 724.453620] do_syscall_64+0x33/0x40 [ 724.454043] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 724.454622] RIP: 0033:0x7f518f061b19 [ 724.455047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 724.457146] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 724.458003] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 724.458815] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 724.459620] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 724.460429] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 724.461247] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 [ 724.483927] FAULT_INJECTION: forcing a failure. [ 724.483927] name failslab, interval 1, probability 0, space 0, times 0 [ 724.485274] CPU: 1 PID: 5943 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 724.486048] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 724.486992] Call Trace: [ 724.487300] dump_stack+0x107/0x167 [ 724.487718] should_fail.cold+0x5/0xa [ 724.488154] ? create_object.isra.0+0x3a/0xa30 [ 724.488669] should_failslab+0x5/0x20 [ 724.489114] kmem_cache_alloc+0x5b/0x310 [ 724.489579] create_object.isra.0+0x3a/0xa30 [ 724.490078] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 724.490655] kmem_cache_alloc_trace+0x151/0x320 13:46:05 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0xa, 0x0, 0xfffffff7000) [ 724.491182] ? alloc_pages_current+0x18f/0x280 [ 724.491895] io_uring_setup+0x17ed/0x2980 [ 724.492417] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 724.492994] ? wait_for_completion_io+0x270/0x270 [ 724.493566] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 724.494164] ? syscall_enter_from_user_mode+0x1d/0x50 [ 724.494752] do_syscall_64+0x33/0x40 [ 724.495173] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 724.495750] RIP: 0033:0x7f084f4a7b19 [ 724.496172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 724.498267] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 724.499129] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 724.499940] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 724.500748] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 724.501568] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 724.502377] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:46:05 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 15) 13:46:05 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 16) 13:46:05 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 724.635937] FAULT_INJECTION: forcing a failure. [ 724.635937] name failslab, interval 1, probability 0, space 0, times 0 [ 724.637472] CPU: 1 PID: 5953 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 724.638416] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 724.639421] Call Trace: [ 724.639734] dump_stack+0x107/0x167 [ 724.640150] should_fail.cold+0x5/0xa [ 724.640588] ? copy_process+0x3305/0x78b0 [ 724.641075] should_failslab+0x5/0x20 [ 724.641509] kmem_cache_alloc_node+0x55/0x330 [ 724.642021] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 724.642626] copy_process+0x3305/0x78b0 [ 724.643077] ? SOFTIRQ_verbose+0x10/0x10 [ 724.643545] ? stack_trace_save+0x8c/0xc0 [ 724.644023] ? lock_acquire+0x197/0x470 [ 724.644479] ? io_sq_thread_park+0x79/0xd0 [ 724.644963] ? lock_release+0x680/0x680 [ 724.645424] ? __cleanup_sighand+0xb0/0xb0 [ 724.645905] ? kernel_text_address+0xf2/0x120 [ 724.646418] ? find_held_lock+0x2c/0x110 [ 724.646887] ? io_uring_setup+0x1c23/0x2980 [ 724.647380] ? lock_downgrade+0x6d0/0x6d0 [ 724.647860] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 724.648420] create_io_thread+0xb6/0xf0 [ 724.648873] ? pidfd_prepare+0x80/0x80 [ 724.649326] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 724.649894] io_uring_setup+0x1d79/0x2980 [ 724.650376] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 724.650953] ? wait_for_completion_io+0x270/0x270 [ 724.651529] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 724.652130] ? syscall_enter_from_user_mode+0x1d/0x50 [ 724.652716] do_syscall_64+0x33/0x40 [ 724.653149] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 724.653756] RIP: 0033:0x7f084f4a7b19 13:46:05 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0xf, 0x0, 0xfffffff7000) [ 724.654182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 724.656412] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 724.657292] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 724.658104] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 724.658910] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 724.659724] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 724.660533] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 724.681489] FAULT_INJECTION: forcing a failure. [ 724.681489] name failslab, interval 1, probability 0, space 0, times 0 [ 724.683174] CPU: 1 PID: 5954 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 724.684042] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 724.684987] Call Trace: [ 724.685299] dump_stack+0x107/0x167 [ 724.685720] should_fail.cold+0x5/0xa [ 724.686160] ? create_object.isra.0+0x3a/0xa30 [ 724.686679] should_failslab+0x5/0x20 [ 724.687112] kmem_cache_alloc+0x5b/0x310 [ 724.687575] ? lock_chain_count+0x20/0x20 [ 724.688050] create_object.isra.0+0x3a/0xa30 [ 724.688552] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 724.689141] __kmalloc+0x16e/0x390 [ 724.689542] ? mark_lock+0xf5/0x2df0 [ 724.689974] ext4_find_extent+0xa77/0xd70 [ 724.690458] ext4_ext_map_blocks+0x1c8/0x5870 [ 724.690983] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.691593] ? SOFTIRQ_verbose+0x10/0x10 [ 724.692054] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.692652] ? SOFTIRQ_verbose+0x10/0x10 [ 724.693121] ? __lock_acquire+0x1657/0x5b00 [ 724.693620] ? ext4_ext_release+0x10/0x10 [ 724.694093] ? ext4_map_blocks+0x5cd/0x1910 [ 724.694586] ? lock_release+0x680/0x680 [ 724.695040] ? ext4_es_lookup_extent+0x485/0xa80 [ 724.695575] ? lock_downgrade+0x6d0/0x6d0 [ 724.696054] ? down_write+0xe0/0x160 [ 724.696478] ? down_write_killable+0x180/0x180 [ 724.697008] ext4_map_blocks+0x63f/0x1910 [ 724.697493] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 724.698005] ? trace_hardirqs_on+0x5b/0x180 [ 724.698503] ? kmem_cache_alloc+0x2a6/0x310 [ 724.699000] ext4_writepages+0x19bf/0x3350 [ 724.699483] ? vfs_fallocate+0x48f/0xda0 [ 724.699942] ? __x64_sys_fallocate+0xcf/0x140 [ 724.700452] ? do_syscall_64+0x33/0x40 [ 724.700897] ? lock_chain_count+0x20/0x20 [ 724.701394] ? mark_held_locks+0x9e/0xe0 [ 724.701867] ? __ext4_mark_inode_dirty+0x770/0x770 [ 724.702423] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 724.703018] ? quarantine_put+0x8b/0x1a0 [ 724.703482] ? trace_hardirqs_on+0x5b/0x180 [ 724.703973] ? kmem_cache_free+0xa7/0x2d0 [ 724.704452] ? jbd2_journal_stop+0x61f/0xdc0 [ 724.704961] ? __lock_acquire+0x1657/0x5b00 [ 724.705469] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.706071] ? __ext4_mark_inode_dirty+0x770/0x770 [ 724.706634] do_writepages+0xee/0x2a0 [ 724.707068] ? page_writeback_cpu_online+0x20/0x20 [ 724.707627] ? lock_acquire+0x197/0x470 [ 724.708074] ? ext4_fallocate+0x21ac/0x3850 [ 724.708572] ? lock_release+0x680/0x680 [ 724.709035] __filemap_fdatawrite_range+0x24b/0x2f0 [ 724.709601] ? igrab+0xc0/0xc0 [ 724.709972] ? delete_from_page_cache_batch+0xa30/0xa30 [ 724.710583] ? down_write+0xe0/0x160 [ 724.711005] ? down_write_killable+0x180/0x180 [ 724.711531] filemap_write_and_wait_range+0x65/0x100 [ 724.712106] ext4_fallocate+0x220f/0x3850 [ 724.712577] ? __x64_sys_fallocate+0xcf/0x140 [ 724.713104] ? ext4_ext_truncate+0x250/0x250 [ 724.713606] ? selinux_file_permission+0x92/0x520 [ 724.714161] ? ext4_ext_truncate+0x250/0x250 [ 724.714665] vfs_fallocate+0x48f/0xda0 [ 724.715113] __x64_sys_fallocate+0xcf/0x140 [ 724.715615] do_syscall_64+0x33/0x40 [ 724.716038] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 724.716613] RIP: 0033:0x7f518f061b19 [ 724.717048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 724.719130] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 724.719995] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 724.720809] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 724.721634] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 724.722455] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 724.723261] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 13:46:05 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 17) 13:46:05 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:46:05 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 17) [ 724.836539] FAULT_INJECTION: forcing a failure. [ 724.836539] name failslab, interval 1, probability 0, space 0, times 0 [ 724.839300] CPU: 0 PID: 5963 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 724.840858] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 724.842745] Call Trace: [ 724.843358] dump_stack+0x107/0x167 [ 724.844196] should_fail.cold+0x5/0xa [ 724.845077] ? create_object.isra.0+0x3a/0xa30 [ 724.846121] should_failslab+0x5/0x20 [ 724.847001] kmem_cache_alloc+0x5b/0x310 [ 724.847945] create_object.isra.0+0x3a/0xa30 [ 724.848958] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 724.850137] kmem_cache_alloc_node+0x169/0x330 [ 724.851177] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 724.852392] copy_process+0x3305/0x78b0 [ 724.853309] ? SOFTIRQ_verbose+0x10/0x10 [ 724.854261] ? stack_trace_save+0x8c/0xc0 [ 724.855219] ? lock_acquire+0x197/0x470 [ 724.856142] ? io_sq_thread_park+0x79/0xd0 [ 724.857127] ? lock_release+0x680/0x680 [ 724.858043] ? __cleanup_sighand+0xb0/0xb0 [ 724.859006] ? kernel_text_address+0xf2/0x120 [ 724.860045] ? find_held_lock+0x2c/0x110 [ 724.860996] ? io_uring_setup+0x1c23/0x2980 [ 724.861986] ? lock_downgrade+0x6d0/0x6d0 [ 724.862962] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 724.864088] create_io_thread+0xb6/0xf0 [ 724.864997] ? pidfd_prepare+0x80/0x80 [ 724.865915] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 724.867071] io_uring_setup+0x1d79/0x2980 [ 724.868031] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 724.869197] ? wait_for_completion_io+0x270/0x270 [ 724.870346] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 724.871550] ? syscall_enter_from_user_mode+0x1d/0x50 [ 724.872744] do_syscall_64+0x33/0x40 [ 724.873600] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 724.874754] RIP: 0033:0x7f084f4a7b19 [ 724.875599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 724.879789] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 724.881528] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 724.883141] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 724.884761] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 724.886389] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 724.888014] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 724.910919] FAULT_INJECTION: forcing a failure. [ 724.910919] name failslab, interval 1, probability 0, space 0, times 0 [ 724.912539] CPU: 1 PID: 5965 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 724.913339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 724.914286] Call Trace: [ 724.914594] dump_stack+0x107/0x167 [ 724.915013] should_fail.cold+0x5/0xa [ 724.915452] ? __es_insert_extent+0xed1/0x1370 [ 724.915970] should_failslab+0x5/0x20 [ 724.916407] kmem_cache_alloc+0x5b/0x310 [ 724.916871] __es_insert_extent+0xed1/0x1370 [ 724.917394] ext4_es_insert_extent+0x45d/0xf10 [ 724.917921] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 724.918413] ? lock_downgrade+0x6d0/0x6d0 [ 724.918905] ? do_raw_read_unlock+0x3b/0x70 [ 724.919396] ? ext4_es_lookup_extent+0xc4/0xa80 [ 724.919939] ext4_map_blocks+0x80b/0x1910 [ 724.920420] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 724.920928] ? trace_hardirqs_on+0x5b/0x180 [ 724.921445] ? kmem_cache_alloc+0x2a6/0x310 [ 724.921948] ext4_writepages+0x19bf/0x3350 [ 724.922436] ? vfs_fallocate+0x48f/0xda0 [ 724.922900] ? __x64_sys_fallocate+0xcf/0x140 [ 724.923413] ? do_syscall_64+0x33/0x40 [ 724.923862] ? lock_chain_count+0x20/0x20 [ 724.924351] ? mark_held_locks+0x9e/0xe0 [ 724.924814] ? __ext4_mark_inode_dirty+0x770/0x770 [ 724.925379] ? register_lock_class+0xbb/0x17b0 [ 724.925897] ? kmem_cache_free+0xa7/0x2d0 [ 724.926385] ? jbd2_journal_stop+0x61f/0xdc0 [ 724.926894] ? __lock_acquire+0x1657/0x5b00 [ 724.927392] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 724.927983] ? __ext4_mark_inode_dirty+0x770/0x770 [ 724.928545] do_writepages+0xee/0x2a0 [ 724.928981] ? page_writeback_cpu_online+0x20/0x20 [ 724.929545] ? lock_acquire+0x197/0x470 [ 724.929996] ? ext4_fallocate+0x21ac/0x3850 [ 724.930490] ? lock_release+0x680/0x680 [ 724.930946] __filemap_fdatawrite_range+0x24b/0x2f0 [ 724.931512] ? igrab+0xc0/0xc0 [ 724.931878] ? delete_from_page_cache_batch+0xa30/0xa30 [ 724.932485] ? down_write+0xe0/0x160 [ 724.932907] ? down_write_killable+0x180/0x180 [ 724.933438] filemap_write_and_wait_range+0x65/0x100 [ 724.934021] ext4_fallocate+0x220f/0x3850 [ 724.934490] ? __x64_sys_fallocate+0xcf/0x140 [ 724.935005] ? ext4_ext_truncate+0x250/0x250 [ 724.935510] ? selinux_file_permission+0x92/0x520 [ 724.936062] ? ext4_ext_truncate+0x250/0x250 [ 724.936565] vfs_fallocate+0x48f/0xda0 [ 724.937014] __x64_sys_fallocate+0xcf/0x140 [ 724.937511] do_syscall_64+0x33/0x40 [ 724.937936] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 724.938521] RIP: 0033:0x7f3b30543b19 [ 724.938947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 724.941057] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 724.941919] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 724.942725] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 724.943532] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 724.944344] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 724.945166] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 13:46:17 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 18) 13:46:17 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 18) 13:46:17 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x3) 13:46:17 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 16) 13:46:17 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x10, 0x0, 0xfffffff7000) 13:46:17 executing program 4: r0 = syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x14000, 0xe, &(0x7f0000000200)=[{&(0x7f0000010000)="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"/1408, 0x580, 0x8000}, {&(0x7f0000010600)="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"/1408, 0x580, 0x8800}, {&(0x7f0000010c00)="ff43443030310100"/32, 0x20, 0x9000}, {&(0x7f0000010d00)="01001c0000000100000005001d000000010046494c4530000000000000000000", 0x20, 0xa000}, {&(0x7f0000010e00)="01000000001c0001000005000000001d000146494c4530000000000000000000", 0x20, 0xb000}, {&(0x7f0000010f00)="01001e000000010000000a001f000000010000660069006c0065003000000000", 0x20, 0xc000}, {&(0x7f0000000040)="01000000001e0001ec77eb57da0c54345c4400000b000000001f000100660069006c0065003000000000", 0x2a, 0xd000}, {&(0x7f0000011100)="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"/288, 0x120, 0xe000}, {&(0x7f0000011300)="22001d0000000000001d00080000000008007809140b2a3a0802000001000001010022001c0000000000001c00080000000008007809140b2a3a080200000100000101012a0027000000000000271a0400000000041a7809140b2a3a08000000010000010846494c45302e3b3100"/128, 0x80, 0xe800}, {&(0x7f0000011400)="22001e0000000000001e00080000000008007809140b2a3a0802000001000001010022001e0000000000001e00080000000008007809140b2a3a080200000100000101013400200000000000002064000000000000647809140b2a3a08000000010000011200660069006c0065002e0063006f006c0064002c001f0000000000001f00080000000008007809140b2a3a08020000010000010a00660069006c00650030002c0021000000000000210a0000000000000a7809140b2a3a08000000010000010a00660069006c00650031002c00220000000000002228230000000023287809140b2a3a08000000010000010a00660069006c00650032002c00220000000000002228230000000023287809140b2a3a08000000010000010a00660069006c0065003300"/320, 0x140, 0xf000}, {&(0x7f0000011600)="22001f0000000000001f00080000000008007809140b2a3a0802000001000001010022001e0000000000001e00080000000008007809140b2a3a080200000100000101012c0027000000000000271a0400000000041a7809140b2a3a08000000010000010a00660069006c0065003000"/128, 0x80, 0xf800}, {&(0x7f0000011700)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x10000}, {&(0x7f0000011800)='syzkallers\x00'/32, 0x20, 0x10800}, {&(0x7f0000011900)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x13800}], 0x0, &(0x7f0000011e00)) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000140)=0x0) stat(&(0x7f0000000180)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f00000004c0)={0x0, 0x0, 0x0}, &(0x7f0000000540)=0xc) chown(&(0x7f0000000040)='./file0\x00', 0x0, r4) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, {0xee01, 0xee01}}, './file0\x00'}) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f00000004c0)={0x0, 0x0, 0x0}, &(0x7f0000000540)=0xc) chown(&(0x7f0000000040)='./file0\x00', 0x0, r7) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000400)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff, 0xee00}}, './file0\x00'}) setxattr$system_posix_acl(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f0000000440)={{}, {0x1, 0x5}, [{0x2, 0x4, 0xee01}, {0x2, 0x6, r1}], {0x4, 0x4}, [{0x8, 0x2, r2}, {0x8, 0x6, r4}, {0x8, 0x5, r5}, {0x8, 0x4, r7}, {0x8, 0xb170848d3277e70e, 0xee00}, {0x8, 0x4, r8}], {0x10, 0x2}, {0x20, 0x1}}, 0x64, 0x1) 13:46:17 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:46:17 executing program 7: semget$private(0x0, 0x0, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 736.512077] FAULT_INJECTION: forcing a failure. [ 736.512077] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 736.514593] CPU: 1 PID: 5984 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 736.516033] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 736.517784] Call Trace: [ 736.518341] dump_stack+0x107/0x167 [ 736.519115] should_fail.cold+0x5/0xa [ 736.519922] __alloc_pages_nodemask+0x182/0x600 [ 736.520901] ? lock_downgrade+0x6d0/0x6d0 [ 736.521793] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 736.523058] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 736.523680] FAULT_INJECTION: forcing a failure. [ 736.523680] name failslab, interval 1, probability 0, space 0, times 0 [ 736.524146] ? kmem_cache_alloc_node+0x2bc/0x330 [ 736.524172] copy_process+0x62b/0x78b0 [ 736.524189] ? SOFTIRQ_verbose+0x10/0x10 [ 736.524214] ? stack_trace_save+0x8c/0xc0 [ 736.524238] ? lock_acquire+0x197/0x470 [ 736.524261] ? io_sq_thread_park+0x79/0xd0 [ 736.531742] ? lock_release+0x680/0x680 [ 736.532584] ? __cleanup_sighand+0xb0/0xb0 [ 736.533485] ? kernel_text_address+0xf2/0x120 [ 736.534439] ? find_held_lock+0x2c/0x110 [ 736.535294] ? io_uring_setup+0x1c23/0x2980 [ 736.536206] ? lock_downgrade+0x6d0/0x6d0 [ 736.537082] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 736.538114] create_io_thread+0xb6/0xf0 [ 736.538948] ? pidfd_prepare+0x80/0x80 [ 736.539768] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 736.540825] io_uring_setup+0x1d79/0x2980 [ 736.541715] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 736.542780] ? wait_for_completion_io+0x270/0x270 [ 736.543808] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 736.544909] ? syscall_enter_from_user_mode+0x1d/0x50 [ 736.546011] do_syscall_64+0x33/0x40 [ 736.546792] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 736.547871] RIP: 0033:0x7f084f4a7b19 [ 736.548649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 736.552519] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 736.554128] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 736.555630] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 736.557122] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 736.558627] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 736.560124] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 736.561663] CPU: 0 PID: 5985 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 736.563121] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 736.564866] Call Trace: [ 736.565440] dump_stack+0x107/0x167 [ 736.566224] should_fail.cold+0x5/0xa [ 736.567030] ? kmem_cache_free+0x249/0x2d0 [ 736.567923] ? create_object.isra.0+0x3a/0xa30 [ 736.568890] should_failslab+0x5/0x20 [ 736.569704] kmem_cache_alloc+0x5b/0x310 [ 736.570575] create_object.isra.0+0x3a/0xa30 [ 736.571501] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 736.572579] kmem_cache_alloc+0x159/0x310 [ 736.573469] __es_insert_extent+0xed1/0x1370 [ 736.574424] ext4_es_insert_extent+0x45d/0xf10 [ 736.575400] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 736.576312] ? lock_downgrade+0x6d0/0x6d0 [ 736.577214] ? do_raw_read_unlock+0x3b/0x70 [ 736.578133] ? ext4_es_lookup_extent+0xc4/0xa80 [ 736.579132] ext4_map_blocks+0x80b/0x1910 [ 736.580023] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 736.580969] ? trace_hardirqs_on+0x5b/0x180 [ 736.581905] ? kmem_cache_alloc+0x2a6/0x310 [ 736.582834] ext4_writepages+0x19bf/0x3350 [ 736.583730] ? vfs_fallocate+0x48f/0xda0 [ 736.584583] ? __x64_sys_fallocate+0xcf/0x140 [ 736.585537] ? do_syscall_64+0x33/0x40 [ 736.586363] ? lock_chain_count+0x20/0x20 [ 736.587273] ? mark_held_locks+0x9e/0xe0 [ 736.588127] ? __ext4_mark_inode_dirty+0x770/0x770 [ 736.589172] ? register_lock_class+0xbb/0x17b0 [ 736.590137] ? kmem_cache_free+0xa7/0x2d0 [ 736.591029] ? jbd2_journal_stop+0x61f/0xdc0 [ 736.591991] ? __lock_acquire+0x1657/0x5b00 [ 736.592931] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 736.594052] ? __ext4_mark_inode_dirty+0x770/0x770 [ 736.595088] do_writepages+0xee/0x2a0 [ 736.595896] ? page_writeback_cpu_online+0x20/0x20 [ 736.596935] ? lock_acquire+0x197/0x470 [ 736.597785] ? ext4_fallocate+0x21ac/0x3850 [ 736.598702] ? lock_release+0x680/0x680 [ 736.599549] __filemap_fdatawrite_range+0x24b/0x2f0 [ 736.600618] ? igrab+0xc0/0xc0 [ 736.601303] ? delete_from_page_cache_batch+0xa30/0xa30 [ 736.602429] ? down_write+0xe0/0x160 [ 736.603217] ? down_write_killable+0x180/0x180 [ 736.604197] filemap_write_and_wait_range+0x65/0x100 [ 736.605271] ext4_fallocate+0x220f/0x3850 [ 736.606254] ? __x64_sys_fallocate+0xcf/0x140 [ 736.607438] ? ext4_ext_truncate+0x250/0x250 [ 736.608558] ? selinux_file_permission+0x92/0x520 [ 736.609819] ? ext4_ext_truncate+0x250/0x250 [ 736.610953] vfs_fallocate+0x48f/0xda0 [ 736.611971] __x64_sys_fallocate+0xcf/0x140 [ 736.613083] do_syscall_64+0x33/0x40 [ 736.614059] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 736.615371] RIP: 0033:0x7f3b30543b19 [ 736.616337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 736.621068] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 736.621195] FAULT_INJECTION: forcing a failure. [ 736.621195] name failslab, interval 1, probability 0, space 0, times 0 [ 736.623005] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 736.623018] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 736.623030] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 736.623048] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 736.632533] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 [ 736.634396] CPU: 1 PID: 5983 Comm: syz-executor.3 Not tainted 5.10.254 #1 13:46:17 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x13, 0x0, 0xfffffff7000) [ 736.635805] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 736.637799] Call Trace: [ 736.638336] dump_stack+0x107/0x167 [ 736.638812] loop4: detected capacity change from 0 to 159744 [ 736.639090] should_fail.cold+0x5/0xa [ 736.639111] ? create_object.isra.0+0x3a/0xa30 [ 736.639129] should_failslab+0x5/0x20 [ 736.639147] kmem_cache_alloc+0x5b/0x310 [ 736.639169] ? do_syscall_64+0x33/0x40 [ 736.644797] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 736.645931] create_object.isra.0+0x3a/0xa30 [ 736.646858] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 736.647935] kmem_cache_alloc+0x159/0x310 [ 736.648818] ext4_mb_new_blocks+0x6a4/0x44b0 [ 736.649770] ? trace_hardirqs_on+0x5b/0x180 [ 736.650685] ? kasan_unpoison_shadow+0x33/0x50 [ 736.651645] ? ext4_cache_extents+0x68/0x2d0 [ 736.652574] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 736.653658] ? ext4_discard_preallocations+0xd80/0xd80 [ 736.654786] ? ext4_ext_search_right+0x2e8/0xbd0 [ 736.655931] ? ext4_inode_to_goal_block+0x320/0x430 [ 736.657000] ext4_ext_map_blocks+0x1a55/0x5870 [ 736.657984] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 736.659078] ? SOFTIRQ_verbose+0x10/0x10 [ 736.659929] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 736.661029] ? SOFTIRQ_verbose+0x10/0x10 [ 736.661894] ? __lock_acquire+0x1657/0x5b00 [ 736.662815] ? ext4_ext_release+0x10/0x10 [ 736.663690] ? ext4_map_blocks+0x5cd/0x1910 [ 736.664644] ? lock_release+0x680/0x680 [ 736.665560] ? ext4_es_lookup_extent+0x485/0xa80 [ 736.666622] ? lock_downgrade+0x6d0/0x6d0 [ 736.667576] ? down_write_killable+0x180/0x180 [ 736.668612] ext4_map_blocks+0x63f/0x1910 [ 736.669570] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 736.670579] ? trace_hardirqs_on+0x5b/0x180 [ 736.671558] ? kmem_cache_alloc+0x2a6/0x310 [ 736.672544] ext4_writepages+0x19bf/0x3350 [ 736.673513] ? vfs_fallocate+0x48f/0xda0 [ 736.674429] ? __x64_sys_fallocate+0xcf/0x140 [ 736.675427] ? do_syscall_64+0x33/0x40 [ 736.676309] ? lock_chain_count+0x20/0x20 [ 736.677248] ? mark_held_locks+0x9e/0xe0 [ 736.678189] ? __lock_acquire+0x1657/0x5b00 [ 736.679161] ? __ext4_mark_inode_dirty+0x770/0x770 [ 736.680269] ? mark_lock+0xf5/0x2df0 [ 736.681126] ? lock_chain_count+0x20/0x20 [ 736.682101] ? __lock_acquire+0x1657/0x5b00 [ 736.683082] ? mark_held_locks+0x9e/0xe0 [ 736.684002] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 736.685194] ? __ext4_mark_inode_dirty+0x770/0x770 [ 736.686294] do_writepages+0xee/0x2a0 [ 736.687154] ? page_writeback_cpu_online+0x20/0x20 [ 736.688268] ? lock_acquire+0x197/0x470 [ 736.689177] ? ext4_fallocate+0x21ac/0x3850 [ 736.690155] ? lock_release+0x680/0x680 [ 736.691069] __filemap_fdatawrite_range+0x24b/0x2f0 [ 736.692189] ? igrab+0xc0/0xc0 [ 736.692936] ? delete_from_page_cache_batch+0xa30/0xa30 [ 736.694168] ? down_write+0xe0/0x160 [ 736.695008] ? down_write_killable+0x180/0x180 [ 736.696038] filemap_write_and_wait_range+0x65/0x100 [ 736.697197] ext4_fallocate+0x220f/0x3850 [ 736.698126] ? __x64_sys_fallocate+0xcf/0x140 [ 736.699148] ? ext4_ext_truncate+0x250/0x250 [ 736.700135] ? selinux_file_permission+0x92/0x520 [ 736.701234] ? ext4_ext_truncate+0x250/0x250 [ 736.702220] vfs_fallocate+0x48f/0xda0 [ 736.703103] __x64_sys_fallocate+0xcf/0x140 [ 736.704069] do_syscall_64+0x33/0x40 [ 736.704907] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 736.706067] RIP: 0033:0x7f518f061b19 [ 736.706908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 736.711004] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 736.712707] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 736.714305] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 736.715900] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 736.717499] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 736.719089] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 13:46:17 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 19) 13:46:17 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x15, 0x0, 0xfffffff7000) 13:46:17 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 19) [ 736.940987] FAULT_INJECTION: forcing a failure. [ 736.940987] name failslab, interval 1, probability 0, space 0, times 0 [ 736.944546] CPU: 0 PID: 6002 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 736.946090] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 736.947852] Call Trace: [ 736.948427] dump_stack+0x107/0x167 [ 736.949214] should_fail.cold+0x5/0xa [ 736.950029] ? kmem_cache_free+0x249/0x2d0 [ 736.950939] ? create_object.isra.0+0x3a/0xa30 [ 736.951913] should_failslab+0x5/0x20 [ 736.952731] kmem_cache_alloc+0x5b/0x310 [ 736.953620] create_object.isra.0+0x3a/0xa30 [ 736.954569] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 736.955657] kmem_cache_alloc+0x159/0x310 [ 736.956559] __es_insert_extent+0xed1/0x1370 [ 736.957531] ext4_es_insert_extent+0x45d/0xf10 [ 736.958520] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 736.959442] ? lock_downgrade+0x6d0/0x6d0 [ 736.960340] ? do_raw_read_unlock+0x3b/0x70 [ 736.961276] ? ext4_es_lookup_extent+0xc4/0xa80 [ 736.962280] ext4_map_blocks+0x80b/0x1910 [ 736.963191] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 736.964147] ? trace_hardirqs_on+0x5b/0x180 [ 736.965076] ? kmem_cache_alloc+0x2a6/0x310 [ 736.966023] ext4_writepages+0x19bf/0x3350 [ 736.966927] ? vfs_fallocate+0x48f/0xda0 [ 736.967797] ? __x64_sys_fallocate+0xcf/0x140 [ 736.968748] ? do_syscall_64+0x33/0x40 [ 736.969602] ? lock_chain_count+0x20/0x20 [ 736.970513] ? mark_held_locks+0x9e/0xe0 [ 736.971378] ? __ext4_mark_inode_dirty+0x770/0x770 [ 736.972422] ? register_lock_class+0xbb/0x17b0 [ 736.973401] ? kmem_cache_free+0xa7/0x2d0 [ 736.974306] ? jbd2_journal_stop+0x61f/0xdc0 [ 736.975249] ? __lock_acquire+0x1657/0x5b00 [ 736.976195] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 736.977335] ? __ext4_mark_inode_dirty+0x770/0x770 [ 736.978602] do_writepages+0xee/0x2a0 [ 736.979487] ? page_writeback_cpu_online+0x20/0x20 [ 736.980747] ? lock_acquire+0x197/0x470 [ 736.981669] ? ext4_fallocate+0x21ac/0x3850 [ 736.982593] ? lock_release+0x680/0x680 [ 736.983448] __filemap_fdatawrite_range+0x24b/0x2f0 [ 736.984503] ? igrab+0xc0/0xc0 [ 736.985205] ? delete_from_page_cache_batch+0xa30/0xa30 [ 736.986348] ? down_write+0xe0/0x160 [ 736.987151] ? down_write_killable+0x180/0x180 [ 736.988133] filemap_write_and_wait_range+0x65/0x100 [ 736.989226] ext4_fallocate+0x220f/0x3850 [ 736.990107] ? __x64_sys_fallocate+0xcf/0x140 [ 736.991075] ? ext4_ext_truncate+0x250/0x250 [ 736.992013] ? selinux_file_permission+0x92/0x520 [ 736.993048] ? ext4_ext_truncate+0x250/0x250 [ 736.994000] vfs_fallocate+0x48f/0xda0 [ 736.994836] __x64_sys_fallocate+0xcf/0x140 [ 736.995756] do_syscall_64+0x33/0x40 [ 736.996555] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 736.997660] RIP: 0033:0x7f3b30543b19 [ 736.998472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 737.002354] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 737.003976] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 737.005500] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 737.007016] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 737.008526] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 737.010045] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 [ 737.029694] FAULT_INJECTION: forcing a failure. [ 737.029694] name failslab, interval 1, probability 0, space 0, times 0 [ 737.032517] CPU: 0 PID: 6005 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 737.034005] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 737.035775] Call Trace: [ 737.036355] dump_stack+0x107/0x167 [ 737.037152] should_fail.cold+0x5/0xa [ 737.037997] ? __delayacct_tsk_init+0x1b/0x80 [ 737.038967] should_failslab+0x5/0x20 [ 737.039794] kmem_cache_alloc+0x5b/0x310 [ 737.040694] __delayacct_tsk_init+0x1b/0x80 [ 737.041639] copy_process+0x3399/0x78b0 [ 737.042502] ? SOFTIRQ_verbose+0x10/0x10 [ 737.043399] ? stack_trace_save+0x8c/0xc0 [ 737.044307] ? lock_acquire+0x197/0x470 [ 737.045176] ? io_sq_thread_park+0x79/0xd0 [ 737.046113] ? __cleanup_sighand+0xb0/0xb0 [ 737.047021] ? kernel_text_address+0xf2/0x120 [ 737.048003] ? find_held_lock+0x2c/0x110 [ 737.048902] ? io_uring_setup+0x1c23/0x2980 [ 737.049844] ? lock_downgrade+0x6d0/0x6d0 [ 737.050746] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 737.051800] create_io_thread+0xb6/0xf0 [ 737.052658] ? pidfd_prepare+0x80/0x80 [ 737.053525] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 737.054620] io_uring_setup+0x1d79/0x2980 [ 737.055535] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 737.056627] ? wait_for_completion_io+0x270/0x270 [ 737.057742] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 737.058868] ? syscall_enter_from_user_mode+0x1d/0x50 [ 737.059985] do_syscall_64+0x33/0x40 [ 737.060796] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 737.061906] RIP: 0033:0x7f084f4a7b19 [ 737.062707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 737.066620] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 737.068248] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 737.069780] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 737.071299] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 737.072815] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 737.074342] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 750.081510] loop4: detected capacity change from 0 to 159744 13:46:30 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 17) 13:46:30 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x16, 0x0, 0xfffffff7000) 13:46:30 executing program 4: r0 = syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x14000, 0xe, &(0x7f0000000200)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d20202020202020202020202020202020202020202020202020202000000000000000002800000000000028000000000000000000000000000000000000000000000000000000000000000001000001010000010008080018000000000000181400000000000000000000160000000022001c0000000000001c00080000000008007809140b2a3a08020000010000010100202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202073797a6b616c6c65722020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202047454e49534f494d4147452049534f20393636302f4846532046494c4553595354454d2043524541544f5220284329203139393320452e594f554e4744414c452028432920313939372d32303036204a2e50454152534f4e2f4a2e534348494c4c494e472028432920323030362d32303037204344524b4954205445414d202066696c6533202020202020202020202020202020202020202020202020202020202020202066696c6531202020202020202020202020202020202020202020202020202020202020202066696c6532202020202020202020202020202020202020202020202020202020202020202032303230303932303131343235383030083230323030393230313134323538303008303030303030303030303030303030300032303230303932303131343235383030080100202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202020202000"/1408, 0x580, 0x8000}, {&(0x7f0000010600)="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"/1408, 0x580, 0x8800}, {&(0x7f0000010c00)="ff43443030310100"/32, 0x20, 0x9000}, {&(0x7f0000010d00)="01001c0000000100000005001d000000010046494c4530000000000000000000", 0x20, 0xa000}, {&(0x7f0000010e00)="01000000001c0001000005000000001d000146494c4530000000000000000000", 0x20, 0xb000}, {&(0x7f0000010f00)="01001e000000010000000a001f000000010000660069006c0065003000000000", 0x20, 0xc000}, {&(0x7f0000000040)="01000000001e0001ec77eb57da0c54345c4400000b000000001f000100660069006c0065003000000000", 0x2a, 0xd000}, {&(0x7f0000011100)="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"/288, 0x120, 0xe000}, {&(0x7f0000011300)="22001d0000000000001d00080000000008007809140b2a3a0802000001000001010022001c0000000000001c00080000000008007809140b2a3a080200000100000101012a0027000000000000271a0400000000041a7809140b2a3a08000000010000010846494c45302e3b3100"/128, 0x80, 0xe800}, {&(0x7f0000011400)="22001e0000000000001e00080000000008007809140b2a3a0802000001000001010022001e0000000000001e00080000000008007809140b2a3a080200000100000101013400200000000000002064000000000000647809140b2a3a08000000010000011200660069006c0065002e0063006f006c0064002c001f0000000000001f00080000000008007809140b2a3a08020000010000010a00660069006c00650030002c0021000000000000210a0000000000000a7809140b2a3a08000000010000010a00660069006c00650031002c00220000000000002228230000000023287809140b2a3a08000000010000010a00660069006c00650032002c00220000000000002228230000000023287809140b2a3a08000000010000010a00660069006c0065003300"/320, 0x140, 0xf000}, {&(0x7f0000011600)="22001f0000000000001f00080000000008007809140b2a3a0802000001000001010022001e0000000000001e00080000000008007809140b2a3a080200000100000101012c0027000000000000271a0400000000041a7809140b2a3a08000000010000010a00660069006c0065003000"/128, 0x80, 0xf800}, {&(0x7f0000011700)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x10000}, {&(0x7f0000011800)='syzkallers\x00'/32, 0x20, 0x10800}, {&(0x7f0000011900)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x13800}], 0x0, &(0x7f0000011e00)) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000140)=0x0) stat(&(0x7f0000000180)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f00000004c0)={0x0, 0x0, 0x0}, &(0x7f0000000540)=0xc) chown(&(0x7f0000000040)='./file0\x00', 0x0, r4) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, {0xee01, 0xee01}}, './file0\x00'}) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f00000004c0)={0x0, 0x0, 0x0}, &(0x7f0000000540)=0xc) chown(&(0x7f0000000040)='./file0\x00', 0x0, r7) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000400)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff, 0xee00}}, './file0\x00'}) setxattr$system_posix_acl(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f0000000440)={{}, {0x1, 0x5}, [{0x2, 0x4, 0xee01}, {0x2, 0x6, r1}], {0x4, 0x4}, [{0x8, 0x2, r2}, {0x8, 0x6, r4}, {0x8, 0x5, r5}, {0x8, 0x4, r7}, {0x8, 0xb170848d3277e70e, 0xee00}, {0x8, 0x4, r8}], {0x10, 0x2}, {0x20, 0x1}}, 0x64, 0x1) 13:46:30 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(0x0, 0x0, 0xb) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:46:30 executing program 7: semget$private(0x0, 0x0, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:46:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='./file1\x00', 0x6a0040, 0x29) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:46:30 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 20) 13:46:30 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 20) [ 750.097525] FAULT_INJECTION: forcing a failure. [ 750.097525] name failslab, interval 1, probability 0, space 0, times 0 [ 750.100432] CPU: 0 PID: 6027 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 750.101622] FAULT_INJECTION: forcing a failure. [ 750.101622] name failslab, interval 1, probability 0, space 0, times 0 [ 750.102162] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 750.102172] Call Trace: [ 750.102204] dump_stack+0x107/0x167 [ 750.102238] should_fail.cold+0x5/0xa [ 750.102270] ? create_object.isra.0+0x3a/0xa30 [ 750.110256] should_failslab+0x5/0x20 [ 750.111043] kmem_cache_alloc+0x5b/0x310 [ 750.111910] create_object.isra.0+0x3a/0xa30 [ 750.112825] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 750.113914] kmem_cache_alloc+0x159/0x310 [ 750.114790] __delayacct_tsk_init+0x1b/0x80 [ 750.115688] copy_process+0x3399/0x78b0 [ 750.116543] ? SOFTIRQ_verbose+0x10/0x10 [ 750.117424] ? stack_trace_save+0x8c/0xc0 [ 750.118310] ? lock_acquire+0x197/0x470 [ 750.119138] ? io_sq_thread_park+0x79/0xd0 [ 750.120038] ? __cleanup_sighand+0xb0/0xb0 [ 750.120919] ? kernel_text_address+0xf2/0x120 [ 750.121870] ? find_held_lock+0x2c/0x110 [ 750.122731] ? io_uring_setup+0x1c23/0x2980 [ 750.123625] ? lock_downgrade+0x6d0/0x6d0 [ 750.124498] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 750.125532] create_io_thread+0xb6/0xf0 [ 750.126384] ? pidfd_prepare+0x80/0x80 [ 750.127206] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 750.128270] io_uring_setup+0x1d79/0x2980 [ 750.129153] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 750.130227] ? wait_for_completion_io+0x270/0x270 [ 750.131276] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 750.132383] ? syscall_enter_from_user_mode+0x1d/0x50 [ 750.133497] do_syscall_64+0x33/0x40 [ 750.134290] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 750.135366] RIP: 0033:0x7f084f4a7b19 [ 750.136144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 750.139937] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 750.141529] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 750.143024] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 750.144501] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 750.145992] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 750.147494] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 750.149056] CPU: 1 PID: 6026 Comm: syz-executor.5 Not tainted 5.10.254 #1 [ 750.150525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 750.152275] Call Trace: [ 750.152851] dump_stack+0x107/0x167 [ 750.153658] should_fail.cold+0x5/0xa [ 750.154467] ? create_object.isra.0+0x3a/0xa30 [ 750.155446] should_failslab+0x5/0x20 [ 750.156260] kmem_cache_alloc+0x5b/0x310 [ 750.157133] create_object.isra.0+0x3a/0xa30 [ 750.158076] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 750.159161] kmem_cache_alloc+0x159/0x310 [ 750.160055] ? mempool_free_pages+0x20/0x20 [ 750.160959] mempool_alloc+0x148/0x360 [ 750.161806] ? mempool_resize+0x7d0/0x7d0 [ 750.162707] ? __test_set_page_writeback+0x160/0xbb0 [ 750.163795] bio_alloc_bioset+0x36e/0x600 [ 750.164680] ? bvec_alloc+0x2f0/0x2f0 [ 750.165503] ? invalid_page_referenced_vma+0x570/0x570 [ 750.166637] ext4_bio_write_page+0xa79/0x1480 [ 750.167618] mpage_submit_page+0x14b/0x260 [ 750.168519] ext4_writepages+0x1f2e/0x3350 [ 750.169484] ? __ext4_mark_inode_dirty+0x770/0x770 [ 750.170520] ? quarantine_put+0x8b/0x1a0 [ 750.171387] ? trace_hardirqs_on+0x5b/0x180 [ 750.172306] ? kmem_cache_free+0xa7/0x2d0 [ 750.173204] ? jbd2_journal_stop+0x61f/0xdc0 [ 750.174159] ? __lock_acquire+0x1657/0x5b00 [ 750.175109] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 750.176210] ? __ext4_mark_inode_dirty+0x770/0x770 [ 750.177251] do_writepages+0xee/0x2a0 [ 750.178080] ? page_writeback_cpu_online+0x20/0x20 [ 750.179121] ? lock_acquire+0x197/0x470 [ 750.179958] ? ext4_fallocate+0x21ac/0x3850 [ 750.180875] ? lock_release+0x680/0x680 [ 750.181734] __filemap_fdatawrite_range+0x24b/0x2f0 [ 750.182786] ? igrab+0xc0/0xc0 [ 750.183471] ? delete_from_page_cache_batch+0xa30/0xa30 [ 750.184616] ? down_write+0xe0/0x160 [ 750.185422] ? down_write_killable+0x180/0x180 [ 750.186400] filemap_write_and_wait_range+0x65/0x100 [ 750.187470] ext4_fallocate+0x220f/0x3850 [ 750.188350] ? __x64_sys_fallocate+0xcf/0x140 [ 750.189329] ? ext4_ext_truncate+0x250/0x250 [ 750.190262] ? selinux_file_permission+0x92/0x520 [ 750.191300] ? ext4_ext_truncate+0x250/0x250 [ 750.192237] vfs_fallocate+0x48f/0xda0 [ 750.193070] __x64_sys_fallocate+0xcf/0x140 [ 750.194001] do_syscall_64+0x33/0x40 [ 750.194801] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 750.195876] RIP: 0033:0x7f3b30543b19 [ 750.196667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 750.200567] RSP: 002b:00007f3b2dab9188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 750.202189] RAX: ffffffffffffffda RBX: 00007f3b30656f60 RCX: 00007f3b30543b19 [ 750.203699] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 750.205209] RBP: 00007f3b2dab91d0 R08: 0000000000000000 R09: 0000000000000000 [ 750.206719] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 750.208238] R13: 00007fff8c3a313f R14: 00007f3b2dab9300 R15: 0000000000022000 [ 750.217752] FAULT_INJECTION: forcing a failure. [ 750.217752] name failslab, interval 1, probability 0, space 0, times 0 [ 750.220428] CPU: 1 PID: 6030 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 750.221879] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 750.223631] Call Trace: [ 750.224187] dump_stack+0x107/0x167 [ 750.224957] should_fail.cold+0x5/0xa [ 750.225772] ? __es_insert_extent+0xed1/0x1370 [ 750.226737] should_failslab+0x5/0x20 [ 750.227546] kmem_cache_alloc+0x5b/0x310 [ 750.228415] __es_insert_extent+0xed1/0x1370 [ 750.229393] ext4_es_insert_extent+0x45d/0xf10 [ 750.230367] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 750.231282] ? lock_downgrade+0x6d0/0x6d0 [ 750.232179] ? do_raw_read_unlock+0x3b/0x70 [ 750.233090] ? ext4_es_lookup_extent+0xc4/0xa80 [ 750.234090] ext4_map_blocks+0x80b/0x1910 [ 750.234977] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 750.235930] ? trace_hardirqs_on+0x5b/0x180 [ 750.236855] ? kmem_cache_alloc+0x2a6/0x310 [ 750.237800] ext4_writepages+0x19bf/0x3350 [ 750.238717] ? vfs_fallocate+0x48f/0xda0 [ 750.239570] ? __x64_sys_fallocate+0xcf/0x140 [ 750.240512] ? do_syscall_64+0x33/0x40 [ 750.241345] ? lock_chain_count+0x20/0x20 [ 750.242252] ? mark_held_locks+0x9e/0xe0 [ 750.243109] ? __ext4_mark_inode_dirty+0x770/0x770 [ 750.244149] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 750.245255] ? quarantine_put+0x8b/0x1a0 [ 750.246119] ? trace_hardirqs_on+0x5b/0x180 [ 750.247021] ? kmem_cache_free+0xa7/0x2d0 [ 750.247906] ? jbd2_journal_stop+0x61f/0xdc0 [ 750.248843] ? __lock_acquire+0x1657/0x5b00 [ 750.249793] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 750.250906] ? __ext4_mark_inode_dirty+0x770/0x770 [ 750.252008] do_writepages+0xee/0x2a0 [ 750.253021] ? page_writeback_cpu_online+0x20/0x20 [ 750.254286] ? lock_acquire+0x197/0x470 [ 750.255132] ? ext4_fallocate+0x21ac/0x3850 [ 750.256045] ? lock_release+0x680/0x680 [ 750.256894] __filemap_fdatawrite_range+0x24b/0x2f0 [ 750.257952] ? igrab+0xc0/0xc0 [ 750.258638] ? delete_from_page_cache_batch+0xa30/0xa30 [ 750.259763] ? down_write+0xe0/0x160 [ 750.260555] ? down_write_killable+0x180/0x180 [ 750.261533] filemap_write_and_wait_range+0x65/0x100 [ 750.262609] ext4_fallocate+0x220f/0x3850 [ 750.263488] ? __x64_sys_fallocate+0xcf/0x140 [ 750.264449] ? ext4_ext_truncate+0x250/0x250 [ 750.265396] ? selinux_file_permission+0x92/0x520 [ 750.266419] ? ext4_ext_truncate+0x250/0x250 [ 750.267353] vfs_fallocate+0x48f/0xda0 [ 750.268193] __x64_sys_fallocate+0xcf/0x140 [ 750.269107] do_syscall_64+0x33/0x40 [ 750.269910] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 750.270986] RIP: 0033:0x7f518f061b19 [ 750.271770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 750.275624] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 750.277237] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 750.278751] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 750.280269] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 750.281789] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 750.283303] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 13:46:31 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x3) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) setxattr$incfs_size(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040), &(0x7f0000000080)=0xb25a, 0x8, 0x3) getsockopt$inet6_opts(r0, 0x29, 0x39, &(0x7f0000000140)=""/134, &(0x7f00000000c0)=0x86) ioctl$BTRFS_IOC_RM_DEV(0xffffffffffffffff, 0x5000940b, &(0x7f00000002c0)={{r1}, "3fd3dca4bc68cfd75f4ee4b424972fa9ff91a629ae5f2012127986b57597213121205c6c4a5f084e2f0e55d1cc5286b8ca2d696d527e52aeaba3412f1a131e25547a47398e0a2052cc354532819deec6c0bc2c30b53f6a4a6cb6b8018772b114f6e201e8c2c7b9d7550e46292a3c61cf6958ba0a4e97c7cb57ccefca251e1fc3903e4712a37747a69a46402d8abea05889c1c3512bc4d18acf7ae9e1c2ef9adf9591c43bd80f8a1664f9060ed7bdedf1c96a5da697094976bb2fe51c9496a721e9c4dfa0131ef50712e11c717470d01079838509150a449c36fa4a6899a7ab1cf183f6975215e71c2cc3803c1d4936bd321823884842195de569883cdcd8019782a204cec302b9a35d6b5b753e25bb19b427e9b4e7fcc0fed657cc90baa4da5de9e4d850135400db2da106664653aafa8f9ad3c50d1f5ebbced944345de85902554374b118957a7dd1333d0d5463017422e3b8361182fc79d927595dd3ccf16d2d183082d5093fc1021900435c382acd114a0b8dce43310519ef0ce88b1c9c8852e8eb712c43cef6bd76ce1f84ba97b632e1ea5c90e54b837de2c875ca8b580e7ccc6be5dea07db763b538a3f19dd6e3e46258bf10ef18008f33cb3c88a995a9b54ba87f8b42d00491305dca4f4bcd8740e7f6bc3621dd7d69699070d12c2e970ca0e18dad6f1950b15c31055d2edc5bfe7fc6918039f73cb6e9ae20c1bc0703c8d6b3039cabbe46baf03793e20e7095311b9141f68faca03d90ce9b3a7d879a0b8da43773f82e370c2a2bb2c5dabc865aa3c7e7a332a058d3fdb9d1e12cdece78037ae7403f7899ba4360544f998d0a9dcacdeb530f95a618be9e0cf408234148fe87759fe0595bc8bddb7ef40276f1ffd341dfe1f61c513b88cf75da7d6a4ced6eb655ecd79160146fc0d93b11d466b6bc553eef7ef17999fea6e832a2e0eb31791a7966b03818b9c2144a13b85218caa8fc202448ebea6d1cb7c015a3b2cdc6e54a1a87c9c66e0fd65df579ea78ff017055f717530d27d081fa82e96e0f5dc588fa9a337dc878c4aa961a2e7284b858cff20d527efae9ca9a3df3f4f80e72edc3bb9fa10a4f5c36bcf885ddaeadd16e267d4b0ce52279769f0ccc298a305a5911bba460eb97bf825a01420b0a8e011d9197b941b79564315792c45971f7ae0a503b19fc8b4fcc1c543ad61b17e911e69b8bc2295a9d5e0242803c2c513010aca19891ed0db3f3127333dd32b021d86831b26f715fde2fb3944d9622cf5f60d6d7235533e2d24af241ee15c88577f9e6c133c3754b92603a59a31ec194142aaa2a6d6ed369fcc3add70cfa4c341602cee9b02bfb622a123f1220e71605267f31fa2ad22a640aed036d5f13f94070c417d172195db8cfe05d1cbfe9111573cbe8ede1823ae649cb9e9ea07f3d8024413eb0e48b807f00455a8d2060a686800184c4b4d0add0365d9e033d2f91cbdcf2d44582cb8eba0bde8f01f9802e7358631c16a6088ddce9b4aad3695b17f611714150cdf1c63e69002813cbd36f3aa19aa2ff1e44295b0746c1635ceff236cdf52ed1e2bc52f3c805b6ca74fc93221ab2e79a9f286ee8a0574e3ad5634b9de7622b3de38f2099adf184e00f6d5bba4a2d650d6925689f96ea59de461370df56ba039dbfc788d43ba648ac13cf41a753f0fc60a97303eee44ca39badf3b74f9eb1f47715c17d691014814be3000370755f01565e4f0b54bef2cf1b9015ea8cf6255272d90cc947b54575d2e23a90638c5e32cd265ff0ef19e34f1ef5fafbe67c29873d2cd0012c5fe3ca4487d3211e6b55bb58294a3cb997ba086fd73319f99f4aaa81e4d91998baa47955c353d24398a2d81f5f099454281bb5edf6726ba7725ad3720ebe5c9b04ba35a45652ca2753d7f93cea016f8eb62daabe2df945f4f2fa6a940d71c22344d1e0fe5651e700a8bab8e97084c7a14ffec1ae4f51ab41f488d964e5ab0d916217f65b06ffed7cf74073e7e2447ab758304b85231b78e9bc67befcc6aaddfd04c842eca2a085688e610b3fb7bb52d7a157fa83822ee62bb93a8c8823d3cea04ce68f24d8da44e85f4a538d0802ce315d2287b42815b12448de90b4c5d0afea8471871db2b3e549ecccfc76c70dee9c91a88763e8abbf085c732065919caa834f543cf23cb68f0f102653f5ab003afdef0cbad73ed30738203a3f6c8425ad66cbd7cc2957ee383f79d045d4540e3d2385be11d968bd934307b0734b38bdc26335863774d70888de725a48b4f448a4a566a258d62493d2ee699287dec76a8070d411bbca1fd480c5f577be1e65ba41f981e3d41e2de81cc3f37d003bb5fe3ed280dfffbb2f7ec403a4119f806d7388f7450ceb5fb71ef5ffed399141d9a882e4b881431759925519845e67dd40f006e543c52b9fdb95d7525ebc33edfb09af1add57226e7f165001dea0d52bb092bb6ff89b20648724772b4b8b88361c299c7c22e102962284d0fb52adebf9da2e7046d4de50ce3022923c04f06abb3d50e12a42da549a332a5312f859d3cad9948a8fd0f3efeae6f4062ec0049d69b729694a1170589dd842437c9722909ebb907a6c599af35c3e417a2f64cc431fe11d55f368fa91f413f92020a13a7d9aaa29acdb4784a42d6fd2ee0407fa987485f575048931e6e0a945b13e4425ebb1280324182add8092fe39ce200f9ff8a3f77e53fc9dfa399871002cb565cb9c5f44495367ee35cdf62d9a25375e7783ad3ec90e8db27bb141b2814549d6e7757c4249373912634071109e864814eef3744f03134bb624c482f0c395800d16a5a372c2abff199f0572bf2a57458ab705bbd7be231e86eef6276375a06f6cbf736a7a97e0f5ad6e6725b29a6d8c6311a9b2a4b72b750e17caf36fb58b209d0f2f21778f2783813c5dd7c819550c4d85e1f79da735d7765f17c7c42adc66791392a66c865bc66c982581b389668b5a28d6566e6b7affdee0b7a50f248b67fb61420b2cd0bae79cef5e79a0d3027d93c2a00f3655adfb2f8477e1e4fee1fe2b5af04474c0f36411430825b4b07ed27983916fd7d66aefeff606d880377947f155744db235a1d8baafd4a25505433465d916d51c06ad89ed26a9a4feb6789892a62c78f6e26f75300a52d5d4856faedb5ec53ce7c3b90b4acd2e5f4691647cbfd20d582f90fc942e8b42f26a0d8788fd0d525ba2b1952cdf185a35f0842efb562a37722e60b6692a714ead4559748ea8fe004c13fd7b9976f085c0b707b4f2ebcaeee9a2ab9c6f3b3ab6a6884608e9dcd0fd2b2b27aa04daa3aadcee191b33ad22b0918959162d7297c49feb3c5527f1014aaecf08037ea86f2f48058484b9384622b084dfb14fdd2eaee8c8a2608f57651d805b0efafcc1f18991a3f4e5fbd6678c79a3c1e47def1f6e5dd5ea2ca203c8c4a76ede0a04d569e1e067f72d16f409214d005143c389e2534519fb66de143474566b08280ad34ba4e89b7626e56ee373c0ffc9e2f40e91531877edba7f922b1bb16e6be7f8a717ebfb1a86c3b3d4c610ee400bdbe4e9cb5f2c9914b2741cb87604d6828c998f6823b4f297c3ed549a6c96a4f6188361ad0f88cf16bc8c73dad7763c3ded68e5dbb2012e8aa34b751d7a43964a368dfcb662965f3e50c8e1de3f3decb5f65393ffbca7691ec7150082746fedd627c3a4e0156a07455ea6ebb3dd8750ac779d1c69be28148cabc2e6656cc545b0feb0ed0f94e2e37310e7cae2f8c668af54bf67a8211d9e53c2fe9f8787941082917c391ec952abf9003380b75e2a21d9985add07e63388b250a5b6956e302dc9a5779dfbeb9569ce83883ecb6090b87b5021a44187626aa562613f573fa02625efc5fa31c545bb9ef3b9a70ef2aa16acc412798573371759ebe5da836f8f7161d0f83baf3c9fac99583c376536e7c4aafacbdaf0a3e063125ca3c99005283a785b4749640a79ba35cb29c66a70899d527f06a90b520e3e47af4e329f53ce59abb31d7337b087869e397fa93a5a62064f56815a2a16a828c3bb109bee376fcee94a25dfd6f227b4f0a6c52252dd1720820206dcfe1506ef3541b5d023260ce70616a10e6a160382891a53c0e7b27fc2c04975a173d04cea9766fcb2b9cc9a72051f8ffa1d4faa64a63c9fcf9cb2b2bcba876b1fe3fbb76bc62dae553049e78338070af2a2a6d26fddda42a701443e3930484ee6cd43f119ed88bcce607ce46f69ca2e50532a4f04ca34bac75dd79baf2121b1b684c26839a199ca203488966bfb2ab431e7e3482144fbefae9e2add6e7c65a6621d8fa497daaf4d4658b23739086e84ad2d36bddbcaf070d73de6713062822e92ed4ca6efe01a390c3a2b6f5280478d98fc24c9fbf9c742794d51c13a40a35a345e32cb0d4a520d46ba289b6de1333f4cba57afbdda38d7c912f30df15b83da8d038be4be77ddfb608fe9820d390664b4eb86e41dabc2b48fa899624ad56efb7cc16b458e25d48f713a2a48caf94e452c03092f8a3a6047daf2f7b8506859b28fb6c4b8c82cbb3c22440ca088e37e2b4c354e03fdc96d186133b89994fad62374b0cabb5e1b9fc1a713c689ee37e1355d7aaf26652ad5529ec627e494c32931d77271c8a3c7c8d4424ef2e71e419d5ad080d66d6239d419827f5eaa70045607bb171b6bfa72eab2851dcf58a714f303a14db2f9731a62ed19a6e86ab28a2912c63590a0623e2c30c817de0d9620287d5f58320744e39ac248ffe4411c1792c0130b343b22e6dea1c5e9ddc2230a38df0971fedf64668789737ca2ed4568ac0e30f09abbc2197e0168cf3a2d864ca2cc3e977c451a89a0a465d01986d58d3fb07006f9c52cccf9f454e276f20efdf2e2322d48f2e4c8a47ec9cc9c3098207ba87042ac32f3464afc351161c5a29a8e388981de79a96ff1de8e005b2c238bea5b2a613c3d393f7f3d3b873f9fa0aa9ce48e8bb44c45786f60a85993884a37ac82a82dc799becb26870b6a6199e9b353234f261cd56edf679870f400aea2a5acbc3ecb3742348fe72a4acc66e1e2770f48a962ea8b49d4b491b3c95b0888f062dad0e43fcce6fbd6314e958b58d47db97a65f085956b97f8f38d9fb28d2eb8d1de0122c16ba9ddaebaf6d095503d46ccc3a8f753567f1ed68d40efc64c3e89b19afc991695b913b4cee226b4dbf5b3ed5a3c66ad7585b28a553f4e406b90087b35ba8a3e6c2535c3adde91406b061d1bd7ad94cff5bef30e7342a5a4b132b257274065f8563c37d6eb39f2670a12cc60c762c8f26a0d2b1d130e291f532025741b3b14669cf1876a516d7883696629f09e47b04559e9fbf40ee5d4e98a740fa519a6fad142721a08e09ad2a15d82987dd886b25d52d31e1201790223b1024266e2d914dfe5012a1c8adc7d94899121d1f8f28dcf350ca1a8495d0266fbdcb89b83f8741e49a6e9955ca579534a406a25c0557f0ba4f6bc4e75f87579201cfdaf90ecd6b9285c346b3a427f87d0cecb12a15ed88f23a57df7313a547a0554934e87dbc3634ec869d05bab0f476e61328c52e8af928aaf1c01cd75ca9166651fc6b48fcc070fb4b1e3526d1d5cd68bb886da8dec928250c0f70bacc3d35c8399dd2ee3e1d0f1db9d95d35c2068c7bc6a9161993e445cbdc4c04968dbdfad73bfda90b8fd83b5848b2d85e24956a59fc3f2b2b3b8598026912bd02187fe58f6a6d960a441767226e3f048f15cc7f78767f1d846efecb50b1799d2ad3703397dfd41ee1b33e450981e1b4812dac8c54c907bef64b88d8854f308ab8a37aab8157c7cfc5a2f"}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_opts(r2, 0x29, 0x36, &(0x7f00000012c0)=""/194, &(0x7f0000000200)=0xc2) lseek(r0, 0x0, 0x4) 13:46:31 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x18, 0x0, 0xfffffff7000) 13:46:31 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x3) 13:46:43 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 21) 13:46:43 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x3) 13:46:43 executing program 7: semget$private(0x0, 0x0, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 763.016954] FAULT_INJECTION: forcing a failure. [ 763.016954] name failslab, interval 1, probability 0, space 0, times 0 [ 763.020486] CPU: 0 PID: 6051 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 763.022608] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 763.025146] Call Trace: [ 763.025988] dump_stack+0x107/0x167 [ 763.027128] should_fail.cold+0x5/0xa [ 763.028321] ? alloc_pid+0xd7/0xd30 [ 763.029487] should_failslab+0x5/0x20 [ 763.030652] kmem_cache_alloc+0x5b/0x310 [ 763.031929] alloc_pid+0xd7/0xd30 [ 763.033017] ? copy_namespaces+0x1ca/0x4f0 [ 763.034351] copy_process+0x3b8b/0x78b0 [ 763.035586] ? SOFTIRQ_verbose+0x10/0x10 [ 763.036880] ? stack_trace_save+0x8c/0xc0 [ 763.038023] ? __cleanup_sighand+0xb0/0xb0 [ 763.039331] ? kernel_text_address+0xf2/0x120 [ 763.040534] ? find_held_lock+0x2c/0x110 [ 763.041647] ? io_uring_setup+0x1c23/0x2980 [ 763.042979] ? lock_downgrade+0x6d0/0x6d0 [ 763.044334] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 763.045936] create_io_thread+0xb6/0xf0 [ 763.047226] ? pidfd_prepare+0x80/0x80 [ 763.048509] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 763.050168] io_uring_setup+0x1d79/0x2980 [ 763.051533] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 763.052941] ? wait_for_completion_io+0x270/0x270 [ 763.054429] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 763.055796] ? syscall_enter_from_user_mode+0x1d/0x50 [ 763.057217] do_syscall_64+0x33/0x40 [ 763.058303] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 763.059645] RIP: 0033:0x7f084f4a7b19 13:46:43 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(0x0, 0x0, 0xb) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:46:43 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 18) 13:46:43 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 21) 13:46:43 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x2, 0xfffffff7000) 13:46:43 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) r1 = syz_open_dev$vcsu(&(0x7f0000000000), 0x7fff, 0x400) sendfile(r0, r1, 0x0, 0x100000004) lseek(r0, 0x0, 0x4) [ 763.060606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 763.065605] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 763.067558] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 763.069367] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 763.071196] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 763.073056] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 763.074906] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:46:43 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x3) [ 763.135478] FAULT_INJECTION: forcing a failure. [ 763.135478] name failslab, interval 1, probability 0, space 0, times 0 [ 763.137159] CPU: 1 PID: 6069 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 763.138077] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 763.139190] Call Trace: [ 763.139549] dump_stack+0x107/0x167 [ 763.140043] should_fail.cold+0x5/0xa [ 763.140549] ? kmem_cache_free+0x249/0x2d0 [ 763.141121] ? create_object.isra.0+0x3a/0xa30 [ 763.141751] should_failslab+0x5/0x20 [ 763.142256] kmem_cache_alloc+0x5b/0x310 [ 763.142801] create_object.isra.0+0x3a/0xa30 [ 763.143407] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 763.144093] kmem_cache_alloc+0x159/0x310 [ 763.144661] __es_insert_extent+0xed1/0x1370 [ 763.145273] ext4_es_insert_extent+0x45d/0xf10 [ 763.145893] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 763.146475] ? lock_downgrade+0x6d0/0x6d0 [ 763.147040] ? do_raw_read_unlock+0x3b/0x70 [ 763.147616] ? ext4_es_lookup_extent+0xc4/0xa80 [ 763.148243] ext4_map_blocks+0x80b/0x1910 [ 763.148816] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 763.149456] ? trace_hardirqs_on+0x5b/0x180 [ 763.150045] ? kmem_cache_alloc+0x2a6/0x310 [ 763.150621] ext4_writepages+0x19bf/0x3350 [ 763.151189] ? vfs_fallocate+0x48f/0xda0 [ 763.151731] ? __x64_sys_fallocate+0xcf/0x140 [ 763.152336] ? do_syscall_64+0x33/0x40 [ 763.152861] ? lock_chain_count+0x20/0x20 [ 763.153423] ? mark_held_locks+0x9e/0xe0 [ 763.153964] ? __ext4_mark_inode_dirty+0x770/0x770 [ 763.154628] ? register_lock_class+0xbb/0x17b0 [ 763.155244] ? kmem_cache_free+0xa7/0x2d0 [ 763.155815] ? jbd2_journal_stop+0x61f/0xdc0 [ 763.156408] ? __lock_acquire+0x1657/0x5b00 [ 763.156995] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 763.157701] ? __ext4_mark_inode_dirty+0x770/0x770 [ 763.158354] do_writepages+0xee/0x2a0 [ 763.158858] ? page_writeback_cpu_online+0x20/0x20 [ 763.159535] ? lock_acquire+0x197/0x470 [ 763.160063] ? ext4_fallocate+0x21ac/0x3850 [ 763.160641] ? lock_release+0x680/0x680 [ 763.161179] __filemap_fdatawrite_range+0x24b/0x2f0 [ 763.161836] ? igrab+0xc0/0xc0 [ 763.162262] ? delete_from_page_cache_batch+0xa30/0xa30 [ 763.162982] ? down_write+0xe0/0x160 [ 763.163499] ? down_write_killable+0x180/0x180 [ 763.164127] filemap_write_and_wait_range+0x65/0x100 [ 763.164813] ext4_fallocate+0x220f/0x3850 [ 763.165389] ? __x64_sys_fallocate+0xcf/0x140 [ 763.166012] ? ext4_ext_truncate+0x250/0x250 [ 763.166605] ? selinux_file_permission+0x92/0x520 [ 763.167259] ? ext4_ext_truncate+0x250/0x250 [ 763.167857] vfs_fallocate+0x48f/0xda0 [ 763.168398] __x64_sys_fallocate+0xcf/0x140 [ 763.168969] do_syscall_64+0x33/0x40 [ 763.169499] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 763.170195] RIP: 0033:0x7f518f061b19 [ 763.170703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 763.173132] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 763.174155] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 763.175130] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 763.176058] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 763.176996] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 763.177966] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 13:46:44 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7000) 13:46:44 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x3, 0xfffffff7000) 13:46:44 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) sendfile(r2, r1, 0x0, 0x8ce7) lseek(r0, 0x0, 0x4) 13:46:44 executing program 7: semget$private(0x0, 0x4, 0x0) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:46:44 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 22) 13:46:44 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 19) 13:46:44 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x2, 0x0, 0xfffffff7000) 13:46:44 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x4, 0xfffffff7000) 13:46:44 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x5, 0xfffffff7000) 13:46:44 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0x2}}, './file1\x00'}) accept$inet6(r3, &(0x7f0000000080)={0xa, 0x0, 0x0, @private2}, &(0x7f00000000c0)=0x1c) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r2, 0x5000943f, &(0x7f00000002c0)={{r0}, 0x0, 0x2, @unused=[0x7, 0x6, 0x800, 0xfffffffffffffffc], @name="f3a7d22d32209a94d664ebc12a0aafbef4f7cb327a5a555b7ebd8cb9fe475f51bfefa7300e50411b7977198743363c538d546335bdc51dd7c81039c7f5f0e8a1495d288737b946509659d577a55f8c8474ff673e8187ed79603377bacba6fb1c37c51f2ba0e5ea2daa6a62d8bb1496022ffa48aaa1aeb74bdf8b7cb1060ec45c341587d7d8e48d63589ed2e901162b2ac7a4b76aa42e32052e7ffd074c590a518589088f73c8d2a3fe3cee1c50f22e8c1d4101f499788424c550ee2bfd131407a4f5dfc48a0de3530d64bfa14cba5ff8f4003f5a855f04c214b5e39438ca6929be1d0fe099a38ddb4dcbb9494dbb5630c6447f6baa5cfe43ea44e704f310f1fcf06be895830c4e29ebf54679ecb06a64db339ba54dbfc0362a0450d50511cdde9022e023c2f851050979ed1436a8166c0c5781657c8ba91a062d80aabf9eaf8ea2503b746cba90524af313d79788ebe841edc22074d1bc2c7806c028a049996720e2b4aca7d2c6d8480755a2f5d3a17e0c1b71312ab17f1e1692fff3c0a75e637ca32c73d291b715b4ae4f539fb4d10b2332160f89db62ed87863cb56432aa2e5929dc597581051e22e123751d606e632821d06f05d063f70649aa83cae8418dbf69d2c067b6012c22cf77244bf6b7c5ee78add80537b830742c7e32dd4f07a8da0429a8b9f35f47cd16b1160c8fa69f4304b8f2234932084a3682ef59ad7338a5e9385ea356cb8e0d62399a6b32467494a9fe24c5a97e8c16cc5e27a15634c3f188f7b7db9f5ae1214f78a2c54ee8dc14d63613c15756f07a6d0a36b4fa655bc51c3ed9b2c06d262cad82f70d2f908f8101604cb494f142611e64568a36c5de90131af5410e66939163c8ea3250088d5feb152e06fd2d4595d5c154ea5424616db34c7f826bcdf9952f19422afcfaebb7dfd9e938ef688026ee75454387551a684bb94ec9d02cf9475dfee215f0b71f2dc0675ee063fb6552999cef1c187da529484c7055effd0d626922669861eb71870714736e1e01e1b79f817d330f52ebdb755085bd929b10ce46158048087ace4c916eced6ecf98dc6ca1efe6f17e02b294b942bbbf6ed30453953d3e28739907aa6ded1d7277a91defc8e37ae803aea69746e8932a9fd8bf1d56eaae1004e28c331e27d17df616e9705e3b16d2e77a7f924b7cfb74f33a3bc34b657f20a2b2ca04488e936b004576a14b27508ff2b81fb6a96e45803bedc37a8975107f49aa0122bb968b401459097e238cdfb002f99b03f0fd827580337be82e9f8fc00c131b8ee19c80b2c85d32716d9d9e0da8b9c3cf25445a3c941b37439c50dcd2e7097072b6c2e2085fca40007859f2cae58d702e16d0f31a73b446da83c91c3bd9789c19a797722d50e149f615ce20df7c46715b37ae6052634b68f07f32031041b751df185da61207f22970bfc79b3f337d3f829ebe450db0a1c6eea403b5edd7b094cf9ba99fb1eeef379f0bd1ebb2414f9fa4c664587d8549c615520da2d65462863174d73c1ead971b76f074bfae8a8282dedd99b7176262f85481bf04013cebaacb117da18e9577dda3e2410046543d015d8a32b3f023e11baa4ae1da84e74c02afa8e5c8ed690d4a996cf39a73cb78b280ae394080fe367e01084fe1be4dc4470e653d12f7d497ea4c8b99df2625c864ef7c8cb897952b181a90de708716a0c9d9d3e09d9950ba3d2d9904f43920d00aa2221ad3d87188d07c8f1b8f0343bb7c31710740c5eecd0192ffc27e6e81e043d0d1afce2efcea443b9a387de08e37b47ee9cb2d66ea65aa4044d36a8871f83c1d7404eaa8d1ac68096ed126a6a1364935f87cb484b415cb50bd95c54db83a451996a0f89f82c505c9b56567fa7959c000fc0d56388ba0b3ce3d354e97f50219eb39d0a055cfaa8b7cdf0505474b7f5ba9cbbaf876b03edfaa3478a08203ef70640dcd2d106199db72e1206973ef6bd77f3a97a53b9931c0e48db5c9de238de349983c1058b6281a91741b13af5657abd0b88fa746a7d7a6cc4c1f22c938cd66827b50a20622105b25a20aba81e8efccbd6e0fe7c8dd0bdc6331f15e734f265773482970c9872434b692a9843dd33202c648bd5af8318b0704096edb91fceecf7d3ef37cc1096ab530327f928a819d7f356d6262868c2f5ba1d93846169a41f6e9b33407c18221a946a111a65191e26af2d0661d4a6321ace053519c0c2421646006fb8728490af05f29d9c1aeb64443fca108ce4970dccb1b97d644d430fab4f7bf6c5fb983e49132f03045804f46e12238dfe2b857f92b4b446a4448b47b01fa5800b8b928772d73adea567832a8bf1c0dad8f1bff9938d744ccd2bac37f109de383053a756f5722e2208c2e30b9bf5810c45abdffd1af1b1633b9ae31e926896a6fa719a9902c388b40205fb4d38877f02cef478e0fb44d66b2511ebefa3d56e021f00ba9f8b627451c8645bf41c5f0691106e9d6c1cd91ba3d1d4fb695c2a10f993e592eaf8c1f53eb1d295633ed24aa41fb4158e3a730ca01a5b842f67cebb225f9f7b1a449ec8059bf5cc7642bcaca50dd687bbf4f325ba55ad7319c949d0db44e8ed343ae3c0bd254efc7a062d56747c175f55aade0119838439f0a1525ac7f37bb33b508655405c6c30be5699ec2ecc34a2f2e34e6066ac8c7888b6465371388c454cff28a1c6b00f57f0db10a771c957ccee3d7db0973381eb287b255bd063d01d10562ee4cacb75c0483800c9b39cb90db392d845830c881204a94f928c11a1a587b5e7e101b8af52d9d82e23462e65748793a60a13bd2344f253796451d3d40d15972956dd026307a866977fe855d994d7add43ed1efab9c3929b6e3c7969cd11e16341acddec73a762667b30a6dfd620c57bd82e76b455f6bcc658755c581d61a409594b84938e981fa3daeb99eed7039e078beddecd0e731ed773e43b2a548cb065e1ebefd33e093462ed4a68bc7009da47a79ae76451ce871da1d8e418cae0aa8ad05fa412c9e10e3f82880ef5b3ea8f66e19d9a2c510502cf2cd2caae456bd874d607acbc6ab9e37e44db545debe601a055ebb8772526e37dc7f5fe44de77bf3301a4db11ee62f684535e8b5fadeeac20fac48180e846b97b4f78faf34f856c6c1dc4adc117d8117ccdd90b89721383b692e864644f702f87eaf2fd1c0ede75fce85b07a414dcfe414533c4293cea0a30c762409af9bf8b245d0b03bfd2f894adcf64693d2b6382fabc228727599ec0fc8985568c1e5ccdebd0ead7c089665d0df7184ec669397f34b6855493d61d15f1700b9c935278d566940ceba598cfb9b55c9864247c50491f4084fb24f1265a42202ef92f99d3cbe5627678b1db2f95f99b92b800ca95abbbc7f3c43561ae97eb54e2055c65b05de9f1a87206a768347be73b5ce6e3b530dd997db0332a04bb1ac07b5283fe075e808bf919d3213f843dac3830984ec589b8e51fb7743a39159f54a9ed2ea0f8782c20d296468362e70175008b448cdda0583e2c3c35227dba4272889d7549a33c76b3d151dfde32160dd30de959e35d2129fef78869daf2b650f65b8316669c8f53fe5b60d60a324cf87d74199caf8d4f97cf96c6949b1c2628f5f03cfa6d76087c138d4ca18fd4fd3f1c95005ba9abefa01033c13f08f2a0cdaf22fa73059e711579d3b2a5753f9fbb5f5031dd1de8e24d55295a74e313acfd926b831df81efba74bb9fec836d2899bfefe0b7cc6fc4a471619465ee2a09b6e2812470df7875c0421144be19715b7f126e97583f4756438d59b97591a456fb059c5f85b6a029cb4c1d49804bfda7a9cf6a05e909d226a3bcae4b599ed0b872bd883ac9266d5e33b91c9288264d4c3e5fef8bcb70fbf380aa43fc84a3102d9d89f0f2cec599facdd3b08da81a0fae2905a2f34f82f3d217152083f4db5efe26be98b751e70c6caf92ffd3c66e19a35c805d17d71795d10e2b289bb1eb4a65347cd0ef501d358f88f00ba8a1629f78843ed93b154c27ef2c6452f06bec5039b802771095fcbd933caa30d4fd01d8eef8918a6d70f4003dfb6494e0cff8f8f60672d9feb3b8ca90d3f4858e93d6d87b17c620ba8be817b09a7c9d2e15866f7cf0311557a19c994d81b21fdd9cfc54fbe928666d8a03776cc128985b8220ebd07280cc37cc80cc9ebf835b1313018c3fabc58cdea74aba311ed49bcf9893b1a2c9abbffdfe8645917cca243a690b982f522ce809467280281ab2f660e9a20fcb018d7f45522676da929b326367fa2658eb103fbf610a19a6d365aeb3bf4865c05b31baca332ff8dbdad7a6beb507d3a2d9e942a23c3d40a8fa008e771769ff7298a61f2f02e69f18941b548c03e81abb7d848585381df83b136ab4cffbc83d449facc8b18faf7fef5b6a7a6fee4f0db116e9e00caecaced0322b23b772ad2d3dfe5e49bcd3d9bdf57de11ba141731cc77eddb372c8ab8dc30ccc60efd745993a0a76caef6063489f72d351684612d5436eba821a123c5a944e85ef33ce2c2660d5dc570e9ee3eb88c45f64c2b2d519e7866883e908aa0ff07411190261443c5c19d27ebebd293a75a6d973885306bc4a62b88b76ca6e4aea03de5f892893154f11d35059e9bfe8416b2cf7b4795bfd8ede6f24d8859a7cb967eb54a7f40b51225d8770c4760134e4f2f1af2fffbdef0f90c637a3d306559b988922005d86c0465f62230bc8a99c73611793169d64b53ed28832eaa0fdd91fc3d717d9301415b7456e77534ad118c50ec4f75dea0a77674941a01734828196047bee6e4b4d4d3370afa031f4ba377d6332ffe9258b5089be5c7521d369abcb20a57ccd8d8cd950444fcd048ffe3b15b41875025176bd1d79e4b2df3b88537504c5c3bd54974b8e45e5ca1716d0d0973e7f5aed34a61b1ff1604ac8039e20e6ed584033baaacc20595f6637a2d23be2e5f9a0add939bf53233a8d0aa6d4dad4f24408880ec283ad7c77102d1364bbcc9c22bbfb867c8efe787841db5d612ba96a038779d4652c700eaaa7f15952383c3dc2ff67a9814bfde8ea65170f303252b88ec047c2b05fb9bb4fc3362a1997d266bcc38b0bf5b51372486b6a7e49d1b62658777db8ac30b7cb52ce841016d76cbaf53b7fd4566c00c8842ed85d6377ec2bbd78b7a64fcbd398040cd3472c5e5c6eab3aa4761fef271db252dd6f3462327ef1a9165325fee92fdd8b780873813fe6753280b5a74756d5c9d40522883a4f8068e870cb8fbb5dca4196428fbb78aee07e35b20c6149627726f179e2e5a103c26136cc9a62e4197d3b1c1ea1c1949ec808fa82a7d7724afd0dd22fe22f9648af46e977f27274cacaed29ee6dee734ca843ac4e9be406f167fe92236a6ef80a518c558a28acdc64dbd087dfbf48e9ef09cec63a4eee4cb2d89294b09b6842ac4e56c460ace5de64cf66a8224049a6d92b2c16134e7efbc27247c68ea474039ab1c546eb1f2145c6e7c3a25529668b3ce31d0cf1d8b63b0e27f02a541e8dd03e580f9d308a2579ca873849a4d992476adddaec7774965f5c99cfa8dfd99dc8f6e590ab972a36654f8941be1b860ba8c44a1107467b0963d07261c72c75e1924417fe4e6294cb5f8cc44c1c1ed73a4d491377c6d27b42f6059f6a59cac510517d2aceec80ff5a95b9121857e6331a630435c14b5b58ebeba276f35df0874d8cb44344d5870e8028b699cb11612e1d444a6025483aeeb090edaf"}) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) open$dir(&(0x7f0000000000)='./file1\x00', 0x200241, 0x156) [ 763.447881] FAULT_INJECTION: forcing a failure. [ 763.447881] name failslab, interval 1, probability 0, space 0, times 0 [ 763.449205] CPU: 1 PID: 6099 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 763.450011] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 763.450968] Call Trace: [ 763.451280] dump_stack+0x107/0x167 [ 763.451701] should_fail.cold+0x5/0xa [ 763.452150] ? create_object.isra.0+0x3a/0xa30 [ 763.452694] should_failslab+0x5/0x20 [ 763.453167] kmem_cache_alloc+0x5b/0x310 [ 763.453655] create_object.isra.0+0x3a/0xa30 [ 763.454162] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 763.454747] kmem_cache_alloc+0x159/0x310 [ 763.455244] alloc_pid+0xd7/0xd30 [ 763.455671] ? copy_namespaces+0x1ca/0x4f0 [ 763.456165] copy_process+0x3b8b/0x78b0 [ 763.456629] ? stack_trace_save+0x8c/0xc0 [ 763.457145] ? __cleanup_sighand+0xb0/0xb0 [ 763.457657] ? kernel_text_address+0xf2/0x120 [ 763.458177] ? find_held_lock+0x2c/0x110 [ 763.458650] ? io_uring_setup+0x1c23/0x2980 [ 763.459157] ? lock_downgrade+0x6d0/0x6d0 [ 763.459633] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 763.460215] create_io_thread+0xb6/0xf0 [ 763.460681] ? pidfd_prepare+0x80/0x80 [ 763.461143] ? io_uring_cancel_generic+0x2b0/0x2b0 [ 763.461731] io_uring_setup+0x1d79/0x2980 [ 763.462208] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 763.462790] ? wait_for_completion_io+0x270/0x270 [ 763.463354] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 763.463962] ? syscall_enter_from_user_mode+0x1d/0x50 [ 763.464559] do_syscall_64+0x33/0x40 [ 763.464981] FAULT_INJECTION: forcing a failure. [ 763.464981] name failslab, interval 1, probability 0, space 0, times 0 [ 763.466273] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 763.466281] RIP: 0033:0x7f084f4a7b19 [ 763.466291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 763.466296] RSP: 002b:00007f084c9fc108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 763.466307] RAX: ffffffffffffffda RBX: 00007f084f5bb020 RCX: 00007f084f4a7b19 [ 763.466313] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 763.466318] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 763.466324] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 763.466329] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 763.487043] CPU: 0 PID: 6098 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 763.488814] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 763.490947] Call Trace: [ 763.491657] dump_stack+0x107/0x167 [ 763.492566] should_fail.cold+0x5/0xa [ 763.493546] ? mempool_alloc+0x148/0x360 [ 763.494582] ? mempool_free_pages+0x20/0x20 [ 763.495702] should_failslab+0x5/0x20 [ 763.496682] kmem_cache_alloc+0x5b/0x310 [ 763.497734] ? mempool_free_pages+0x20/0x20 [ 763.498829] mempool_alloc+0x148/0x360 [ 763.499866] ? mempool_resize+0x7d0/0x7d0 [ 763.500941] ? __test_set_page_writeback+0x160/0xbb0 [ 763.502291] bio_alloc_bioset+0x36e/0x600 [ 763.503370] ? bvec_alloc+0x2f0/0x2f0 [ 763.504340] ? invalid_page_referenced_vma+0x570/0x570 [ 763.505716] ext4_bio_write_page+0xa79/0x1480 [ 763.506895] mpage_submit_page+0x14b/0x260 [ 763.507993] ext4_writepages+0x1f2e/0x3350 [ 763.509137] ? __ext4_mark_inode_dirty+0x770/0x770 [ 763.510440] ? register_lock_class+0xbb/0x17b0 [ 763.511575] ? kmem_cache_free+0xa7/0x2d0 [ 763.512693] ? jbd2_journal_stop+0x61f/0xdc0 [ 763.513846] ? __lock_acquire+0x1657/0x5b00 [ 763.514958] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 763.516289] ? __ext4_mark_inode_dirty+0x770/0x770 [ 763.517584] do_writepages+0xee/0x2a0 [ 763.518571] ? page_writeback_cpu_online+0x20/0x20 [ 763.519823] ? lock_acquire+0x197/0x470 [ 763.520846] ? ext4_fallocate+0x21ac/0x3850 [ 763.521975] ? lock_release+0x680/0x680 [ 763.522987] __filemap_fdatawrite_range+0x24b/0x2f0 [ 763.524240] ? igrab+0xc0/0xc0 [ 763.525054] ? delete_from_page_cache_batch+0xa30/0xa30 [ 763.526420] ? down_write+0xe0/0x160 [ 763.527372] ? down_write_killable+0x180/0x180 [ 763.528557] filemap_write_and_wait_range+0x65/0x100 [ 763.529863] ext4_fallocate+0x220f/0x3850 [ 763.530940] ? __x64_sys_fallocate+0xcf/0x140 [ 763.532102] ? ext4_ext_truncate+0x250/0x250 [ 763.533202] ? selinux_file_permission+0x92/0x520 [ 763.534460] ? ext4_ext_truncate+0x250/0x250 [ 763.535584] vfs_fallocate+0x48f/0xda0 [ 763.536628] __x64_sys_fallocate+0xcf/0x140 [ 763.537719] do_syscall_64+0x33/0x40 [ 763.538708] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 763.540056] RIP: 0033:0x7f518f061b19 [ 763.540992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 763.545673] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 763.547577] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 763.549382] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 763.551185] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 763.553014] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 763.554831] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 13:46:44 executing program 4: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x3, 0x0, 0xfffffff7000) 13:46:44 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 23) [ 763.754942] FAULT_INJECTION: forcing a failure. [ 763.754942] name failslab, interval 1, probability 0, space 0, times 0 [ 763.757494] CPU: 0 PID: 6106 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 763.758963] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 763.760680] Call Trace: [ 763.761247] dump_stack+0x107/0x167 [ 763.762023] should_fail.cold+0x5/0xa [ 763.762835] ? io_uring_alloc_task_context+0x99/0x6a0 [ 763.763904] should_failslab+0x5/0x20 [ 763.764717] kmem_cache_alloc_trace+0x55/0x320 [ 763.765712] io_uring_alloc_task_context+0x99/0x6a0 [ 763.766777] ? io_import_iovec+0x1120/0x1120 [ 763.767724] io_uring_setup+0x1dd1/0x2980 [ 763.768618] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 763.769674] ? wait_for_completion_io+0x270/0x270 [ 763.770714] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 763.771799] ? syscall_enter_from_user_mode+0x1d/0x50 [ 763.772890] do_syscall_64+0x33/0x40 [ 763.773681] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 763.774771] RIP: 0033:0x7f084f4a7b19 [ 763.775524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 763.779329] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 763.780947] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 763.782474] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 763.784038] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 763.785544] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 763.787034] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:46:56 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(0x0, 0x0, 0xb) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:46:56 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) r4 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x300400, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, r4, 0x0, r1}, 0x0) accept4$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x0, @none}, &(0x7f0000000080)=0xe, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r5, 0x0, 0x100000001) fspick(r0, &(0x7f0000000000)='./file1\x00', 0x1) lseek(r0, 0x0, 0x4) 13:46:56 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 24) 13:46:56 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x3, 0x0, 0xfffffff7000) 13:46:56 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 20) 13:46:56 executing program 4: keyctl$update(0x2, 0x0, &(0x7f0000000000), 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000000)='dns_resolver\x00', &(0x7f0000000100)) syz_usb_connect$cdc_ecm(0x3, 0x0, 0x0, 0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) getsockopt$IP6T_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x29, 0x44, 0x0, &(0x7f0000000380)) lseek(0xffffffffffffffff, 0x0, 0xffffffffffffffff) timer_gettime(0x0, 0x0) timer_create(0x0, &(0x7f0000000340), 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0xa}, 0x0, 0x0, 0x0, 0x6, 0x10, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) timer_create(0x2, &(0x7f0000000140)={0x0, 0x33, 0x2}, &(0x7f0000000180)=0x0) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, &(0x7f00000000c0)) timer_gettime(r1, &(0x7f0000000080)) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) 13:46:56 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x8, 0xfffffff7000) [ 776.000722] FAULT_INJECTION: forcing a failure. [ 776.000722] name failslab, interval 1, probability 0, space 0, times 0 [ 776.002668] CPU: 1 PID: 6119 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 776.003605] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 776.004686] Call Trace: [ 776.005039] dump_stack+0x107/0x167 [ 776.005514] should_fail.cold+0x5/0xa [ 776.006032] ? ___slab_alloc+0x155/0x700 [ 776.006562] ? create_object.isra.0+0x3a/0xa30 [ 776.007174] should_failslab+0x5/0x20 [ 776.007678] kmem_cache_alloc+0x5b/0x310 [ 776.008234] create_object.isra.0+0x3a/0xa30 [ 776.008836] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 776.009527] kmem_cache_alloc+0x159/0x310 [ 776.010090] ? mempool_free_pages+0x20/0x20 [ 776.010671] mempool_alloc+0x148/0x360 [ 776.011194] ? mempool_resize+0x7d0/0x7d0 [ 776.011740] ? __test_set_page_writeback+0x160/0xbb0 [ 776.012403] bio_alloc_bioset+0x36e/0x600 [ 776.012949] ? bvec_alloc+0x2f0/0x2f0 [ 776.013465] ? invalid_page_referenced_vma+0x570/0x570 [ 776.014166] ext4_bio_write_page+0xa79/0x1480 [ 776.014741] mpage_submit_page+0x14b/0x260 [ 776.015283] ext4_writepages+0x1f2e/0x3350 [ 776.015850] ? __ext4_mark_inode_dirty+0x770/0x770 [ 776.016478] ? quarantine_put+0x8b/0x1a0 [ 776.017001] ? trace_hardirqs_on+0x5b/0x180 [ 776.017554] ? kmem_cache_free+0xa7/0x2d0 [ 776.018104] ? jbd2_journal_stop+0x61f/0xdc0 [ 776.018676] ? __lock_acquire+0x1657/0x5b00 [ 776.019260] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 776.019938] ? __ext4_mark_inode_dirty+0x770/0x770 [ 776.020591] do_writepages+0xee/0x2a0 [ 776.021084] ? page_writeback_cpu_online+0x20/0x20 [ 776.021720] ? lock_acquire+0x197/0x470 [ 776.022239] ? ext4_fallocate+0x21ac/0x3850 [ 776.022794] ? lock_release+0x680/0x680 [ 776.023316] __filemap_fdatawrite_range+0x24b/0x2f0 [ 776.023950] ? igrab+0xc0/0xc0 [ 776.024370] ? delete_from_page_cache_batch+0xa30/0xa30 [ 776.025059] ? down_write+0xe0/0x160 [ 776.025545] ? down_write_killable+0x180/0x180 [ 776.026151] filemap_write_and_wait_range+0x65/0x100 [ 776.026807] ext4_fallocate+0x220f/0x3850 [ 776.027341] ? __x64_sys_fallocate+0xcf/0x140 [ 776.027925] ? ext4_ext_truncate+0x250/0x250 [ 776.028492] ? selinux_file_permission+0x92/0x520 [ 776.029126] ? ext4_ext_truncate+0x250/0x250 [ 776.029711] vfs_fallocate+0x48f/0xda0 [ 776.030246] __x64_sys_fallocate+0xcf/0x140 [ 776.030799] do_syscall_64+0x33/0x40 [ 776.031306] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 776.031962] RIP: 0033:0x7f518f061b19 [ 776.032465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 776.034863] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 776.035830] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 776.036746] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 776.037713] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 776.038680] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 776.039621] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 [ 776.041670] FAULT_INJECTION: forcing a failure. [ 776.041670] name failslab, interval 1, probability 0, space 0, times 0 [ 776.043122] CPU: 1 PID: 6120 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 776.043996] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 776.045049] Call Trace: [ 776.045399] dump_stack+0x107/0x167 [ 776.045908] should_fail.cold+0x5/0xa [ 776.046430] ? create_object.isra.0+0x3a/0xa30 [ 776.047025] should_failslab+0x5/0x20 [ 776.047512] kmem_cache_alloc+0x5b/0x310 [ 776.048042] create_object.isra.0+0x3a/0xa30 [ 776.048601] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 776.049620] kmem_cache_alloc_trace+0x151/0x320 [ 776.050266] io_uring_alloc_task_context+0x99/0x6a0 [ 776.050904] ? io_import_iovec+0x1120/0x1120 [ 776.051508] io_uring_setup+0x1dd1/0x2980 [ 776.052083] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 776.052750] ? wait_for_completion_io+0x270/0x270 [ 776.053389] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 776.054113] ? syscall_enter_from_user_mode+0x1d/0x50 [ 776.054819] do_syscall_64+0x33/0x40 [ 776.055328] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 776.055994] RIP: 0033:0x7f084f4a7b19 [ 776.056466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 776.058908] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 776.059910] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 776.060865] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 776.061790] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 776.062698] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 776.063642] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:46:56 executing program 7: semget$private(0x0, 0x4, 0x0) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:46:56 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 25) 13:46:56 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 21) [ 776.139035] FAULT_INJECTION: forcing a failure. [ 776.139035] name failslab, interval 1, probability 0, space 0, times 0 [ 776.140587] CPU: 1 PID: 6136 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 776.141603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 776.142789] Call Trace: [ 776.143126] dump_stack+0x107/0x167 [ 776.143689] should_fail.cold+0x5/0xa [ 776.144225] ? create_object.isra.0+0x3a/0xa30 [ 776.144861] should_failslab+0x5/0x20 [ 776.145388] kmem_cache_alloc+0x5b/0x310 [ 776.146143] create_object.isra.0+0x3a/0xa30 [ 776.146809] kmemleak_alloc_percpu+0xa0/0x100 [ 776.147368] pcpu_alloc+0x4e2/0x1240 [ 776.147970] __percpu_counter_init+0x10d/0x2d0 [ 776.148550] io_uring_alloc_task_context+0xcc/0x6a0 [ 776.149169] ? io_import_iovec+0x1120/0x1120 [ 776.149725] io_uring_setup+0x1dd1/0x2980 [ 776.150238] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 776.150843] ? wait_for_completion_io+0x270/0x270 [ 776.151482] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 776.152134] ? syscall_enter_from_user_mode+0x1d/0x50 [ 776.152770] do_syscall_64+0x33/0x40 [ 776.153240] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 776.153878] RIP: 0033:0x7f084f4a7b19 [ 776.154330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 776.156555] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 776.157766] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 776.158937] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 776.159852] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 776.160809] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 776.161711] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:46:57 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x9, 0xfffffff7000) 13:46:57 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0xa, 0x0, 0xfffffff7000) [ 776.202620] FAULT_INJECTION: forcing a failure. [ 776.202620] name failslab, interval 1, probability 0, space 0, times 0 [ 776.204368] CPU: 1 PID: 6138 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 776.205212] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 776.206245] Call Trace: [ 776.206582] dump_stack+0x107/0x167 [ 776.207024] should_fail.cold+0x5/0xa [ 776.207504] ? create_object.isra.0+0x3a/0xa30 [ 776.208069] should_failslab+0x5/0x20 [ 776.208551] kmem_cache_alloc+0x5b/0x310 [ 776.209057] create_object.isra.0+0x3a/0xa30 [ 776.209626] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 776.210264] kmem_cache_alloc+0x159/0x310 [ 776.210791] ? mempool_free_pages+0x20/0x20 [ 776.211334] mempool_alloc+0x148/0x360 [ 776.211818] ? mempool_resize+0x7d0/0x7d0 [ 776.212353] ? __test_set_page_writeback+0x160/0xbb0 [ 776.212986] bio_alloc_bioset+0x36e/0x600 [ 776.213520] ? bvec_alloc+0x2f0/0x2f0 [ 776.213994] ? invalid_page_referenced_vma+0x570/0x570 [ 776.214655] ext4_bio_write_page+0xa79/0x1480 [ 776.215217] mpage_submit_page+0x14b/0x260 [ 776.215730] ext4_writepages+0x1f2e/0x3350 [ 776.216287] ? __ext4_mark_inode_dirty+0x770/0x770 [ 776.216899] ? quarantine_put+0x8b/0x1a0 [ 776.217402] ? trace_hardirqs_on+0x5b/0x180 [ 776.217941] ? kmem_cache_free+0xa7/0x2d0 [ 776.218465] ? jbd2_journal_stop+0x61f/0xdc0 [ 776.219030] ? __lock_acquire+0x1657/0x5b00 [ 776.219568] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 776.220231] ? __ext4_mark_inode_dirty+0x770/0x770 [ 776.220828] do_writepages+0xee/0x2a0 [ 776.221314] ? page_writeback_cpu_online+0x20/0x20 [ 776.221905] ? lock_acquire+0x197/0x470 [ 776.222407] ? ext4_fallocate+0x21ac/0x3850 [ 776.222938] ? lock_release+0x680/0x680 [ 776.223443] __filemap_fdatawrite_range+0x24b/0x2f0 [ 776.224061] ? igrab+0xc0/0xc0 [ 776.224473] ? delete_from_page_cache_batch+0xa30/0xa30 [ 776.225153] ? down_write+0xe0/0x160 [ 776.225612] ? down_write_killable+0x180/0x180 [ 776.226159] filemap_write_and_wait_range+0x65/0x100 [ 776.226759] ext4_fallocate+0x220f/0x3850 [ 776.227260] ? ext4_ext_truncate+0x250/0x250 [ 776.227784] ? selinux_file_permission+0x92/0x520 [ 776.228362] ? ext4_ext_truncate+0x250/0x250 [ 776.228884] vfs_fallocate+0x48f/0xda0 [ 776.229356] __x64_sys_fallocate+0xcf/0x140 [ 776.229864] do_syscall_64+0x33/0x40 [ 776.230305] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 776.230903] RIP: 0033:0x7f518f061b19 [ 776.231348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 776.233510] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 776.234428] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 776.235257] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 776.236109] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 776.236934] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 776.237784] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 13:46:57 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x10, 0x0, 0xfffffff7000) 13:46:57 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xb, 0xfffffff7000) 13:46:57 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 26) 13:46:57 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 776.444028] FAULT_INJECTION: forcing a failure. [ 776.444028] name failslab, interval 1, probability 0, space 0, times 0 13:46:57 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) r2 = syz_open_dev$vcsu(&(0x7f0000000000), 0x1, 0x4c0) openat(r2, &(0x7f0000000040)='./file1\x00', 0x2, 0x82) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:46:57 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 22) [ 776.446868] CPU: 0 PID: 6151 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 776.448305] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 776.450081] Call Trace: [ 776.450669] dump_stack+0x107/0x167 [ 776.451455] should_fail.cold+0x5/0xa [ 776.452308] ? create_object.isra.0+0x3a/0xa30 [ 776.453272] should_failslab+0x5/0x20 [ 776.454102] kmem_cache_alloc+0x5b/0x310 [ 776.455034] create_object.isra.0+0x3a/0xa30 [ 776.456018] kmemleak_alloc_percpu+0xa0/0x100 [ 776.457003] pcpu_alloc+0x4e2/0x1240 [ 776.457849] __percpu_counter_init+0x10d/0x2d0 [ 776.458837] io_uring_alloc_task_context+0xcc/0x6a0 [ 776.459920] ? io_import_iovec+0x1120/0x1120 [ 776.460917] io_uring_setup+0x1dd1/0x2980 [ 776.461848] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 776.462933] ? wait_for_completion_io+0x270/0x270 [ 776.464014] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 776.465148] ? syscall_enter_from_user_mode+0x1d/0x50 [ 776.466277] do_syscall_64+0x33/0x40 [ 776.467167] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 776.468301] RIP: 0033:0x7f084f4a7b19 [ 776.469086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 776.472985] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 776.474634] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 776.476119] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 776.477695] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 776.479475] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 776.480977] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 776.541447] FAULT_INJECTION: forcing a failure. [ 776.541447] name failslab, interval 1, probability 0, space 0, times 0 [ 776.543277] CPU: 1 PID: 6160 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 776.544086] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 776.545039] Call Trace: [ 776.545350] dump_stack+0x107/0x167 [ 776.545781] should_fail.cold+0x5/0xa [ 776.546228] ? mempool_alloc+0x148/0x360 [ 776.546692] ? mempool_free_pages+0x20/0x20 [ 776.547185] should_failslab+0x5/0x20 [ 776.547625] kmem_cache_alloc+0x5b/0x310 [ 776.548100] ? mempool_free_pages+0x20/0x20 [ 776.548597] mempool_alloc+0x148/0x360 [ 776.549046] ? mempool_resize+0x7d0/0x7d0 [ 776.549534] ? __test_set_page_writeback+0x160/0xbb0 [ 776.550122] bio_alloc_bioset+0x36e/0x600 [ 776.550607] ? bvec_alloc+0x2f0/0x2f0 [ 776.551050] ? invalid_page_referenced_vma+0x570/0x570 [ 776.551661] ext4_bio_write_page+0xa79/0x1480 [ 776.552197] mpage_submit_page+0x14b/0x260 [ 776.552687] ext4_writepages+0x1f2e/0x3350 [ 776.553207] ? __ext4_mark_inode_dirty+0x770/0x770 [ 776.553787] ? quarantine_put+0x8b/0x1a0 [ 776.554251] ? trace_hardirqs_on+0x5b/0x180 [ 776.554746] ? kmem_cache_free+0xa7/0x2d0 [ 776.555236] ? jbd2_journal_stop+0x61f/0xdc0 [ 776.555741] ? __lock_acquire+0x1657/0x5b00 [ 776.556251] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 776.556851] ? __ext4_mark_inode_dirty+0x770/0x770 [ 776.557413] do_writepages+0xee/0x2a0 [ 776.557852] ? page_writeback_cpu_online+0x20/0x20 [ 776.558423] ? lock_acquire+0x197/0x470 [ 776.558879] ? ext4_fallocate+0x21ac/0x3850 [ 776.559380] ? lock_release+0x680/0x680 [ 776.559852] __filemap_fdatawrite_range+0x24b/0x2f0 [ 776.560433] ? igrab+0xc0/0xc0 [ 776.560808] ? delete_from_page_cache_batch+0xa30/0xa30 [ 776.561432] ? down_write+0xe0/0x160 [ 776.561871] ? down_write_killable+0x180/0x180 [ 776.562397] filemap_write_and_wait_range+0x65/0x100 [ 776.562985] ext4_fallocate+0x220f/0x3850 [ 776.563467] ? __x64_sys_fallocate+0xcf/0x140 [ 776.563997] ? ext4_ext_truncate+0x250/0x250 [ 776.564503] ? selinux_file_permission+0x92/0x520 [ 776.565067] ? ext4_ext_truncate+0x250/0x250 [ 776.565589] vfs_fallocate+0x48f/0xda0 [ 776.566048] __x64_sys_fallocate+0xcf/0x140 [ 776.566548] do_syscall_64+0x33/0x40 [ 776.566975] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 776.567556] RIP: 0033:0x7f518f061b19 [ 776.567988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 776.570122] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 776.570992] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 776.571794] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 776.572611] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 776.573411] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 776.574241] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 13:47:10 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) ioctl$INCFS_IOC_FILL_BLOCKS(r1, 0x80106720, &(0x7f0000000440)={0x3, &(0x7f0000000200)=[{0x6, 0x36, &(0x7f0000000080)="02bc8108f82eb02b05821ef131f1aabd656e39b17fed2dfa58319814c0ff0b332d2bf992daa74959dfe7796bfeec2003586c69f351b7", 0x1}, {0x98000000, 0xae, &(0x7f0000000140)="a20606d646ee8ecdc189e2262cd91446c61a79f7ece105fac03602c4d258bf620a526bd17b188eadf68eb9926a0d178dbc4211a87ea9163538a962867eed2cf9a2602753b5e6562e7b1c0b6d80f36c71696af955dd2318037a8f8984dd244c09cc8be21a187fee9cbef1395e80cc12c8dab872a29daffc2b426a7b6af88ac42fed16eba2a520a428dc0e9c8394776ed4d5e2cd1c7598fd50b3c173de04deefc97535b9bb1bc28485922a8d42de00", 0x1, 0x1}, {0x200, 0xc1, &(0x7f00000002c0)="4631211650a9313ccb80ffd97b5e04faf8ac79916c8b93b8e1f8c8dce708dad29e0d940c907ff7330ec8a9703bf468765ab2785d1d7d5690c7aa8a6d3e1c2903b60606bc6e914d35e95822f19aa2d0ad6c6b72130a0b36d6cb1846da41133bf5e09e3f27ad97510b7bd17285a6ad9c08b6f65758d848a90e1fde9f3b9331a9f81353afb9250e9845d2eb3085084396224ecea861c247ee7bde11dc1ccb0e231539f32fb9794cc6f73ca93f8af10049083df13eb4dfc5a2925fec21fe25cb048273", 0x0, 0x1}]}) mkdir(&(0x7f00000003c0)='./file1\x00', 0x10) r2 = openat$incfs(r1, &(0x7f0000000000)='.pending_reads\x00', 0xd42c6933762c5858, 0xaa) r3 = openat(r2, &(0x7f0000000040)='./file1\x00', 0x10440, 0x0) lseek(r0, 0x0, 0x4) openat(r3, &(0x7f0000000400)='./file1/file0\x00', 0x2200, 0x188) 13:47:10 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 23) 13:47:10 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xd, 0xfffffff7000) 13:47:10 executing program 7: semget$private(0x0, 0x4, 0x0) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:47:10 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x11, 0x0, 0xfffffff7000) 13:47:10 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(0x0, 0x0, 0xb) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:47:10 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:47:10 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 27) [ 789.446455] FAULT_INJECTION: forcing a failure. [ 789.446455] name failslab, interval 1, probability 0, space 0, times 0 [ 789.448237] CPU: 1 PID: 6184 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 789.449454] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 789.450644] Call Trace: [ 789.451026] dump_stack+0x107/0x167 [ 789.451554] should_fail.cold+0x5/0xa [ 789.452127] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 789.452984] should_failslab+0x5/0x20 [ 789.453537] kmem_cache_alloc_trace+0x55/0x320 [ 789.454189] io_uring_alloc_task_context+0x4a3/0x6a0 [ 789.454889] ? io_import_iovec+0x1120/0x1120 [ 789.455509] io_uring_setup+0x1dd1/0x2980 [ 789.456080] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 789.456791] ? wait_for_completion_io+0x270/0x270 [ 789.457520] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 789.458285] ? syscall_enter_from_user_mode+0x1d/0x50 [ 789.459026] do_syscall_64+0x33/0x40 [ 789.459539] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 789.460253] RIP: 0033:0x7f084f4a7b19 [ 789.460761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 789.463347] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 789.464395] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 789.465381] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 789.466348] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 789.467348] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 789.468350] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 789.479457] FAULT_INJECTION: forcing a failure. [ 789.479457] name failslab, interval 1, probability 0, space 0, times 0 [ 789.481209] CPU: 1 PID: 6174 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 789.482181] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 789.483307] Call Trace: [ 789.483672] dump_stack+0x107/0x167 [ 789.484184] should_fail.cold+0x5/0xa [ 789.484704] ? lock_acquire+0x197/0x470 [ 789.485264] ? create_task_io_context+0x2c/0x430 [ 789.485909] should_failslab+0x5/0x20 [ 789.486429] kmem_cache_alloc_node+0x55/0x330 [ 789.487052] create_task_io_context+0x2c/0x430 [ 789.487676] submit_bio_checks+0x1366/0x1720 [ 789.488274] ? mark_held_locks+0x9e/0xe0 [ 789.488850] ? trace_event_raw_event_block_rq_requeue+0x560/0x560 [ 789.489715] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 789.490438] ? quarantine_put+0x8b/0x1a0 [ 789.490986] ? trace_hardirqs_on+0x5b/0x180 [ 789.491601] ? kmem_cache_free+0xa7/0x2d0 [ 789.492178] submit_bio_noacct+0x82/0x1010 [ 789.492773] ? slab_free_freelist_hook+0xa9/0x180 [ 789.493432] ? blk_queue_enter+0xc30/0xc30 [ 789.494007] ? kmem_cache_free+0x249/0x2d0 [ 789.494582] ? mpage_release_unused_pages+0x4a7/0x600 [ 789.495299] submit_bio+0xf3/0x4e0 [ 789.495797] ? submit_bio_noacct+0x1010/0x1010 [ 789.496449] ? up_write+0x191/0x550 [ 789.496944] ? downgrade_write+0x3a0/0x3a0 [ 789.497524] ? down_write_killable+0x180/0x180 [ 789.498273] ext4_io_submit+0x181/0x210 [ 789.498941] ext4_writepages+0x1265/0x3350 [ 789.499688] ? __ext4_mark_inode_dirty+0x770/0x770 [ 789.500347] ? quarantine_put+0x8b/0x1a0 [ 789.501036] ? trace_hardirqs_on+0x5b/0x180 [ 789.501635] ? kmem_cache_free+0xa7/0x2d0 [ 789.502221] ? __lock_acquire+0x1657/0x5b00 [ 789.502930] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 789.503818] ? __ext4_mark_inode_dirty+0x770/0x770 [ 789.504613] do_writepages+0xee/0x2a0 [ 789.505137] ? page_writeback_cpu_online+0x20/0x20 [ 789.505946] ? lock_acquire+0x197/0x470 [ 789.506496] ? ext4_fallocate+0x21ac/0x3850 [ 789.507094] ? lock_release+0x680/0x680 [ 789.507786] __filemap_fdatawrite_range+0x24b/0x2f0 [ 789.508594] ? igrab+0xc0/0xc0 [ 789.509111] ? delete_from_page_cache_batch+0xa30/0xa30 [ 789.509954] ? down_write+0xe0/0x160 [ 789.510513] ? down_write_killable+0x180/0x180 [ 789.511234] filemap_write_and_wait_range+0x65/0x100 [ 789.511907] ext4_fallocate+0x220f/0x3850 [ 789.512517] ? __x64_sys_fallocate+0xcf/0x140 [ 789.513246] ? ext4_ext_truncate+0x250/0x250 [ 789.513937] ? selinux_file_permission+0x92/0x520 [ 789.514796] ? ext4_ext_truncate+0x250/0x250 [ 789.515381] vfs_fallocate+0x48f/0xda0 [ 789.516063] __x64_sys_fallocate+0xcf/0x140 [ 789.516653] do_syscall_64+0x33/0x40 [ 789.517158] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 789.517848] RIP: 0033:0x7f518f061b19 [ 789.518367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 789.520889] RSP: 002b:00007f518c5d7188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 789.521961] RAX: ffffffffffffffda RBX: 00007f518f174f60 RCX: 00007f518f061b19 [ 789.522963] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000003 [ 789.523914] RBP: 00007f518c5d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 789.524874] R10: 00000fffffff7000 R11: 0000000000000246 R12: 0000000000000002 [ 789.525865] R13: 00007ffdb3f5d5af R14: 00007f518c5d7300 R15: 0000000000022000 13:47:10 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xe, 0xfffffff7000) 13:47:10 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 28) 13:47:10 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x10, 0xfffffff7000) 13:47:10 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:47:10 executing program 1: ioctl$TIOCGSOFTCAR(0xffffffffffffffff, 0x5419, &(0x7f0000000000)) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) [ 789.766409] FAULT_INJECTION: forcing a failure. [ 789.766409] name failslab, interval 1, probability 0, space 0, times 0 [ 789.769054] CPU: 0 PID: 6194 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 789.770497] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 789.772225] Call Trace: [ 789.772788] dump_stack+0x107/0x167 [ 789.773565] should_fail.cold+0x5/0xa [ 789.774382] ? create_object.isra.0+0x3a/0xa30 [ 789.775339] should_failslab+0x5/0x20 [ 789.776135] kmem_cache_alloc+0x5b/0x310 [ 789.777003] create_object.isra.0+0x3a/0xa30 [ 789.777958] kmemleak_alloc_percpu+0xa0/0x100 [ 789.778937] pcpu_alloc+0x4e2/0x1240 [ 789.779950] __percpu_counter_init+0x10d/0x2d0 [ 789.780954] io_uring_alloc_task_context+0xcc/0x6a0 [ 789.782262] ? io_import_iovec+0x1120/0x1120 [ 789.783306] io_uring_setup+0x1dd1/0x2980 [ 789.784416] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 789.785468] ? wait_for_completion_io+0x270/0x270 [ 789.786775] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 789.787874] ? syscall_enter_from_user_mode+0x1d/0x50 [ 789.789211] do_syscall_64+0x33/0x40 [ 789.790069] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 789.791142] RIP: 0033:0x7f084f4a7b19 [ 789.791923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 789.795708] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 789.797287] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 789.798771] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 789.800256] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 789.801732] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 789.803206] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:47:10 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) (fail_nth: 24) 13:47:10 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:47:10 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x12, 0xfffffff7000) 13:47:25 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x19, 0x0, 0xfffffff7000) 13:47:25 executing program 0: semget$private(0x0, 0x4, 0x100) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:47:25 executing program 4: ioctl$TIOCGSOFTCAR(0xffffffffffffffff, 0x5419, &(0x7f0000000000)) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:47:25 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:47:25 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 29) 13:47:25 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x102, 0xfffffff7000) 13:47:25 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x0, 0xfffffff7000) 13:47:25 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) r2 = syz_open_dev$ptys(0xc, 0x3, 0x0) lseek(r2, 0x2, 0x3) r3 = dup3(r0, r0, 0x80000) fsetxattr(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="74727508006564caa421d9235e2e232e355c000349a42369dc546c27a55a52c0b7735d1030f754ec88eea5b36932"], &(0x7f0000000040)='\x00', 0x1, 0x0) [ 804.472496] FAULT_INJECTION: forcing a failure. [ 804.472496] name failslab, interval 1, probability 0, space 0, times 0 [ 804.475038] CPU: 1 PID: 6228 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 804.476515] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 804.478313] Call Trace: [ 804.478884] dump_stack+0x107/0x167 [ 804.479673] should_fail.cold+0x5/0xa [ 804.480499] ? io_wq_create+0xeb/0xc00 [ 804.481334] should_failslab+0x5/0x20 [ 804.482160] __kmalloc+0x72/0x390 [ 804.482915] io_wq_create+0xeb/0xc00 [ 804.483726] io_uring_alloc_task_context+0x1f1/0x6a0 [ 804.484819] ? io_import_iovec+0x1120/0x1120 [ 804.485785] ? io_apoll_task_func+0x2d0/0x2d0 [ 804.486755] ? __io_req_find_next+0x300/0x300 [ 804.487782] io_uring_setup+0x1dd1/0x2980 [ 804.488764] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 804.489818] ? wait_for_completion_io+0x270/0x270 [ 804.490860] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 804.491955] ? syscall_enter_from_user_mode+0x1d/0x50 [ 804.493030] do_syscall_64+0x33/0x40 [ 804.493804] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 804.494880] RIP: 0033:0x7f084f4a7b19 [ 804.495659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 804.499499] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 804.501098] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 804.502591] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 804.504071] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 804.505554] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 804.507052] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:47:41 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:47:41 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x201, 0xfffffff7000) 13:47:41 executing program 4: semget$private(0x0, 0x4, 0x0) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:47:41 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x10000, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000200)={{0x1, 0x1, 0x18, r1}, './file1\x00'}) sendfile(r2, r1, 0x0, 0x100000005) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) r6 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x300400, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, r6, 0x0, r3}, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r6, 0x0, 0x82, &(0x7f0000000040)={'broute\x00', 0x0, 0x0, 0x0, [0xfa, 0xe5, 0xe3, 0x1cd, 0x4, 0x5]}, &(0x7f00000000c0)=0x78) lseek(r0, 0x0, 0x4) 13:47:41 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x2, 0x0, 0xfffffff7000) 13:47:41 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 30) 13:47:41 executing program 0: semget$private(0x0, 0x4, 0x100) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:47:41 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1a, 0x0, 0xfffffff7000) [ 820.272841] FAULT_INJECTION: forcing a failure. [ 820.272841] name failslab, interval 1, probability 0, space 0, times 0 [ 820.275326] CPU: 1 PID: 6249 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 820.276791] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 820.278588] Call Trace: [ 820.279165] dump_stack+0x107/0x167 [ 820.279955] should_fail.cold+0x5/0xa [ 820.280779] ? create_object.isra.0+0x3a/0xa30 [ 820.281763] should_failslab+0x5/0x20 [ 820.282621] kmem_cache_alloc+0x5b/0x310 [ 820.283503] create_object.isra.0+0x3a/0xa30 [ 820.284447] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 820.285568] __kmalloc+0x16e/0x390 [ 820.286353] io_wq_create+0xeb/0xc00 [ 820.287162] io_uring_alloc_task_context+0x1f1/0x6a0 [ 820.288253] ? io_import_iovec+0x1120/0x1120 [ 820.289198] ? io_apoll_task_func+0x2d0/0x2d0 [ 820.290164] ? __io_req_find_next+0x300/0x300 [ 820.291154] io_uring_setup+0x1dd1/0x2980 [ 820.292056] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 820.293140] ? wait_for_completion_io+0x270/0x270 [ 820.294234] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 820.295571] ? syscall_enter_from_user_mode+0x1d/0x50 [ 820.296679] do_syscall_64+0x33/0x40 [ 820.297479] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 820.298568] RIP: 0033:0x7f084f4a7b19 [ 820.299353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 820.303218] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 820.304848] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 820.306355] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 820.307839] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 820.309375] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 820.310873] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:47:41 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x281, 0xfffffff7000) 13:47:41 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x3, 0x0, 0xfffffff7000) 13:47:41 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x2, 0xfffffff7000) 13:47:41 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) fchdir(r2) 13:47:41 executing program 0: semget$private(0x0, 0x4, 0x100) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:47:41 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:47:41 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x300, 0xfffffff7000) 13:47:41 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 31) 13:47:41 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x3, 0xfffffff7000) 13:47:41 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x4, 0x0, 0xfffffff7000) 13:47:41 executing program 4: semget$private(0x0, 0x4, 0x0) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 820.767204] FAULT_INJECTION: forcing a failure. [ 820.767204] name failslab, interval 1, probability 0, space 0, times 0 [ 820.769627] CPU: 1 PID: 6289 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 820.771092] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 820.772835] Call Trace: [ 820.773402] dump_stack+0x107/0x167 [ 820.774176] should_fail.cold+0x5/0xa [ 820.774980] ? io_wq_create+0x6ef/0xc00 [ 820.775814] should_failslab+0x5/0x20 [ 820.776616] kmem_cache_alloc_node_trace+0x59/0x340 [ 820.777674] io_wq_create+0x6ef/0xc00 [ 820.778496] io_uring_alloc_task_context+0x1f1/0x6a0 [ 820.779568] ? io_import_iovec+0x1120/0x1120 [ 820.780493] ? io_apoll_task_func+0x2d0/0x2d0 [ 820.781442] ? __io_req_find_next+0x300/0x300 [ 820.782404] io_uring_setup+0x1dd1/0x2980 [ 820.783285] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 820.784352] ? wait_for_completion_io+0x270/0x270 [ 820.785385] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 820.786497] ? syscall_enter_from_user_mode+0x1d/0x50 [ 820.787591] do_syscall_64+0x33/0x40 [ 820.788373] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 820.789445] RIP: 0033:0x7f084f4a7b19 [ 820.790232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 820.794087] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 820.795686] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 820.797187] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 820.798697] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 820.800193] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 820.801690] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:47:41 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x321, 0xfffffff7000) 13:47:41 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000000)={0x0, r0, 0x81, 0xffff, 0x8, 0x3}) lseek(r0, 0x0, 0x4) 13:47:41 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x4, 0xfffffff7000) 13:47:41 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0xa, 0x0, 0xfffffff7000) 13:47:41 executing program 0: perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:47:41 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x500, 0xfffffff7000) 13:47:41 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 32) [ 821.177330] FAULT_INJECTION: forcing a failure. [ 821.177330] name failslab, interval 1, probability 0, space 0, times 0 [ 821.179844] CPU: 1 PID: 6316 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 821.181292] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 821.183060] Call Trace: [ 821.183619] dump_stack+0x107/0x167 [ 821.184398] should_fail.cold+0x5/0xa [ 821.185213] ? io_wq_create+0xeb/0xc00 [ 821.186038] should_failslab+0x5/0x20 [ 821.186856] __kmalloc+0x72/0x390 [ 821.187597] io_wq_create+0xeb/0xc00 [ 821.188406] io_uring_alloc_task_context+0x1f1/0x6a0 [ 821.189480] ? io_import_iovec+0x1120/0x1120 [ 821.190434] ? io_apoll_task_func+0x2d0/0x2d0 [ 821.191376] ? __io_req_find_next+0x300/0x300 [ 821.192314] io_uring_setup+0x1dd1/0x2980 [ 821.193210] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 821.194265] ? wait_for_completion_io+0x270/0x270 [ 821.195288] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 821.196361] ? syscall_enter_from_user_mode+0x1d/0x50 [ 821.197440] do_syscall_64+0x33/0x40 [ 821.198215] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 821.199261] RIP: 0033:0x7f084f4a7b19 [ 821.200022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 821.203825] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 821.205405] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 821.206874] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 821.208361] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 821.209829] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 821.211308] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:47:42 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x5, 0xfffffff7000) 13:47:42 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0xb, 0x0, 0xfffffff7000) 13:47:42 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x900, 0xfffffff7000) [ 821.337539] perf: interrupt took too long (15690 > 15652), lowering kernel.perf_event_max_sample_rate to 12000 13:47:54 executing program 4: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x3, 0x0, 0xfffffff7000) 13:47:54 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x6, 0xfffffff7000) 13:47:54 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:47:54 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0xc, 0x0, 0xfffffff7000) 13:47:54 executing program 0: perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:47:54 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xb00, 0xfffffff7000) 13:47:54 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r1, 0x0, 0x4) 13:47:54 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 33) [ 833.609643] FAULT_INJECTION: forcing a failure. [ 833.609643] name failslab, interval 1, probability 0, space 0, times 0 [ 833.611057] CPU: 1 PID: 6347 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 833.611893] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 833.612918] Call Trace: [ 833.613251] dump_stack+0x107/0x167 [ 833.613705] should_fail.cold+0x5/0xa [ 833.614199] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 833.614889] should_failslab+0x5/0x20 [ 833.615362] kmem_cache_alloc_trace+0x55/0x320 [ 833.615930] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 833.616595] io_uring_setup+0x14f6/0x2980 [ 833.617117] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 833.617741] ? wait_for_completion_io+0x270/0x270 [ 833.618362] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 833.619006] ? syscall_enter_from_user_mode+0x1d/0x50 [ 833.619646] do_syscall_64+0x33/0x40 [ 833.620107] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 833.620738] RIP: 0033:0x7f084f4a7b19 [ 833.621198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 833.624931] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 833.626577] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 833.628130] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 833.629696] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 833.631280] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 833.632840] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:47:54 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xd00, 0xfffffff7000) 13:47:54 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0xd, 0x0, 0xfffffff7000) 13:47:54 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x8, 0xfffffff7000) 13:48:07 executing program 4: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x2, 0xfffffff7000) 13:48:07 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:48:07 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xe00, 0xfffffff7000) 13:48:07 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0xe, 0x0, 0xfffffff7000) 13:48:07 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 34) 13:48:07 executing program 0: perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:48:07 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x9, 0xfffffff7000) 13:48:07 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/custom1\x00', 0x800, 0x0) fcntl$notify(r2, 0x402, 0x4) [ 846.778561] FAULT_INJECTION: forcing a failure. [ 846.778561] name failslab, interval 1, probability 0, space 0, times 0 [ 846.781607] CPU: 0 PID: 6376 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 846.783212] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 846.785152] Call Trace: [ 846.785788] dump_stack+0x107/0x167 [ 846.786673] should_fail.cold+0x5/0xa [ 846.787575] ? create_object.isra.0+0x3a/0xa30 [ 846.788660] should_failslab+0x5/0x20 [ 846.789555] kmem_cache_alloc+0x5b/0x310 [ 846.790535] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 846.791696] ? trace_hardirqs_on+0x5b/0x180 [ 846.792731] create_object.isra.0+0x3a/0xa30 [ 846.793742] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 846.794957] kmem_cache_alloc_trace+0x151/0x320 [ 846.796071] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 846.797355] io_uring_setup+0x14f6/0x2980 [ 846.798377] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 846.799587] ? wait_for_completion_io+0x270/0x270 [ 846.800773] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 846.801995] ? syscall_enter_from_user_mode+0x1d/0x50 [ 846.803207] do_syscall_64+0x33/0x40 [ 846.804078] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 846.805267] RIP: 0033:0x7f084f4a7b19 [ 846.806157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 846.810801] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 846.812609] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 846.814255] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 846.815928] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 846.817591] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 846.819246] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:48:07 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x1200, 0xfffffff7000) 13:48:07 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xb, 0xfffffff7000) 13:48:07 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x12ec, 0xfffffff7000) 13:48:07 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xc, 0xfffffff7000) 13:48:07 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x2, 0xfffffff7000) 13:48:07 executing program 4: pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r1 = socket$inet(0x2, 0x2, 0xff) dup3(r0, r1, 0x0) 13:48:07 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x2000, 0xfffffff7000) 13:48:07 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x6040, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) mq_getsetattr(r1, &(0x7f0000000000)={0x8, 0x31b00000000000, 0x5, 0x2}, &(0x7f0000000040)) 13:48:20 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x3, 0xfffffff7000) 13:48:20 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xd, 0xfffffff7000) 13:48:20 executing program 0: semget$private(0x0, 0x0, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:48:20 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000000)={0x1, 0x80, 0xff, 0x3f, 0x6, 0xff, 0x0, 0x100000001, 0x1400, 0x6, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x54, 0x1, @perf_config_ext={0xff, 0x80000001}, 0x8091, 0x5ee, 0x8, 0x3, 0x38ee, 0x1, 0xfda0, 0x0, 0x7}, r0, 0x4, r1, 0x8) sendfile(r0, r2, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:48:20 executing program 4: mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040), 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffbfffffffff, 0xffffffffffffffff, 0x8) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) fsopen(0x0, 0x1) copy_file_range(r1, 0x0, r0, 0x0, 0x10001, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) sendfile(r0, r2, 0x0, 0x20d315) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180), 0xc, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB="3b44da04", @ANYRES16=0x0, @ANYBLOB, @ANYRES32, @ANYBLOB="08205d000100000008005d0000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x44) 13:48:20 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x2103, 0xfffffff7000) 13:48:20 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:48:20 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 35) [ 859.916247] FAULT_INJECTION: forcing a failure. [ 859.916247] name failslab, interval 1, probability 0, space 0, times 0 [ 859.918609] CPU: 1 PID: 6444 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 859.920213] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 859.922340] Call Trace: [ 859.923039] dump_stack+0x107/0x167 [ 859.923965] should_fail.cold+0x5/0xa [ 859.924951] ? create_object.isra.0+0x3a/0xa30 [ 859.926118] should_failslab+0x5/0x20 [ 859.927111] kmem_cache_alloc+0x5b/0x310 [ 859.928151] create_object.isra.0+0x3a/0xa30 [ 859.929297] kmemleak_alloc_percpu+0xa0/0x100 [ 859.930462] pcpu_alloc+0x4e2/0x1240 [ 859.931444] ? io_async_queue_proc+0x80/0x80 [ 859.932580] percpu_ref_init+0x31/0x3d0 [ 859.933500] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 859.934917] io_uring_setup+0x14f6/0x2980 [ 859.935997] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 859.937305] ? wait_for_completion_io+0x270/0x270 [ 859.938578] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 859.939930] ? syscall_enter_from_user_mode+0x1d/0x50 [ 859.941257] do_syscall_64+0x33/0x40 [ 859.942225] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 859.943558] RIP: 0033:0x7f084f4a7b19 [ 859.944512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 859.949233] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 859.951229] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 859.953048] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 859.954889] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 859.956719] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 859.958549] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:48:20 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:48:20 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xe, 0xfffffff7000) 13:48:20 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x4, 0xfffffff7000) 13:48:33 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x10, 0xfffffff7000) 13:48:33 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x8102, 0xfffffff7000) 13:48:33 executing program 4: mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040), 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffbfffffffff, 0xffffffffffffffff, 0x8) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) fsopen(0x0, 0x1) copy_file_range(r1, 0x0, r0, 0x0, 0x10001, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) sendfile(r0, r2, 0x0, 0x20d315) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180), 0xc, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB="3b44da04", @ANYRES16=0x0, @ANYBLOB, @ANYRES32, @ANYBLOB="08205d000100000008005d0000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x44) 13:48:33 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:48:33 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 36) 13:48:33 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x5, 0xfffffff7000) 13:48:33 executing program 0: semget$private(0x0, 0x0, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:48:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x0, 0x1) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r2, 0xf502, 0x0) lseek(r0, 0x0, 0x4) [ 872.461528] FAULT_INJECTION: forcing a failure. [ 872.461528] name failslab, interval 1, probability 0, space 0, times 0 [ 872.462812] CPU: 0 PID: 6477 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 872.463549] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 872.464444] Call Trace: [ 872.464738] dump_stack+0x107/0x167 [ 872.465138] should_fail.cold+0x5/0xa [ 872.465552] ? create_object.isra.0+0x3a/0xa30 [ 872.466049] should_failslab+0x5/0x20 [ 872.466466] kmem_cache_alloc+0x5b/0x310 [ 872.466921] create_object.isra.0+0x3a/0xa30 [ 872.467401] kmemleak_alloc_percpu+0xa0/0x100 [ 872.467894] pcpu_alloc+0x4e2/0x1240 [ 872.468314] ? io_async_queue_proc+0x80/0x80 [ 872.468792] percpu_ref_init+0x31/0x3d0 [ 872.469257] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 872.469842] io_uring_setup+0x14f6/0x2980 [ 872.470299] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 872.470852] ? wait_for_completion_io+0x270/0x270 [ 872.471398] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 872.471963] ? syscall_enter_from_user_mode+0x1d/0x50 [ 872.472523] do_syscall_64+0x33/0x40 [ 872.472927] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 872.473477] RIP: 0033:0x7f084f4a7b19 [ 872.473879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 872.475852] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 872.476736] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 872.477503] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 872.478269] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 872.479050] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 872.479816] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:48:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f00000002c0)={0x0, 0x0, 0x3, 0x0, '\x00', [{0x6, 0x1f, 0x9, 0x1ff, 0x2, 0x8}, {0x2, 0x0, 0xb587, 0x5, 0xffff, 0xca}], ['\x00', '\x00', '\x00']}) lseek(r0, 0x0, 0x4) 13:48:33 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 37) 13:48:33 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x12, 0xfffffff7000) 13:48:33 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xec12, 0xfffffff7000) 13:48:33 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x8, 0xfffffff7000) [ 872.608329] FAULT_INJECTION: forcing a failure. [ 872.608329] name failslab, interval 1, probability 0, space 0, times 0 [ 872.610562] CPU: 1 PID: 6493 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 872.611983] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 872.613465] Call Trace: [ 872.613920] dump_stack+0x107/0x167 [ 872.614537] should_fail.cold+0x5/0xa [ 872.615373] ? percpu_ref_init+0xd8/0x3d0 [ 872.616158] should_failslab+0x5/0x20 [ 872.616798] kmem_cache_alloc_trace+0x55/0x320 [ 872.617564] ? io_async_queue_proc+0x80/0x80 [ 872.618307] percpu_ref_init+0xd8/0x3d0 [ 872.618989] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 872.619899] io_uring_setup+0x14f6/0x2980 [ 872.620643] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 872.621551] ? wait_for_completion_io+0x270/0x270 [ 872.622379] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 872.623267] ? syscall_enter_from_user_mode+0x1d/0x50 [ 872.624133] do_syscall_64+0x33/0x40 [ 872.624759] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 872.625614] RIP: 0033:0x7f084f4a7b19 [ 872.626239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 872.629295] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 872.630565] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 872.631762] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 872.632958] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 872.634150] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 872.635354] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:48:33 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:48:47 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x64, 0xfffffff7000) 13:48:47 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:48:47 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x9, 0xfffffff7000) 13:48:47 executing program 0: semget$private(0x0, 0x0, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:48:47 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xff01, 0xfffffff7000) 13:48:47 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:48:47 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 38) 13:48:47 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(r0, &(0x7f0000000280)='./file1\x00', 0x828140, 0x0) sendfile(r0, r1, 0x0, 0x100000001) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0xfffffffd, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) r3 = accept(r2, &(0x7f0000000000)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, &(0x7f0000000080)=0x80) ioctl$VFAT_IOCTL_READDIR_SHORT(r3, 0x82307202, &(0x7f00000002c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) r4 = syz_open_dev$vcsu(&(0x7f00000000c0), 0x1, 0x244282) r5 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCADDRT(r5, 0x890b, &(0x7f00000001c0)={0x0, @l2={0x1f, 0x4, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x3ff, 0x1}, @hci={0x1f, 0x0, 0x2}, @hci={0x1f, 0x4, 0x4}, 0x3, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000180)='batadv0\x00', 0x4, 0x81, 0x96}) lseek(r4, 0x3, 0x4) [ 886.240106] FAULT_INJECTION: forcing a failure. [ 886.240106] name failslab, interval 1, probability 0, space 0, times 0 [ 886.243056] CPU: 1 PID: 6530 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 886.244811] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 886.247139] Call Trace: [ 886.247827] dump_stack+0x107/0x167 [ 886.248771] should_fail.cold+0x5/0xa [ 886.249753] ? create_object.isra.0+0x3a/0xa30 [ 886.250932] should_failslab+0x5/0x20 [ 886.251909] kmem_cache_alloc+0x5b/0x310 [ 886.252969] create_object.isra.0+0x3a/0xa30 [ 886.254107] kmemleak_alloc_percpu+0xa0/0x100 [ 886.255286] pcpu_alloc+0x4e2/0x1240 [ 886.256126] ? io_async_queue_proc+0x80/0x80 [ 886.257063] percpu_ref_init+0x31/0x3d0 [ 886.257917] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 886.259090] io_uring_setup+0x14f6/0x2980 [ 886.259982] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 886.261060] ? wait_for_completion_io+0x270/0x270 [ 886.262108] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 886.263232] ? syscall_enter_from_user_mode+0x1d/0x50 [ 886.264343] do_syscall_64+0x33/0x40 [ 886.265138] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 886.266229] RIP: 0033:0x7f084f4a7b19 [ 886.267027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 886.270844] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 886.272437] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 886.273932] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 886.275439] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 886.276941] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 13:48:47 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x80000, 0xfffffff7000) [ 886.278449] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:48:47 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xb, 0xfffffff7000) 13:48:47 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x102, 0xfffffff7000) 13:48:47 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) r3 = fork() move_pages(r3, 0x1, &(0x7f0000000080)=[&(0x7f0000ff9000/0x4000)=nil], &(0x7f0000000040), &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0) fcntl$setownex(r2, 0xf, &(0x7f0000000000)={0x1, r3}) sendfile(r0, r1, 0x0, 0x100000001) r4 = fork() move_pages(r4, 0x1, &(0x7f0000000080)=[&(0x7f0000ff9000/0x4000)=nil], &(0x7f0000000040), &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0) getpgid(r4) 13:48:47 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x100000, 0xfffffff7000) 13:48:47 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x201, 0xfffffff7000) 13:48:47 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xd, 0xfffffff7000) 13:48:47 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 39) [ 886.621189] FAULT_INJECTION: forcing a failure. [ 886.621189] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 886.623762] CPU: 1 PID: 6561 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 886.625234] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 886.626994] Call Trace: [ 886.627568] dump_stack+0x107/0x167 [ 886.628334] should_fail.cold+0x5/0xa [ 886.629143] _copy_to_user+0x2e/0x180 [ 886.629956] io_uring_setup+0x11b5/0x2980 [ 886.630860] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 886.631922] ? wait_for_completion_io+0x270/0x270 [ 886.632985] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 886.634091] ? syscall_enter_from_user_mode+0x1d/0x50 [ 886.635184] do_syscall_64+0x33/0x40 [ 886.635964] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 886.637041] RIP: 0033:0x7f084f4a7b19 [ 886.637816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 886.641911] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 886.643518] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 886.645010] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 886.646500] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 886.648000] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 886.649496] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:48:47 executing program 0: semget$private(0x0, 0x4, 0x0) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:00 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x800000, 0xfffffff7000) 13:49:00 executing program 0: semget$private(0x0, 0x4, 0x0) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:00 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) r2 = accept4$inet(r1, &(0x7f0000000000)={0x2, 0x0, @loopback}, &(0x7f0000000040)=0x10, 0x800) accept4(r2, 0x0, &(0x7f0000000080), 0x800) lseek(r0, 0x0, 0x4) 13:49:00 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xe, 0xfffffff7000) [ 899.451798] FAULT_INJECTION: forcing a failure. [ 899.451798] name failslab, interval 1, probability 0, space 0, times 0 [ 899.453426] CPU: 1 PID: 6589 Comm: syz-executor.6 Not tainted 5.10.254 #1 13:49:00 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x281, 0xfffffff7000) 13:49:00 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:00 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:00 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 40) [ 899.454375] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 899.455736] Call Trace: [ 899.456051] dump_stack+0x107/0x167 [ 899.456561] should_fail.cold+0x5/0xa [ 899.457100] ? __d_alloc+0x2a/0x990 [ 899.457623] should_failslab+0x5/0x20 [ 899.458299] kmem_cache_alloc+0x5b/0x310 [ 899.458875] __d_alloc+0x2a/0x990 [ 899.459359] ? find_held_lock+0x2c/0x110 [ 899.459922] d_alloc_pseudo+0x19/0x70 [ 899.460453] alloc_file_pseudo+0xce/0x250 [ 899.461030] ? trace_hardirqs_on+0x5b/0x180 [ 899.461629] ? alloc_file+0x5a0/0x5a0 [ 899.462169] anon_inode_getfile+0xc8/0x1f0 [ 899.462768] io_uring_setup+0x138b/0x2980 [ 899.463355] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 899.464085] ? wait_for_completion_io+0x270/0x270 [ 899.464782] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 899.465517] ? syscall_enter_from_user_mode+0x1d/0x50 [ 899.466242] do_syscall_64+0x33/0x40 [ 899.466757] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 899.467484] RIP: 0033:0x7f084f4a7b19 [ 899.467996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 899.470581] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 899.471654] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 899.472475] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 899.473520] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 899.474577] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 899.475408] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:49:00 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x10, 0xfffffff7000) 13:49:00 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x300, 0xfffffff7000) 13:49:00 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x1000000, 0xfffffff7000) 13:49:00 executing program 4: semget$private(0x0, 0x4, 0x0) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:00 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 41) [ 899.672917] FAULT_INJECTION: forcing a failure. [ 899.672917] name failslab, interval 1, probability 0, space 0, times 0 [ 899.674591] CPU: 1 PID: 6610 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 899.675398] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 899.676307] Call Trace: [ 899.676603] dump_stack+0x107/0x167 [ 899.677023] should_fail.cold+0x5/0xa [ 899.677460] ? create_object.isra.0+0x3a/0xa30 [ 899.677990] should_failslab+0x5/0x20 [ 899.678428] kmem_cache_alloc+0x5b/0x310 [ 899.678907] create_object.isra.0+0x3a/0xa30 [ 899.679413] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 899.679996] kmem_cache_alloc+0x159/0x310 [ 899.680477] __d_alloc+0x2a/0x990 [ 899.680874] ? find_held_lock+0x2c/0x110 [ 899.681319] d_alloc_pseudo+0x19/0x70 [ 899.681755] alloc_file_pseudo+0xce/0x250 [ 899.682228] ? trace_hardirqs_on+0x5b/0x180 [ 899.682700] ? alloc_file+0x5a0/0x5a0 [ 899.683159] anon_inode_getfile+0xc8/0x1f0 [ 899.683656] io_uring_setup+0x138b/0x2980 [ 899.684137] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 899.684725] ? wait_for_completion_io+0x270/0x270 [ 899.685290] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 899.685896] ? syscall_enter_from_user_mode+0x1d/0x50 [ 899.686463] do_syscall_64+0x33/0x40 [ 899.686901] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 899.687456] RIP: 0033:0x7f084f4a7b19 [ 899.687883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 899.689860] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 899.690732] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 899.691556] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 899.692373] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 899.693148] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 899.693962] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:49:00 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x321, 0xfffffff7000) 13:49:00 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x2000000, 0xfffffff7000) 13:49:00 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x12, 0xfffffff7000) 13:49:00 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:00 executing program 0: semget$private(0x0, 0x4, 0x0) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:00 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 42) 13:49:00 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x300400, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, r3, 0x0, r0}, 0x0) r4 = openat(r3, &(0x7f0000000080)='./file1\x00', 0x0, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) lseek(r4, 0x0, 0x4) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r4, 0xc018937a, &(0x7f0000000100)={{0x1, 0x1, 0x18, r5, {0x40d6}}, './file1\x00'}) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_group_source_req(r7, 0x29, 0x2f, &(0x7f0000000100)={0x0, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}}, {{0xa, 0x0, 0x0, @private2}}}, 0x108) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) bind$inet6(r8, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r8, &(0x7f0000000200)={0x2}) 13:49:00 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x102, 0xfffffff7000) 13:49:00 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x2010000, 0xfffffff7000) 13:49:00 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x500, 0xfffffff7000) [ 899.890530] FAULT_INJECTION: forcing a failure. [ 899.890530] name failslab, interval 1, probability 0, space 0, times 0 [ 899.893055] CPU: 0 PID: 6631 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 899.894507] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 899.896308] Call Trace: [ 899.897010] dump_stack+0x107/0x167 [ 899.897792] should_fail.cold+0x5/0xa [ 899.898598] ? __alloc_file+0x21/0x320 [ 899.899434] should_failslab+0x5/0x20 [ 899.900242] kmem_cache_alloc+0x5b/0x310 [ 899.901116] __alloc_file+0x21/0x320 [ 899.901910] alloc_empty_file+0x6d/0x170 [ 899.902784] alloc_file+0x5e/0x5a0 [ 899.903573] alloc_file_pseudo+0x16a/0x250 [ 899.904483] ? alloc_file+0x5a0/0x5a0 [ 899.905324] anon_inode_getfile+0xc8/0x1f0 [ 899.906231] io_uring_setup+0x138b/0x2980 [ 899.907142] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 899.908220] ? wait_for_completion_io+0x270/0x270 [ 899.909299] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 899.910417] ? syscall_enter_from_user_mode+0x1d/0x50 [ 899.911525] do_syscall_64+0x33/0x40 [ 899.912318] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 899.913405] RIP: 0033:0x7f084f4a7b19 [ 899.914199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 899.918097] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 899.919716] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 899.921236] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 899.922740] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 899.924255] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 899.925764] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:49:00 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x201, 0xfffffff7000) 13:49:00 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x3000000, 0xfffffff7000) 13:49:00 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x600, 0xfffffff7000) 13:49:00 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:13 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 43) 13:49:13 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) r2 = accept4$inet(r1, &(0x7f0000000000)={0x2, 0x0, @loopback}, &(0x7f0000000040)=0x10, 0x800) accept4(r2, 0x0, &(0x7f0000000080), 0x800) lseek(r0, 0x0, 0x4) 13:49:13 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x100) sendfile(r0, r0, 0x0, 0x1) r1 = openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0) lseek(r1, 0x2, 0x4) 13:49:13 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:13 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x900, 0xfffffff7000) 13:49:13 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x281, 0xfffffff7000) 13:49:13 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:13 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x4000000, 0xfffffff7000) [ 913.059507] FAULT_INJECTION: forcing a failure. [ 913.059507] name failslab, interval 1, probability 0, space 0, times 0 [ 913.061054] CPU: 1 PID: 6678 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 913.062134] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 913.063367] Call Trace: [ 913.063697] dump_stack+0x107/0x167 [ 913.064149] should_fail.cold+0x5/0xa [ 913.064745] ? create_object.isra.0+0x3a/0xa30 [ 913.065313] should_failslab+0x5/0x20 [ 913.065765] kmem_cache_alloc+0x5b/0x310 [ 913.066273] create_object.isra.0+0x3a/0xa30 [ 913.066924] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 913.067672] kmem_cache_alloc+0x159/0x310 [ 913.068398] __alloc_file+0x21/0x320 [ 913.068860] alloc_empty_file+0x6d/0x170 [ 913.069375] alloc_file+0x5e/0x5a0 [ 913.069903] alloc_file_pseudo+0x16a/0x250 [ 913.070432] ? alloc_file+0x5a0/0x5a0 [ 913.070915] anon_inode_getfile+0xc8/0x1f0 [ 913.071452] io_uring_setup+0x138b/0x2980 [ 913.071975] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 913.072630] ? wait_for_completion_io+0x270/0x270 [ 913.073339] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 913.074197] ? syscall_enter_from_user_mode+0x1d/0x50 [ 913.074856] do_syscall_64+0x33/0x40 [ 913.075362] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 913.076091] RIP: 0033:0x7f084f4a7b19 [ 913.076533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 913.079199] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 913.080202] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 913.081190] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 913.082029] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 913.082903] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 913.083751] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:49:13 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x5000000, 0xfffffff7000) 13:49:13 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x300, 0xfffffff7000) 13:49:13 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xb00, 0xfffffff7000) 13:49:13 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000000)=0x39df4b5e, 0x4) 13:49:14 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:14 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:14 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x321, 0xfffffff7000) 13:49:14 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x8000000, 0xfffffff7000) 13:49:31 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 44) 13:49:31 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:31 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x149180, 0x0) syz_io_uring_setup(0x5a67, &(0x7f0000000040)={0x0, 0xdf0a, 0xc, 0x2, 0x242, 0x0, r2}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) lseek(r0, 0x0, 0x4) creat(&(0x7f0000000180)='./file0\x00', 0x80) 13:49:31 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:31 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xc00, 0xfffffff7000) 13:49:31 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x500, 0xfffffff7000) 13:49:31 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x9000000, 0xfffffff7000) 13:49:31 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 930.493761] FAULT_INJECTION: forcing a failure. [ 930.493761] name failslab, interval 1, probability 0, space 0, times 0 [ 930.496949] CPU: 0 PID: 6724 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 930.498623] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 930.500627] Call Trace: [ 930.501259] dump_stack+0x107/0x167 [ 930.502112] should_fail.cold+0x5/0xa [ 930.503019] ? security_file_alloc+0x34/0x170 [ 930.504080] should_failslab+0x5/0x20 [ 930.504981] kmem_cache_alloc+0x5b/0x310 [ 930.505963] security_file_alloc+0x34/0x170 [ 930.506988] __alloc_file+0xb7/0x320 [ 930.507866] alloc_empty_file+0x6d/0x170 [ 930.508822] alloc_file+0x5e/0x5a0 [ 930.509662] alloc_file_pseudo+0x16a/0x250 [ 930.510653] ? alloc_file+0x5a0/0x5a0 [ 930.511595] anon_inode_getfile+0xc8/0x1f0 [ 930.512600] io_uring_setup+0x138b/0x2980 [ 930.513597] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 930.514779] ? wait_for_completion_io+0x270/0x270 [ 930.515963] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 930.517180] ? syscall_enter_from_user_mode+0x1d/0x50 [ 930.518396] do_syscall_64+0x33/0x40 [ 930.519281] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 930.520461] RIP: 0033:0x7f084f4a7b19 [ 930.521345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 930.525619] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 930.527396] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 930.529067] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 930.530718] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 930.532391] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 930.534044] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:49:31 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xd00, 0xfffffff7000) 13:49:31 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x900, 0xfffffff7000) 13:49:31 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xb000000, 0xfffffff7000) 13:49:31 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:31 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xb00, 0xfffffff7000) 13:49:31 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xd000000, 0xfffffff7000) 13:49:44 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 45) 13:49:44 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:44 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:44 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xd00, 0xfffffff7000) 13:49:44 executing program 4: keyctl$update(0x2, 0x0, &(0x7f0000000000)="a7", 0x1) keyctl$get_keyring_id(0x0, 0x0, 0x80) keyctl$negate(0xd, 0x0, 0xfffffffffffffffe, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000580)) syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0) add_key(&(0x7f0000000140)='trusted\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f0000000240)="8d69e2de849c61d5698bcf96bcabe942b5909dd0f20416ecb71a2d0e7d0aeebef0c07b58f9f5907d87322b6cf72145b050c1af7ad44f78c07d2dfd706ffe9909c1ece19f827decf2e81a9ad35278b25582f75a038741bbfe2165c6e269120e18dc39a12a96f77a22b7863db14e33ae6309151c3efbe8ee8039f2d2fa8722ed2219176a8bf284a8fde76b686b8487cd89cf2eb49c460d15d0f2d8851e3d48ee17", 0xa0, 0xfffffffffffffffc) timer_create(0x3, 0x0, &(0x7f0000000040)=0x0) getsockopt$IP6T_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x29, 0x44, 0x0, &(0x7f0000000380)) lseek(0xffffffffffffffff, 0x20, 0x2) timer_settime(r0, 0x0, 0x0, 0x0) timer_delete(r0) timer_gettime(r0, &(0x7f0000000100)) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4059, 0x2740, 0xa, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={&(0x7f00000000c0), 0x6}, 0x45085, 0x0, 0x40, 0x0, 0x0, 0x1, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) timer_gettime(r0, &(0x7f0000000300)) timer_create(0x6, 0x0, &(0x7f0000000040)=0x0) timer_gettime(r2, &(0x7f0000000340)) timer_gettime(r2, &(0x7f0000000080)) timer_gettime(r2, 0x0) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0x58) 13:49:44 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x18, r0, {0x4}}, './file1\x00'}) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/asound/seq/clients\x00', 0x0, 0x0) r4 = openat(r1, &(0x7f00000003c0)='./file1\x00', 0xc2580, 0x28) r5 = fcntl$dupfd(r1, 0x406, r0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r6, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f00000006c0)={{0x1, 0x1, 0x18, r0, {0x6}}, './file1\x00'}) r8 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) r11 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x300400, 0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, r11, 0x0, r8}, 0x0) io_submit(0x0, 0x7, &(0x7f0000000800)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x2, r1, &(0x7f0000000000)="93c5ebcbe3a147d862362522d5fc194335ab07b9ab9cf97d5be854b319def06fcc8d6fe4a5e31bdbee2042c5b02f633311f3298b37bf66a472d5cc2c262475d82dfb0db47413d141ce7975da7a3c79c447b9c91ba16f552673311ebf304e102aed80d4af957ae271800ea75471f35d174485dff5918cf62f046ea9bb6895b05ee16428770bc19d33380160027d1c6734e9ecc6b9dde39350d2f5a66a6ab42b2f2a299b5b44c321284edaea9c1d18095bcb69905f52d60d0ce90f119ce49df6682b6b5278576cdcc7dadda66f997ec858c6757004e6d84898bc24e2fbcf036a19d950dd0eb2f1bc424592047535c7b7851ee89b5a6dfeb2203d26620962", 0xfd, 0x201e6b27, 0x0, 0x3, r0}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x5, 0x2, r0, &(0x7f0000000180)="6c891863facc7d26a5427b89d7dd0a888605ae86a51ccaa7e930ab732eb8a46cc0c663949de6d6864bd01292206137dff12b737f49ac63194e1dd12338f624cc1528885be8c8b15a4af02f9bd0cc958c3f64b34969babf13a0d22b687a5c6ab00df29accad218d0622e890cdf01eb43b337c77fa92b0c4a597e46c0744c74877ebfec6663ba7c747fa602b8acdc0830bb1e2321a0cc11ebadacd519fca9977ef", 0xa0, 0x80, 0x0, 0x1, r2}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x8, 0x1, r3, &(0x7f0000000340)="9e31521847008af9afb15e0cfff103af55b0816fbd46b2667f3f08bc87bf4490c39b7d805b8eee99c9a87619bac6622a4fa14b5f446996c456fc62e8804d4c12877432adc341e346a4c4c0b6db818b1e908d37b49b27f8482b2c6aef2c4b6a588baa04", 0x63, 0x1000, 0x0, 0x0, r4}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x6, 0x1, r5, &(0x7f0000000440)="934049ad27d6ef4ed11ee8e40409eaa774bf103bc58c639536e64f287adb18336b96045c01ed5a83b094a7b4d443141a28ff1791f64e370c12ce8c736a2318be499b2cb4ccddcccf09b7fafc577210c3f0086025300f9b95934f54752a5c5527ac1d5d36982459d618bed0144d35b494aa74c61917b2d19498abe03294163f38019207a18afb9a3a8bc4196e9e35e86cf473e4ce0167464f06f6", 0x9a, 0x7, 0x0, 0x2, r0}, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x1, 0x800, r6, &(0x7f0000000540)="bf6fbbca7aec7fb09de62ff52cea483eb3386c2672b1383b0437123524d75c92338301bfd091db28e2f2ede11fe948459e9974a37d56ebfac8611bfb8cc11606bf7a43cea255bbf6b30efdb9d0dfab89f24cd857f450125641b2b7820b7affb180de2d75da45bbdff8a196d1af5577fda8a2cb000e819c39ecb5c226cb9523d9aeac875600fa480557cee6d16022f955ca2899343b0e27b95f47fbab94af57ececdb5627b530", 0xa6, 0x2}, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x7, 0x2, r1, &(0x7f0000000640)="9dcfc1f799ea89035f8d739ba650229d766e7288dabcbda8c1e83828fbfd3a", 0x1f, 0x8, 0x0, 0x1, r0}, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x6, 0x4, r7, &(0x7f0000000700)="c7106bfeb2d3fc6f9bead98df25b8f3fe7fe7b9d83c4a37c4f43cc74fb9ae5a013249e40a704eba42734f0cde2e11b69375162a44530ff76872e33d4873f9fe1122668910aa90f8c9bae1036f7a1850c1fa5fca3e6944511f2bc22f42c30bf54ee8e504c6cd83ffaa68444cd756e7fb73727c5660aa147477c1adbed975f11baa80420f844b67ea033fcd769d8555833bf8798d4198387e843e68b3714f84d142545e441fc74a2386baf9adc02bdeba80919c552b9", 0xb5, 0x0, 0x0, 0x1, r11}]) [ 944.087052] FAULT_INJECTION: forcing a failure. [ 944.087052] name failslab, interval 1, probability 0, space 0, times 0 [ 944.089891] CPU: 1 PID: 6760 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 944.091558] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 944.093560] Call Trace: [ 944.094203] dump_stack+0x107/0x167 [ 944.095091] should_fail.cold+0x5/0xa [ 944.096022] ? create_object.isra.0+0x3a/0xa30 [ 944.097138] should_failslab+0x5/0x20 [ 944.098057] kmem_cache_alloc+0x5b/0x310 [ 944.099042] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 944.100379] create_object.isra.0+0x3a/0xa30 [ 944.101446] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 944.102670] kmem_cache_alloc+0x159/0x310 [ 944.103689] security_file_alloc+0x34/0x170 [ 944.104753] __alloc_file+0xb7/0x320 13:49:44 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xe000000, 0xfffffff7000) 13:49:44 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xe00, 0xfffffff7000) [ 944.105676] alloc_empty_file+0x6d/0x170 [ 944.106797] alloc_file+0x5e/0x5a0 [ 944.107720] alloc_file_pseudo+0x16a/0x250 [ 944.108752] ? alloc_file+0x5a0/0x5a0 [ 944.109699] anon_inode_getfile+0xc8/0x1f0 [ 944.110747] io_uring_setup+0x138b/0x2980 [ 944.111789] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 944.113027] ? wait_for_completion_io+0x270/0x270 [ 944.114252] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 944.115584] ? syscall_enter_from_user_mode+0x1d/0x50 [ 944.116848] do_syscall_64+0x33/0x40 [ 944.117749] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 944.119170] RIP: 0033:0x7f084f4a7b19 [ 944.120154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 944.124664] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 944.126526] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 944.128287] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 944.130075] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 944.131941] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 944.133680] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:49:45 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x1200, 0xfffffff7000) 13:49:45 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xe00, 0xfffffff7000) 13:49:45 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x10000000, 0xfffffff7000) 13:49:45 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 46) 13:49:45 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x1200, 0xfffffff7000) [ 944.382819] FAULT_INJECTION: forcing a failure. [ 944.382819] name failslab, interval 1, probability 0, space 0, times 0 [ 944.385725] CPU: 0 PID: 6786 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 944.387606] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 944.389555] Call Trace: [ 944.390214] dump_stack+0x107/0x167 [ 944.391068] should_fail.cold+0x5/0xa [ 944.392028] ? io_uring_alloc_task_context+0x99/0x6a0 [ 944.393244] should_failslab+0x5/0x20 [ 944.394195] kmem_cache_alloc_trace+0x55/0x320 [ 944.395323] io_uring_alloc_task_context+0x99/0x6a0 [ 944.396560] ? io_import_iovec+0x1120/0x1120 [ 944.397621] ? lock_downgrade+0x6d0/0x6d0 [ 944.398666] ? do_raw_spin_lock+0x121/0x260 [ 944.399734] ? rwlock_bug.part.0+0x90/0x90 [ 944.400737] __io_uring_add_tctx_node+0x2c6/0x520 [ 944.401856] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 944.403322] ? alloc_fd+0x2e7/0x670 [ 944.404245] io_uring_setup+0x1fbb/0x2980 [ 944.405421] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 944.406848] ? wait_for_completion_io+0x270/0x270 [ 944.408281] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 944.409483] ? syscall_enter_from_user_mode+0x1d/0x50 [ 944.410943] do_syscall_64+0x33/0x40 [ 944.411887] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 944.413084] RIP: 0033:0x7f084f4a7b19 [ 944.413947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 944.418355] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 944.420142] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 944.421789] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 944.423454] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 944.425092] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 944.426728] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:49:45 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x2000, 0xfffffff7000) 13:49:45 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x12000000, 0xfffffff7000) 13:49:45 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x14e8, 0xfffffff7000) 13:49:59 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x12ec0000, 0xfffffff7000) 13:49:59 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x2000, 0xfffffff7000) 13:49:59 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:59 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) r5 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x300400, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, r5, 0x0, r2}, 0x0) ioctl$TCSETA(r5, 0x5406, &(0x7f0000000000)={0xfffa, 0x7fff, 0x6, 0x8, 0x18, "3c481122e802c7de"}) 13:49:59 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:49:59 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 47) 13:49:59 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x2103, 0xfffffff7000) 13:49:59 executing program 4: r0 = creat(&(0x7f0000000100)='./file0\x00', 0xc6) r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) pwrite64(r1, &(0x7f0000000140)="afc9", 0x2, 0xffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, 0xffffffffffffffff, 0x0}, 0x0) write$P9_RREADDIR(r0, &(0x7f0000000580)=ANY=[@ANYRES16], 0x122) r2 = signalfd(0xffffffffffffffff, &(0x7f0000000080)={[0x80000001]}, 0x8) signalfd(r0, &(0x7f0000000000)={[0x10000]}, 0x8) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f00000001c0), 0x4000, 0x0) ioctl$TIOCL_GETKMSGREDIRECT(r3, 0x541c, &(0x7f0000000200)) fallocate(r1, 0x20, 0x7, 0xc68) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r4, 0x0, &(0x7f0000000100)=@IORING_OP_SEND={0x1a, 0x1, 0x0, r2, 0x0, &(0x7f00000006c0)="9283242616103262dcab2683cf5e8d78963dd47041c8901b3e86200e861883dbcbf1886cc7ecfac293c0376a998dc0dcd91adb93d4abed1323263430fcf40e5038e32cc03f068ca354f693933d173e7951e9b21d9bb4b1d4da3398e27ae12bdf04123b5a73db536e735387fb88de5013f7a7dfccb61fab85ec4f675d5d3a8413cd66ff8091fcb757134020bf49a58b46858e3f49e9302bc2a59c31eaed299a684cfb998303036f09fa251803953bda6502c20dc20426675532862321b502", 0xbe, 0x6004042}, 0x8001) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xe, &(0x7f0000000440)={0x2, &(0x7f0000000400)=[{0x63, 0x40, 0x81, 0x8}, {0x81, 0x20, 0xc0, 0x8}]}) r5 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x80, 0x0) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r5, 0x80047210, &(0x7f0000000180)) r6 = accept(r0, &(0x7f0000000480)=@l2tp6={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x80) ioctl$BTRFS_IOC_SNAP_DESTROY(r6, 0x5000940f, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x100000}, 0x0, 0x3ba4141e, 0x1000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x8, 0x0, 0x8000) [ 958.518808] FAULT_INJECTION: forcing a failure. [ 958.518808] name failslab, interval 1, probability 0, space 0, times 0 [ 958.521403] CPU: 1 PID: 6814 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 958.522840] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 958.524589] Call Trace: [ 958.525151] dump_stack+0x107/0x167 [ 958.525918] should_fail.cold+0x5/0xa [ 958.526722] ? create_object.isra.0+0x3a/0xa30 [ 958.527694] should_failslab+0x5/0x20 [ 958.528502] kmem_cache_alloc+0x5b/0x310 [ 958.529360] create_object.isra.0+0x3a/0xa30 [ 958.530305] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 958.531371] kmem_cache_alloc_trace+0x151/0x320 [ 958.532364] io_uring_alloc_task_context+0x99/0x6a0 [ 958.533410] ? io_import_iovec+0x1120/0x1120 [ 958.534338] ? lock_downgrade+0x6d0/0x6d0 [ 958.535208] ? do_raw_spin_lock+0x121/0x260 [ 958.536116] ? rwlock_bug.part.0+0x90/0x90 [ 958.537008] __io_uring_add_tctx_node+0x2c6/0x520 [ 958.538016] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 958.539122] ? alloc_fd+0x2e7/0x670 [ 958.539915] io_uring_setup+0x1fbb/0x2980 [ 958.540797] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 958.541858] ? wait_for_completion_io+0x270/0x270 [ 958.542891] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 958.543992] ? syscall_enter_from_user_mode+0x1d/0x50 [ 958.545072] do_syscall_64+0x33/0x40 [ 958.545853] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 958.546925] RIP: 0033:0x7f084f4a7b19 [ 958.547713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 958.551573] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 958.553179] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 958.554678] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 958.556179] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 958.557668] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 958.559158] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:49:59 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x2103, 0xfffffff7000) 13:49:59 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 48) 13:49:59 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x20000000, 0xfffffff7000) 13:49:59 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x3f00, 0xfffffff7000) [ 958.800827] FAULT_INJECTION: forcing a failure. [ 958.800827] name failslab, interval 1, probability 0, space 0, times 0 [ 958.803505] CPU: 0 PID: 6838 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 958.804987] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 958.806755] Call Trace: [ 958.807331] dump_stack+0x107/0x167 [ 958.808132] should_fail.cold+0x5/0xa [ 958.808947] ? create_object.isra.0+0x3a/0xa30 [ 958.809915] should_failslab+0x5/0x20 [ 958.810736] kmem_cache_alloc+0x5b/0x310 [ 958.811634] create_object.isra.0+0x3a/0xa30 [ 958.812580] kmemleak_alloc_percpu+0xa0/0x100 [ 958.813575] pcpu_alloc+0x4e2/0x1240 [ 958.814403] __percpu_counter_init+0x10d/0x2d0 [ 958.815395] io_uring_alloc_task_context+0xcc/0x6a0 [ 958.816484] ? io_import_iovec+0x1120/0x1120 [ 958.817433] ? lock_downgrade+0x6d0/0x6d0 [ 958.818427] ? do_raw_spin_lock+0x121/0x260 [ 958.819371] ? rwlock_bug.part.0+0x90/0x90 [ 958.820315] __io_uring_add_tctx_node+0x2c6/0x520 [ 958.821341] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 958.822459] ? alloc_fd+0x2e7/0x670 [ 958.823270] io_uring_setup+0x1fbb/0x2980 [ 958.824206] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 958.825275] ? wait_for_completion_io+0x270/0x270 [ 958.826345] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 958.827457] ? syscall_enter_from_user_mode+0x1d/0x50 [ 958.828584] do_syscall_64+0x33/0x40 [ 958.829392] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 958.830499] RIP: 0033:0x7f084f4a7b19 [ 958.831289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 958.835188] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 958.836830] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 958.838380] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 958.839917] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 958.841424] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 958.842931] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:49:59 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) socket$inet(0x2, 0xa, 0x300) keyctl$chown(0x4, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) syz_open_procfs(0x0, &(0x7f0000000200)='uid_map\x00') r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) r7 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x300400, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, r7, 0x0, r4}, 0x0) bind$packet(r7, &(0x7f0000000240)={0x11, 0x15, r3, 0x1, 0xe0, 0x6, @local}, 0x14) sendfile(r1, r0, 0x0, 0x500000001) 13:49:59 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x21030000, 0xfffffff7000) 13:50:12 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:50:12 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:50:12 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) socket$inet(0x2, 0xa, 0x300) keyctl$chown(0x4, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) syz_open_procfs(0x0, &(0x7f0000000200)='uid_map\x00') r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) r7 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x300400, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, r7, 0x0, r4}, 0x0) bind$packet(r7, &(0x7f0000000240)={0x11, 0x15, r3, 0x1, 0xe0, 0x6, @local}, 0x14) sendfile(r1, r0, 0x0, 0x500000001) 13:50:12 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x81020000, 0xfffffff7000) 13:50:12 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x4000, 0xfffffff7000) 13:50:12 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 49) 13:50:12 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x6400, 0xfffffff7000) 13:50:12 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x6cc41, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) [ 971.934859] FAULT_INJECTION: forcing a failure. [ 971.934859] name failslab, interval 1, probability 0, space 0, times 0 [ 971.937416] CPU: 0 PID: 6863 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 971.938897] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 971.940696] Call Trace: [ 971.941271] dump_stack+0x107/0x167 [ 971.942060] should_fail.cold+0x5/0xa [ 971.942899] ? create_object.isra.0+0x3a/0xa30 [ 971.943888] should_failslab+0x5/0x20 [ 971.944693] kmem_cache_alloc+0x5b/0x310 [ 971.945571] create_object.isra.0+0x3a/0xa30 [ 971.946522] kmemleak_alloc_percpu+0xa0/0x100 [ 971.947493] pcpu_alloc+0x4e2/0x1240 [ 971.948329] __percpu_counter_init+0x10d/0x2d0 [ 971.949306] io_uring_alloc_task_context+0xcc/0x6a0 [ 971.950398] ? io_import_iovec+0x1120/0x1120 [ 971.951368] ? lock_downgrade+0x6d0/0x6d0 [ 971.952305] ? do_raw_spin_lock+0x121/0x260 [ 971.953235] ? rwlock_bug.part.0+0x90/0x90 [ 971.954163] __io_uring_add_tctx_node+0x2c6/0x520 [ 971.955224] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 971.956369] ? alloc_fd+0x2e7/0x670 [ 971.957184] io_uring_setup+0x1fbb/0x2980 [ 971.958106] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 971.959211] ? wait_for_completion_io+0x270/0x270 [ 971.960319] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 971.961453] ? syscall_enter_from_user_mode+0x1d/0x50 [ 971.962606] do_syscall_64+0x33/0x40 [ 971.963418] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 971.964536] RIP: 0033:0x7f084f4a7b19 [ 971.965349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 971.969302] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 971.970941] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 971.972483] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 971.974024] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 971.975556] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 971.977084] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:50:12 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:50:12 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe76f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x108, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x9, @loopback}, 0x1c) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xa84c2, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0xa01}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(0x0, 0x0, &(0x7f0000001b00)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x8044}, 0x8) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0xbb1c9ef561a5e0cf, 0x6000, @fd, 0x7f, 0x0, 0x0, 0x2, 0x0, {0x1}}, 0x8) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) ioctl$sock_ifreq(r2, 0x8910, &(0x7f0000000040)={'\x00', @ifru_map}) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r1, 0x0) 13:50:24 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:50:24 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x8102, 0xfffffff7000) 13:50:24 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:50:24 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x8102, 0xfffffff7000) 13:50:24 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) fcntl$getflags(r2, 0x40a) 13:50:24 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xe4ffffff, 0xfffffff7000) 13:50:24 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 50) 13:50:24 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 983.725264] FAULT_INJECTION: forcing a failure. [ 983.725264] name failslab, interval 1, probability 0, space 0, times 0 [ 983.728114] CPU: 0 PID: 6901 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 983.729662] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 983.731536] Call Trace: [ 983.732154] dump_stack+0x107/0x167 [ 983.732997] should_fail.cold+0x5/0xa [ 983.733869] ? io_wq_create+0xeb/0xc00 [ 983.734761] should_failslab+0x5/0x20 [ 983.735623] __kmalloc+0x72/0x390 [ 983.736444] io_wq_create+0xeb/0xc00 [ 983.737314] io_uring_alloc_task_context+0x1f1/0x6a0 [ 983.738472] ? io_import_iovec+0x1120/0x1120 [ 983.739475] ? io_apoll_task_func+0x2d0/0x2d0 [ 983.740510] ? __io_req_find_next+0x300/0x300 [ 983.741519] ? do_raw_spin_lock+0x121/0x260 [ 983.742493] ? rwlock_bug.part.0+0x90/0x90 [ 983.743437] __io_uring_add_tctx_node+0x2c6/0x520 [ 983.744532] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 983.745695] ? alloc_fd+0x2e7/0x670 [ 983.746520] io_uring_setup+0x1fbb/0x2980 [ 983.747485] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 983.748634] ? wait_for_completion_io+0x270/0x270 [ 983.749776] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 983.750934] ? syscall_enter_from_user_mode+0x1d/0x50 13:50:24 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xf4ffffff, 0xfffffff7000) [ 983.752131] do_syscall_64+0x33/0x40 [ 983.753126] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 983.754291] RIP: 0033:0x7f084f4a7b19 [ 983.755135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 983.759298] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 983.761035] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 983.762655] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 983.764292] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 983.765903] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 983.767531] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:50:24 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x86ea, 0xfffffff7000) 13:50:24 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:50:24 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 51) 13:50:24 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xe814, 0xfffffff7000) 13:50:24 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xf5ffffff, 0xfffffff7000) 13:50:24 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xea86, 0xfffffff7000) [ 983.948649] FAULT_INJECTION: forcing a failure. [ 983.948649] name failslab, interval 1, probability 0, space 0, times 0 [ 983.950617] CPU: 1 PID: 6928 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 983.951528] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 983.952514] Call Trace: [ 983.952823] dump_stack+0x107/0x167 [ 983.953219] should_fail.cold+0x5/0xa [ 983.953657] ? create_object.isra.0+0x3a/0xa30 [ 983.954170] should_failslab+0x5/0x20 [ 983.954585] kmem_cache_alloc+0x5b/0x310 [ 983.955034] create_object.isra.0+0x3a/0xa30 [ 983.955515] kmemleak_alloc_percpu+0xa0/0x100 [ 983.956035] pcpu_alloc+0x4e2/0x1240 [ 983.956459] __percpu_counter_init+0x10d/0x2d0 [ 983.956984] io_uring_alloc_task_context+0xcc/0x6a0 [ 983.957537] ? io_import_iovec+0x1120/0x1120 [ 983.958029] ? lock_downgrade+0x6d0/0x6d0 [ 983.958475] ? do_raw_spin_lock+0x121/0x260 [ 983.958950] ? rwlock_bug.part.0+0x90/0x90 [ 983.959423] __io_uring_add_tctx_node+0x2c6/0x520 [ 983.959959] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 983.960522] ? alloc_fd+0x2e7/0x670 [ 983.960928] io_uring_setup+0x1fbb/0x2980 [ 983.961384] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 983.961938] ? wait_for_completion_io+0x270/0x270 [ 983.962472] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 983.963049] ? syscall_enter_from_user_mode+0x1d/0x50 [ 983.963615] do_syscall_64+0x33/0x40 [ 983.964036] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 983.964588] RIP: 0033:0x7f084f4a7b19 [ 983.965000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 983.966994] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 983.967824] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 983.968587] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 983.969355] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 983.970126] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 983.970900] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:50:24 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xff01, 0xfffffff7000) 13:50:39 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:50:39 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xfbffffff, 0xfffffff7000) 13:50:39 executing program 4: r0 = semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000400)={0x3, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x1004, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x42001, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) semctl$IPC_RMID(0x0, 0x0, 0xb) r1 = semget$private(0x0, 0x2, 0x100) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)={r2, r3+60000000}) semtimedop(0x0, &(0x7f00000003c0)=[{0x0, 0x4a41, 0x1800}, {0x0, 0x0, 0x1c00}, {0x2, 0x6, 0x400}], 0x3, &(0x7f00000001c0)={0x0, 0x989680}) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000000)=[{0x6, 0x401, 0x1800}, {0x3, 0x8001, 0x800}], 0x2) semctl$IPC_RMID(0x0, 0x0, 0x0) r4 = semget(0x1, 0x0, 0x0) semctl$IPC_SET(r4, 0x0, 0x1, &(0x7f0000000340)={{0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x100, 0x3}, 0x1, 0x6, 0x0, 0x0, 0x0, 0x0, 0x3}) semtimedop(r4, &(0x7f00000000c0)=[{0x2, 0x7fff, 0x3000}, {0x2, 0x0, 0x1000}], 0x2, &(0x7f0000000100)={0x0, 0x3938700}) semctl$GETALL(r0, 0x0, 0xd, &(0x7f0000000480)=""/4096) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000000080)=""/14) unshare(0x22010380) 13:50:39 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x80000, 0xfffffff7000) 13:50:39 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:50:39 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000080)={r0, 0x1, 0x45345c68, 0x8}) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f00000000c0)={0x0, r2, 0x5, 0xa57, 0x1, 0x40}) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000000)="47d631899f9df99d575b5b1566780224c77da5d5", 0x14}], 0x1) open_by_handle_at(r1, &(0x7f0000000180)=@ceph_nfs_snapfh={0x1c, 0x4e, {0x161d, 0x9f, 0x0, 0x3b89}}, 0x80000) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) sendfile(r0, r3, &(0x7f00000001c0)=0x517b, 0x1) r4 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x10) sendfile(r0, r4, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:50:39 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 52) 13:50:39 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xff01, 0xfffffff7000) [ 998.370817] FAULT_INJECTION: forcing a failure. [ 998.370817] name failslab, interval 1, probability 0, space 0, times 0 [ 998.372162] CPU: 0 PID: 6955 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 998.372899] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 998.373803] Call Trace: [ 998.374096] dump_stack+0x107/0x167 [ 998.374499] should_fail.cold+0x5/0xa [ 998.374918] ? io_wq_create+0x6ef/0xc00 [ 998.375350] should_failslab+0x5/0x20 [ 998.375769] kmem_cache_alloc_node_trace+0x59/0x340 [ 998.376322] io_wq_create+0x6ef/0xc00 [ 998.376747] io_uring_alloc_task_context+0x1f1/0x6a0 [ 998.377297] ? io_import_iovec+0x1120/0x1120 [ 998.377775] ? io_apoll_task_func+0x2d0/0x2d0 [ 998.378257] ? __io_req_find_next+0x300/0x300 [ 998.378741] ? do_raw_spin_lock+0x121/0x260 [ 998.379207] ? rwlock_bug.part.0+0x90/0x90 [ 998.379672] __io_uring_add_tctx_node+0x2c6/0x520 [ 998.380202] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 998.380766] ? alloc_fd+0x2e7/0x670 [ 998.381174] io_uring_setup+0x1fbb/0x2980 [ 998.381633] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 998.382185] ? wait_for_completion_io+0x270/0x270 [ 998.382733] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 998.383299] ? syscall_enter_from_user_mode+0x1d/0x50 [ 998.383861] do_syscall_64+0x33/0x40 [ 998.384274] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 998.384831] RIP: 0033:0x7f084f4a7b19 [ 998.385235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 998.387203] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 998.388031] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 998.388800] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 998.389565] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 998.390330] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 998.391097] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:50:39 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x80000, 0xfffffff7000) 13:50:39 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xfeffffff, 0xfffffff7000) 13:50:39 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 53) 13:50:39 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x100000, 0xfffffff7000) 13:50:39 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x100000, 0xfffffff7000) 13:50:39 executing program 4: perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0x73, 0x80, 0x0, 0x0, 0x0, 0x0, 0x8060, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) getsockopt$SO_COOKIE(0xffffffffffffffff, 0x1, 0x39, &(0x7f0000000040), &(0x7f0000000080)=0x8) close_range(r0, 0xffffffffffffffff, 0x0) [ 998.539416] FAULT_INJECTION: forcing a failure. [ 998.539416] name failslab, interval 1, probability 0, space 0, times 0 [ 998.540790] CPU: 0 PID: 6976 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 998.541544] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 998.542449] Call Trace: [ 998.542765] dump_stack+0x107/0x167 [ 998.543167] should_fail.cold+0x5/0xa [ 998.543685] ? create_object.isra.0+0x3a/0xa30 [ 998.544255] should_failslab+0x5/0x20 [ 998.544683] kmem_cache_alloc+0x5b/0x310 [ 998.545137] ? io_wq_create+0x114/0xc00 [ 998.545596] create_object.isra.0+0x3a/0xa30 [ 998.546079] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 998.546665] kmem_cache_alloc_node_trace+0x16d/0x340 [ 998.547242] io_wq_create+0x6ef/0xc00 [ 998.547686] io_uring_alloc_task_context+0x1f1/0x6a0 [ 998.548263] ? io_import_iovec+0x1120/0x1120 [ 998.548755] ? io_apoll_task_func+0x2d0/0x2d0 [ 998.549264] ? __io_req_find_next+0x300/0x300 [ 998.549752] ? do_raw_spin_lock+0x121/0x260 [ 998.550247] ? rwlock_bug.part.0+0x90/0x90 [ 998.550714] __io_uring_add_tctx_node+0x2c6/0x520 [ 998.551242] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 998.551808] ? alloc_fd+0x2e7/0x670 [ 998.552228] io_uring_setup+0x1fbb/0x2980 [ 998.552688] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 998.553247] ? wait_for_completion_io+0x270/0x270 [ 998.553795] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 998.554365] ? syscall_enter_from_user_mode+0x1d/0x50 [ 998.554928] do_syscall_64+0x33/0x40 [ 998.555333] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 998.555894] RIP: 0033:0x7f084f4a7b19 [ 998.556305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 998.558281] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 998.559108] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 998.559880] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 998.560661] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 998.561430] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 998.562206] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:50:39 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:50:39 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x800000, 0xfffffff7000) 13:50:39 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:50:39 executing program 4: ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000000)={@dev={0xfe, 0x80, '\x00', 0x23}, 0x11}) syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f00000000c0)='./cgroup/cgroup.procs\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000940)={[], [{@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@rootcontext={'rootcontext', 0x3d, 'root'}}]}) 13:50:39 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xff010000, 0xfffffff7000) [ 998.672929] SELinux: duplicate or incompatible mount options 13:50:39 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xffefffff, 0xfffffff7000) 13:50:53 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 54) 13:50:53 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x1000000, 0xfffffff7000) 13:50:53 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:50:53 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:50:53 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x800000, 0xfffffff7000) 13:50:53 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xffffefff, 0xfffffff7000) 13:50:53 executing program 4: r0 = perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x10000, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0xfffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = fork() move_pages(r1, 0x1, &(0x7f0000000080)=[&(0x7f0000ff9000/0x4000)=nil], &(0x7f0000000040), &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0) r2 = signalfd4(r0, &(0x7f0000000100)={[0x40]}, 0x8, 0x800) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x7, 0x9, 0xec, 0xff, 0x0, 0x8000, 0x0, 0x4, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, @perf_config_ext={0x101, 0x8}, 0x8000, 0x6, 0x8, 0x9, 0x3, 0x5, 0xfff, 0x0, 0x6a52, 0x0, 0x71e84d23}, r1, 0xd, r2, 0x17) r3 = socket$netlink(0x10, 0x3, 0x0) fallocate(0xffffffffffffffff, 0x30, 0xffffffffffffff75, 0x10001) sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="24000000100001000000f400ec000000960000090005000000000000007a000080480000006fe884b7f11ac8f1810d0dc930b7fbbdfe255812bd4e3ddf303ed7320b36f9ffffffffffffff31c0e48e8b51a2f78d54f00d9cdd3a5569eaaaf9d57fd007d7eff61a89507780518151ccc61d149f11066c74aac62fe6c088582777cddc52bd82c5ef927b1c475f2e339546488ff742ba361f30616ba6000013203bece0c63d63d44a2d8033a9f2319b5d052f0517892f7acf1a4d0ced7e75aed01f84fbba37b71774867fc770eb6690f7a3c3e0d63d75b35925d7980ce0513e1600a3b9b86344041999a73312ac34f870e770a7124542c63a0febe8281dfa46ca86343801872702c3c16a7816d215b6c8b12d910177eed40ffd341132a1e8e1a17ca23ae4bad3f0c81f300cb3f49627d03e0e3d1531c9ff18064d8742a0415f90b20d3802770f5f2c4b1d626da75c7340ab988c1bdd22d48223e40ef1a2fe107c095f586abd6953ebd5aa2488428c85434200631b6160d4ca00773c4d99c634c0f59080cd8e21f6dc72ce00c58f00"/411], 0x24}}, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x301000, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x8000, 0x0, 0xfffffffc, 0x1, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) 13:50:53 executing program 1: bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) ioctl$AUTOFS_IOC_PROTOSUBVER(0xffffffffffffffff, 0x80049367, &(0x7f0000000000)) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(r0, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x101) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fsmount(r1, 0x1, 0x2) r4 = openat(r3, &(0x7f0000000180)='./file1\x00', 0x400, 0x0) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) readahead(r5, 0x41e, 0x7b4) ioctl$NS_GET_OWNER_UID(r3, 0xb704, &(0x7f0000000240)) stat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r6, 0x0) mount$cgroup2(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f0000000200), 0x8000, &(0x7f00000003c0)=ANY=[@ANYBLOB="6e7364656c62676174652c6e7364656c65676174652c6d656d6f72795f6c6f63616c65653f535c307066c0e675727369766570726f742c6d656d6f72795f6c6f63616c6576656e74732c6d656d6f72795f72656375727369766570726f742c6d656d6f72795f72656375727369766570726f742c6370917365742c6e7364656c65676174652c6d656d6f72795f72656375727369766570726f742c7375fe1068ab626a5f757365723d2326402c2c646f6e745f6d6561737572652c657569643e", @ANYRESDEC=0xee01, @ANYBLOB="2c6673757569643d34653838356336322d343838002d303365312d623636642d3134665b626365302c65757c643d24f36d7d0e2753693e3edbe1ef324fed969abaac23eb7d2effccd1e34371cc0ca4037045c3ceaac5e45dab8726df826a654b648b022ef3bfdf", @ANYRES32=r6, @ANYBLOB="2c66756e633d4649524d574152455f434845434b2c7569643ded3a010f3a27204169feeb3b9086d059eae37f60d313d00587da8182268570c7efaa2a6a03b2dfcc4f0a3c7e10aa97c96be2b6f605c918c5b53608edcbf020a62622a8b6510b9db8b45f2ac3ed392eacc42a6018f078649ab489dde0a48c144794acf113be7c4f9509052e25803a9aa4bfa39efaa104cb40702f8634a75fa0cf2ff2638dc3cf4f8d5a9ce394a1", @ANYRESHEX=r2, @ANYBLOB="2c6f626a5f747970653dffff2c7365636c6162656c2c00", @ANYRES32]) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x3ff}, 0x1c) sendfile(r0, r2, 0x0, 0x100000001) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, 0xffffffffffffffff, 0x0}, 0x0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, r1) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000300)=ANY=[@ANYBLOB="21000000012206", @ANYRES32=r1, @ANYBLOB="0500a000000000002e6f66696c6531802dfa86"]) pread64(r4, &(0x7f00000000c0)=""/56, 0x38, 0x2) lseek(r0, 0x14e, 0x0) [ 1012.758712] FAULT_INJECTION: forcing a failure. [ 1012.758712] name failslab, interval 1, probability 0, space 0, times 0 [ 1012.761655] CPU: 1 PID: 7016 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1012.763237] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1012.765157] Call Trace: [ 1012.765789] dump_stack+0x107/0x167 [ 1012.766632] should_fail.cold+0x5/0xa [ 1012.767515] ? __io_uring_add_tctx_node+0x15c/0x520 [ 1012.768687] should_failslab+0x5/0x20 [ 1012.769576] kmem_cache_alloc_trace+0x55/0x320 [ 1012.770642] __io_uring_add_tctx_node+0x15c/0x520 [ 1012.771774] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1012.772993] ? alloc_fd+0x2e7/0x670 [ 1012.773844] io_uring_setup+0x1fbb/0x2980 [ 1012.774807] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1012.775971] ? wait_for_completion_io+0x270/0x270 [ 1012.777112] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1012.778307] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1012.779704] do_syscall_64+0x33/0x40 [ 1012.780574] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1012.781737] RIP: 0033:0x7f084f4a7b19 [ 1012.782582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1012.786830] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1012.788689] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1012.790316] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1012.791981] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1012.793670] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1012.795348] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 1012.819330] cgroup2: Unknown parameter 'nsdelbgate' 13:50:53 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xffffff7f, 0xfffffff7000) 13:50:53 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x2000000, 0xfffffff7000) [ 1012.864779] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. 13:50:53 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x1000000, 0xfffffff7000) 13:50:53 executing program 1: r0 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', &(0x7f0000000040)={0x103000, 0x40, 0x1}, 0x18) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) dup3(r0, r1, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) lseek(r2, 0x0, 0x4) 13:50:53 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 55) 13:50:53 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x2010000, 0xfffffff7000) 13:50:53 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xffffffe4, 0xfffffff7000) 13:50:53 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x2000000, 0xfffffff7000) [ 1013.014255] FAULT_INJECTION: forcing a failure. [ 1013.014255] name failslab, interval 1, probability 0, space 0, times 0 [ 1013.017109] CPU: 1 PID: 7050 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1013.018806] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1013.020874] Call Trace: [ 1013.021530] dump_stack+0x107/0x167 [ 1013.022439] should_fail.cold+0x5/0xa [ 1013.023385] ? create_object.isra.0+0x3a/0xa30 [ 1013.024525] should_failslab+0x5/0x20 [ 1013.025462] kmem_cache_alloc+0x5b/0x310 [ 1013.026475] create_object.isra.0+0x3a/0xa30 [ 1013.027562] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1013.028991] kmem_cache_alloc_trace+0x151/0x320 [ 1013.030135] __io_uring_add_tctx_node+0x15c/0x520 [ 1013.031307] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1013.032606] ? alloc_fd+0x2e7/0x670 [ 1013.033502] io_uring_setup+0x1fbb/0x2980 [ 1013.034520] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1013.035755] ? wait_for_completion_io+0x270/0x270 [ 1013.036964] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1013.038240] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1013.039496] do_syscall_64+0x33/0x40 [ 1013.040411] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1013.041654] RIP: 0033:0x7f084f4a7b19 [ 1013.042555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1013.047006] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1013.048851] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1013.050560] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1013.052273] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1013.053996] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1013.055709] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:50:53 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x3000000, 0xfffffff7000) 13:51:07 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x2010000, 0xfffffff7000) 13:51:07 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:51:07 executing program 1: r0 = openat2$dir(0xffffffffffffff9c, &(0x7f00000009c0)='./file1\x00', &(0x7f0000001080)={0x101000, 0xa9, 0x4}, 0x18) getdents64(r0, &(0x7f0000005c80)=""/128, 0x80) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) recvmmsg$unix(r2, &(0x7f0000005a80)=[{{&(0x7f00000006c0), 0x6e, &(0x7f0000000ac0)=[{&(0x7f0000000740)=""/10, 0xa}, {&(0x7f0000000780)=""/213, 0xd5}, {&(0x7f0000000880)=""/205, 0xcd}, {&(0x7f0000000980)=""/39, 0x27}, {&(0x7f00000009c0)}, {&(0x7f0000000a00)=""/51, 0x33}, {&(0x7f0000000a40)=""/76, 0x4c}], 0x7, &(0x7f0000000b40)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb0}}, {{&(0x7f0000000c00), 0x6e, &(0x7f0000001000)=[{&(0x7f0000000c80)=""/146, 0x92}, {&(0x7f0000000d40)=""/57, 0x39}, {&(0x7f0000000d80)=""/58, 0x3a}, {&(0x7f0000000dc0)=""/93, 0x5d}, {&(0x7f0000000e40)=""/105, 0x69}, {&(0x7f0000000ec0)=""/193, 0xc1}, {&(0x7f0000000fc0)=""/55, 0x37}], 0x7, &(0x7f0000001080)}}, {{&(0x7f0000001100), 0x6e, &(0x7f0000004500)=[{&(0x7f0000001180)=""/134, 0x86}, {&(0x7f0000001240)=""/4096, 0x1000}, {&(0x7f0000002240)=""/236, 0xec}, {&(0x7f0000002340)=""/4096, 0x1000}, {&(0x7f0000003340)=""/116, 0x74}, {&(0x7f00000033c0)=""/4096, 0x1000}, {&(0x7f00000043c0)=""/198, 0xc6}, {&(0x7f00000044c0)=""/23, 0x17}], 0x8}}, {{&(0x7f0000004580), 0x6e, &(0x7f0000004780)=[{&(0x7f0000004600)=""/232, 0xe8}, {&(0x7f0000004700)}, {&(0x7f0000004740)=""/34, 0x22}], 0x3, &(0x7f00000047c0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x58}}, {{&(0x7f0000004840), 0x6e, &(0x7f0000005a00)=[{&(0x7f00000048c0)=""/4096, 0x1000}, {&(0x7f00000058c0)=""/37, 0x25}, {&(0x7f0000005900)=""/202, 0xca}], 0x3, &(0x7f0000005a40)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x38}}], 0x5, 0x162, 0x0) sendmsg$nl_generic(r2, &(0x7f0000005c40)={&(0x7f0000000240), 0xc, &(0x7f0000005c00)={&(0x7f0000005bc0)={0x1c, 0x20, 0x100, 0x70bd28, 0x25dfdbff, {0x7}, [@typed={0x8, 0x11, 0x0, 0x0, @uid=r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x80) sendfile(r1, r2, 0x0, 0x100000001) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$INCFS_IOC_CREATE_FILE(r1, 0xc058671e, &(0x7f0000000640)={{'\x00', 0x1}, {0x7000}, 0x30, 0x0, 0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='./file1\x00', &(0x7f00000002c0)="25fbae841f6ded5aa92b15de2bc04382728472410f7a5b60b2d22ef4fc64a3ff1f522a0b7106d7a9651315e8b2fa0b5a8f3f6074316e650bfa57ec9f90ad75259d1c1eb6db87c5756c23dfd7a427232188bc440dbbb937750a5427a8c7564aadc5e46ee0529c2fe4b7c9418080f70a500ff75ccd1708c77c7daecef5fd4ea9cf5db4821167b8521fbce3465bcfe5a5ef32602cf17ef7734c39230a195b8bcdf42e20d2a42d17afcefbac4f598bc211a7c2e22a3a6c54f7332bb8e62f05ec2a63ff", 0xc1, 0x0, &(0x7f00000003c0)={0x2, 0x182, {0x0, 0xc, 0x8c, "3c595ef3abd6bb207663a00577b8883908178dd6d82f209ecd1accea3207429c90e094c71237b855bffe039463b44a428233aeb0971104afe1dc7602de8c69cc617d9d8b5bd67d6b23e3587afa8b497bda07049e7b76d11f0851201910f4968fb571012a1a88ad9e9ee28c93cfb58e38dc78d4dedb3eec5c818ae5524641a50f878d2e4152474761cb2f739b", 0xe9, "35a0d80426192f947593aebc3699c04773751087e2afa44735538fe0502b27d06d6b8ff547ca3511c561d6d314b7275a56dd744fea7e86dd3e5ef2efc06bb2862c5bd79c5640cb2584cf3dbabbf6a3b8d401868f05c52cc15a400bb4a11fd91c77dbeb14dca559f27ab48e2ae7deac727cf93d4cb31a229c6196685e5594ca45102701056e5420eee6a13a727a167d556f37789b204bb18097740f6784dd8b99afbaeacfbf311072123adbc2e5c6a1673e1c10826c3fdcc68ebda056ad951899dcb2c67aca6ac3914455deda1a14a678dc304a0b3d1ce9bca154eba6aa773fa4ec08bb1c5469238623"}, 0xba, "d6a191602330635ba76dc450d9ebb1a924ce87f476c5b5b0dcf1b46182bb6d5c7ab493090c43decbede252d97316e71821fe46141ca725483e7bde14474655a5baecc132fe7ad37ea4def9c5406b54a1374845268c65503461ef7a2cfc03db7a10a69cf377fc997eb674fa67ef470c8c82c777afda2edf55ad37cc1b766e1f247995f3bc09012fa42c945c9c644389aceaf7ffe773eff9a70b41b169cc6cbe4aeb70bd4c1c64cc0a47613d39c5de18016764f80ef0a1a85b83b5"}, 0x248}) syz_io_uring_setup(0x20019ca, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) r7 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x300400, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, r7, 0x0, r4}, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r7, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, {0xc45}}, './file0\x00'}) lseek(r1, 0x0, 0x4) 13:51:07 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x4000000, 0xfffffff7000) 13:51:07 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 56) 13:51:07 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:51:07 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:51:07 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xfffffff4, 0xfffffff7000) [ 1026.372393] FAULT_INJECTION: forcing a failure. [ 1026.372393] name failslab, interval 1, probability 0, space 0, times 0 [ 1026.375116] CPU: 0 PID: 7079 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1026.376540] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1026.378238] Call Trace: [ 1026.378788] dump_stack+0x107/0x167 [ 1026.379544] should_fail.cold+0x5/0xa [ 1026.380345] ? xas_alloc+0x336/0x440 [ 1026.381125] should_failslab+0x5/0x20 [ 1026.381905] kmem_cache_alloc+0x5b/0x310 [ 1026.382754] xas_alloc+0x336/0x440 [ 1026.383494] xas_create+0x34a/0x10d0 [ 1026.384300] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1026.385393] xas_store+0x8c/0x1c40 [ 1026.386154] __xa_store+0x164/0x2d0 [ 1026.386886] ? xa_delete_node+0x280/0x280 [ 1026.387755] xa_store+0x31/0x50 [ 1026.388451] __io_uring_add_tctx_node+0x1cf/0x520 [ 1026.389439] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1026.390516] ? alloc_fd+0x2e7/0x670 [ 1026.391288] io_uring_setup+0x1fbb/0x2980 [ 1026.392139] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1026.393181] ? wait_for_completion_io+0x270/0x270 [ 1026.394205] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1026.395269] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1026.396336] do_syscall_64+0x33/0x40 [ 1026.397099] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1026.398153] RIP: 0033:0x7f084f4a7b19 [ 1026.398912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1026.402661] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1026.404221] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1026.405683] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1026.407129] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1026.408796] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1026.410295] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:51:07 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x5000000, 0xfffffff7000) 13:51:07 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x8000000, 0xfffffff7000) 13:51:07 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x3000000, 0xfffffff7000) 13:51:07 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xfffffff5, 0xfffffff7000) 13:51:07 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 57) 13:51:07 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x9000000, 0xfffffff7000) [ 1026.652228] FAULT_INJECTION: forcing a failure. [ 1026.652228] name failslab, interval 1, probability 0, space 0, times 0 [ 1026.655231] CPU: 1 PID: 7105 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1026.657001] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1026.659137] Call Trace: [ 1026.659821] dump_stack+0x107/0x167 [ 1026.660774] should_fail.cold+0x5/0xa [ 1026.661755] ? create_object.isra.0+0x3a/0xa30 [ 1026.662938] should_failslab+0x5/0x20 [ 1026.663929] kmem_cache_alloc+0x5b/0x310 [ 1026.665003] create_object.isra.0+0x3a/0xa30 [ 1026.666131] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1026.667433] kmem_cache_alloc+0x159/0x310 [ 1026.668522] xas_alloc+0x336/0x440 [ 1026.669431] xas_create+0x34a/0x10d0 [ 1026.670245] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1026.671584] xas_store+0x8c/0x1c40 [ 1026.672433] __xa_store+0x164/0x2d0 [ 1026.673368] ? xa_delete_node+0x280/0x280 [ 1026.674268] ? trace_hardirqs_on+0x5b/0x180 [ 1026.675387] xa_store+0x31/0x50 [ 1026.676101] __io_uring_add_tctx_node+0x1cf/0x520 [ 1026.677141] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1026.678245] ? alloc_fd+0x2e7/0x670 [ 1026.679039] io_uring_setup+0x1fbb/0x2980 [ 1026.679927] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1026.681006] ? wait_for_completion_io+0x270/0x270 [ 1026.682059] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1026.683174] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1026.684288] do_syscall_64+0x33/0x40 [ 1026.685083] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1026.686168] RIP: 0033:0x7f084f4a7b19 [ 1026.686960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1026.690841] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1026.692462] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1026.693979] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1026.695479] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1026.697002] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1026.698510] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:51:07 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xb000000, 0xfffffff7000) 13:51:07 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x4000000, 0xfffffff7000) 13:51:07 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xfffffffb, 0xfffffff7000) 13:51:20 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 58) 13:51:20 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e23, 0x200, @mcast2, 0xa0e5}, 0x1c) setsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x68) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x11, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1, 0x0, 0x0, 0x3}, 0x200000}], 0x7ffff000, 0x0) 13:51:20 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:51:20 executing program 1: mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x4, 0x13, 0xffffffffffffffff, 0x401fe000) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:51:20 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xd000000, 0xfffffff7000) 13:51:20 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x5000000, 0xfffffff7000) 13:51:20 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xfffffffe, 0xfffffff7000) 13:51:20 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 1039.480764] FAULT_INJECTION: forcing a failure. [ 1039.480764] name failslab, interval 1, probability 0, space 0, times 0 [ 1039.483231] CPU: 1 PID: 7140 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1039.484723] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1039.486494] Call Trace: [ 1039.487083] dump_stack+0x107/0x167 [ 1039.487876] should_fail.cold+0x5/0xa [ 1039.488712] ? xas_alloc+0x336/0x440 [ 1039.489508] should_failslab+0x5/0x20 [ 1039.490328] kmem_cache_alloc+0x5b/0x310 [ 1039.491209] xas_alloc+0x336/0x440 [ 1039.491992] xas_create+0x34a/0x10d0 [ 1039.492822] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1039.493945] xas_store+0x8c/0x1c40 [ 1039.494730] __xa_store+0x164/0x2d0 [ 1039.495503] ? xa_delete_node+0x280/0x280 [ 1039.496428] ? trace_hardirqs_on+0x5b/0x180 [ 1039.497371] xa_store+0x31/0x50 [ 1039.498096] __io_uring_add_tctx_node+0x1cf/0x520 [ 1039.499140] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1039.500274] ? alloc_fd+0x2e7/0x670 [ 1039.501106] io_uring_setup+0x1fbb/0x2980 [ 1039.502021] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1039.503123] ? wait_for_completion_io+0x270/0x270 [ 1039.504185] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1039.505335] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1039.506440] do_syscall_64+0x33/0x40 [ 1039.507244] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1039.508371] RIP: 0033:0x7f084f4a7b19 [ 1039.509178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1039.513138] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1039.514786] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1039.516314] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1039.517883] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1039.519418] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1039.520966] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:51:34 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e23, 0x200, @mcast2, 0xa0e5}, 0x1c) setsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x68) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x11, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1, 0x0, 0x0, 0x3}, 0x200000}], 0x7ffff000, 0x0) 13:51:34 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xe000000, 0xfffffff7000) 13:51:34 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:51:34 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:51:34 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x1000000000000, 0xfffffff7000) 13:51:34 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x6000000, 0xfffffff7000) 13:51:34 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 59) 13:51:34 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) openat(r0, &(0x7f0000000000)='./file1\x00', 0x2840, 0x8) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) ftruncate(r2, 0x2) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) [ 1053.752919] FAULT_INJECTION: forcing a failure. [ 1053.752919] name failslab, interval 1, probability 0, space 0, times 0 [ 1053.755373] CPU: 0 PID: 7171 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1053.756836] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1053.758594] Call Trace: [ 1053.759165] dump_stack+0x107/0x167 [ 1053.759967] should_fail.cold+0x5/0xa [ 1053.760795] ? xas_alloc+0x336/0x440 [ 1053.761602] should_failslab+0x5/0x20 [ 1053.762422] kmem_cache_alloc+0x5b/0x310 [ 1053.763308] xas_alloc+0x336/0x440 [ 1053.764077] xas_create+0x34a/0x10d0 [ 1053.764925] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1053.766060] xas_store+0x8c/0x1c40 [ 1053.766854] __xa_store+0x164/0x2d0 [ 1053.767643] ? xa_delete_node+0x280/0x280 [ 1053.768557] ? trace_hardirqs_on+0x5b/0x180 [ 1053.769501] xa_store+0x31/0x50 [ 1053.770218] __io_uring_add_tctx_node+0x1cf/0x520 [ 1053.771255] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1053.772369] ? alloc_fd+0x2e7/0x670 [ 1053.773196] io_uring_setup+0x1fbb/0x2980 [ 1053.774102] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1053.775180] ? wait_for_completion_io+0x270/0x270 [ 1053.776254] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1053.777393] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1053.778509] do_syscall_64+0x33/0x40 [ 1053.779309] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1053.780406] RIP: 0033:0x7f084f4a7b19 [ 1053.781212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1053.785138] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1053.786746] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1053.788262] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1053.789789] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1053.791296] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1053.792889] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:51:34 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x7ffffffffffff, 0xfffffff7000) 13:51:34 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x8000000, 0xfffffff7000) 13:51:34 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x10000000, 0xfffffff7000) 13:51:34 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 60) 13:51:34 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x8000000000000, 0xfffffff7000) [ 1054.003908] FAULT_INJECTION: forcing a failure. [ 1054.003908] name failslab, interval 1, probability 0, space 0, times 0 [ 1054.006443] CPU: 1 PID: 7185 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1054.007900] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1054.009664] Call Trace: [ 1054.010230] dump_stack+0x107/0x167 [ 1054.011004] should_fail.cold+0x5/0xa [ 1054.011827] ? xas_alloc+0x336/0x440 [ 1054.012632] should_failslab+0x5/0x20 [ 1054.013437] kmem_cache_alloc+0x5b/0x310 [ 1054.014298] xas_alloc+0x336/0x440 [ 1054.015058] xas_create+0x34a/0x10d0 [ 1054.015861] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1054.016987] xas_store+0x8c/0x1c40 [ 1054.017759] __xa_store+0x164/0x2d0 [ 1054.018529] ? xa_delete_node+0x280/0x280 [ 1054.019411] ? trace_hardirqs_on+0x5b/0x180 [ 1054.020330] xa_store+0x31/0x50 [ 1054.021046] __io_uring_add_tctx_node+0x1cf/0x520 [ 1054.022067] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1054.023168] ? alloc_fd+0x2e7/0x670 [ 1054.023955] io_uring_setup+0x1fbb/0x2980 [ 1054.024849] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1054.025927] ? wait_for_completion_io+0x270/0x270 [ 1054.026969] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1054.028073] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1054.029168] do_syscall_64+0x33/0x40 [ 1054.029955] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1054.031043] RIP: 0033:0x7f084f4a7b19 [ 1054.031824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1054.035719] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1054.037313] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1054.038795] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1054.040292] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1054.041845] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1054.043355] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:51:34 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:51:34 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x9000000, 0xfffffff7000) 13:51:34 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x12000000, 0xfffffff7000) [ 1067.014266] FAULT_INJECTION: forcing a failure. [ 1067.014266] name failslab, interval 1, probability 0, space 0, times 0 [ 1067.015708] CPU: 0 PID: 7213 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1067.016560] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1067.017602] Call Trace: [ 1067.017940] dump_stack+0x107/0x167 [ 1067.018414] should_fail.cold+0x5/0xa [ 1067.018902] ? create_object.isra.0+0x3a/0xa30 [ 1067.019478] should_failslab+0x5/0x20 [ 1067.019968] kmem_cache_alloc+0x5b/0x310 [ 1067.020482] ? mark_held_locks+0x9e/0xe0 [ 1067.021022] create_object.isra.0+0x3a/0xa30 [ 1067.021574] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1067.022215] kmem_cache_alloc+0x159/0x310 [ 1067.022738] xas_alloc+0x336/0x440 [ 1067.023188] xas_create+0x34a/0x10d0 [ 1067.023676] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1067.024342] xas_store+0x8c/0x1c40 [ 1067.024818] __xa_store+0x164/0x2d0 [ 1067.025279] ? xa_delete_node+0x280/0x280 [ 1067.025812] ? trace_hardirqs_on+0x5b/0x180 [ 1067.026556] xa_store+0x31/0x50 [ 1067.027050] __io_uring_add_tctx_node+0x1cf/0x520 [ 1067.027651] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1067.028292] ? alloc_fd+0x2e7/0x670 [ 1067.028770] io_uring_setup+0x1fbb/0x2980 [ 1067.029298] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1067.029932] ? wait_for_completion_io+0x270/0x270 [ 1067.030560] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1067.031224] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1067.031879] do_syscall_64+0x33/0x40 [ 1067.032346] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1067.032995] RIP: 0033:0x7f084f4a7b19 [ 1067.033471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1067.035845] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1067.036808] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1067.037736] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1067.038670] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1067.039567] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1067.040485] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:51:47 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e23, 0x200, @mcast2, 0xa0e5}, 0x1c) setsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x68) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x11, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1, 0x0, 0x0, 0x3}, 0x200000}], 0x7ffff000, 0x0) 13:51:47 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x10000000000000, 0xfffffff7000) 13:51:47 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:51:47 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:51:47 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xb000000, 0xfffffff7000) 13:51:47 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 61) 13:51:47 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x14e80000, 0xfffffff7000) 13:51:47 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x153502, 0x0) sendfile(r0, r1, 0x0, 0x100000001) openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x10c102, 0x0) openat(r1, &(0x7f0000000000)='.\x00', 0x100, 0x84) lseek(r0, 0x0, 0x4) getresuid(&(0x7f0000001700), &(0x7f0000001740)=0x0, &(0x7f0000001780)) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r3, 0x0) syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f00000000c0)='./file1\x00', 0x4, 0x9, &(0x7f0000001600)=[{&(0x7f0000000140)="2b414437e6ad5b05778cb3f1969c2c07bc8dc72b6c62076a5b3cd76647281cc9486cbc260797257017796c4a126fc34f6e91d354f674f6d627e2cc7d1d446bebf330d9c0e3c236d66f19dfe7c72b589ce35ca69053e25fa18f27cb32", 0x5c, 0x6}, {&(0x7f00000001c0)="aa4d1d5c9d616848a007a9600c431f4435d28aedb63cf74813412db3057c92f149ff04931d569027594c6b6fda61715c332f55e6d768539def03c1cfc11fc4fd908564e22f98872614f0ca09d2bcdeb2cb64df6ec412d58454c90ba11a6a9e4ebc41076988cc57d6ad", 0x69, 0x100}, {&(0x7f0000000240)="d0ef84ec28ed6d6930f879fb0efcf619f021dc22c12c04c638411a2ccf201a31f0a43218e155fd7365437672", 0x2c, 0x100000001}, {&(0x7f00000002c0)="b2b6331a224054bf48d44c7fdf763a7aef5c54c7090827726f9d2e471152a9d948db1bac25c11d135dc40e0f476e8fd42f30519e5d33dbb14ef43ce71e50617ccf2770171c69d4696491", 0x4a, 0x26d8000000}, {&(0x7f0000000340), 0x0, 0x8}, {&(0x7f0000000380)="2e50217d34b6bc525aa7d82e805da5a6688848e5edb36dc09dcddca8411806ec40a195a9f866dc24459a14ddc6e71d9e6b8bd12838d3e2c9768643ccd2d6f79ed2de2364f34060f278d6e3b53a3bc32404fafde67c0a0c67fc480ee48bde5d24e2b631306765b2df4841ae107714b5a895c7fe48c8879edffc1a4c823e57dfb664216c9562ceadc11afad0401173a39dee968763923da405672e3b36aab5d1232b936525dc", 0xa5, 0x6}, {&(0x7f0000000440)="ed8073fcd1af9b2096950cc51954b7da6fc403e2f71ff2a084b00ba6d0a0fd75c3a961c51862a746a9f3707af84f5aad555b307f7529c304a8eeed1c6c502d01126adf784f73f41c6f784c7347aa19a04a3f8b76b2384caee9c947bd32c76f7ec033313f006b2888c55dd3859bc663fe35188216bee1f492f85c77bd2f2ea0319fb50fdc14236e13c73cd1c8187574d4c1881df30e856ab8f0632b7eacd22cd4", 0xa0, 0x80}, {&(0x7f0000000500)="441f2a0b3f408d02589761856d429eed256b18ab1c8c43b615cc1461dafe45729418b85cda32f80f7ca7d3ff25ef589434f679406d7780b2933eb71fb8be5c99249d6ee1def861c57555d33575bd9b535d4676c246e0079b892496360018b9efe81c37bc176e2de2f4eafbc8298548bd80a98a753ddca8073fb388ce1f0d600ab5a884a2df9df48fb4cb3ee7da8eab0ce2358aa6c87074de45006397567ec0780e32638f6ca42b475d9cb4789926ab50899a8dc706f3ededc91f01b02c28a803b0d34fe4a4360cac084584e9dab403a3728295a3ae24280c4560f0a5931125e397baaa98e17c956d87d35f3e90f29683de593a9c81d9060432c3ca8bcbd798d3a5d96526ff27fdfef45a64e95077dd0dff9679d1e36ec1eba8ffffeace5230525be608e587c4cd5cbd020cb6f683f6ab4eb95d5370b8f8df2c1a135ed04e272c76fd6dff84394956aa321195421cb29cf9171545c493339c899a5acd335c3aa660c543bfd02a6ce5f9ae064c67317f1ea1c865796b27e642979d7fc3c7714dd05c60a5a4c2c01a00e6f618a93bb4702eb876c37f731fae683251b9d56e3d21e9b1e79db8e2ff1b2ab0692bf6fc7c5b3b9560aa83000d91abbb5a6e6313babc405d4fb3e27fe162b1f1ac1621a3cdad580e57a4f0e21afab60ecd5ee690215df713ec7be4fd5b7a833dc4d51a6997b914d1b327fac6e28f004dff23d332ad620ed051a1e5b62224458fa87503d77ac1621b630b2c957ee8312f335bd012d83d3ae185314035e2a3d96dbebde1de604b8cca18153786b863826b9a1630240a4a337c17d1d3c7457981fd202998c9883e8b58f5a93f2c5959fe8c43610b3e995ff6bc2323558652968b33ea20c710d2495f1179705f4b13e181b10d0fe04aada413375a253fab633763ea6b9ca5b31f0682c7d6a0131c4272ae3e9e15d168984d94cb2657a177d4e424be05872f9209917f3028aae399e99aa44e46a02c0eb66b4358cd1cc2f22def8696b72397e95c773de9e7c4f1be28e9a265797a352e03d7620193f9838dd7a9ae814cb438753c2e3f2d9e934455723abf83a05b2c992910c7463442939ff22aed9c0278bcfaddfdeca95d19a8d8a310ee659159a12c807d71356b47b063a22af077b41c3584157bafbd7629e0655defe9395e6450f20444e24674b1f6b41c26eb56cbd8a723bb8d288cb7b453adce4aac44c7acf470625ce465bd1ba9672a584d59f12db1831ca65f8d35f507c3473d3e8a33d4ee1a4025a5461a5ff72419709e84bec306644158f3cd95ad95f8a443647efdca6df3da4b7d7f34d6254d65981de0503458ed1a3447abe16c1b35aa706dbe18d3ba8bcdaff14473e77a0d05ce93535593085e8ed50d0bbd4788e9d86f8723157aeb09372cd49d8f8c86b2d828d0987d22b6ea9e318fd9c4126ca23c3fdb003b2123769725df27cb577543709dea28af9758a9f465a627f1b743a0319ee5480b668c76b71e5a3b5d40988a3b55019a7bb2fd6ed9d88cc9d95c29ca5d5839bdd69aad57e10d8f9b395b263bdfe02cad0f78cde8ac1815966d6f78d9431c74eb799e0b5485c95d7a2d9c6a75d114d955b9ca846e31c4784770eab1274f5c8781b4c13f89c05787e4bf762ae96721abfd4815b34e65ccefbe5b52e6b0889cdb399aeee810ae74d50a9e6875db72264084a79693f53266a3722974027fa6642560425b73f14d11f06bcf36f36ecc36a458dee0e38dd52dc16ab4d3338eef8780a16236deb502a20c6831fdf3ec213b5af3c0bb2e0a10b9f3aa3ea3a8c92587676eae4e8a4e3833fdb630668a418760fee0876ab42c07165508d1aef15edd15ec31c9dba60e1538bd7444b3a97090b7349c6ca24fe9eef40842004efec073ddba7a15b0e100463cda1fc25dea01730cda86720f10e985213a2d2f7db099759e64cd093c12f6f8745f49d9010f6a0431b976633699e8527273bb93d5750d86c0796aae5bf604eca2fae38e214d53523fd43c9eea4555056f15fe0d9fdb88d8505b09619808b89347136370520602d773f2a6114112a39ed6018cbef21543251e6a07309b06f55216cb618ed2db2cd7f4bd168ef3de8f98ac9e2660d6fa3aab0ac1d82dccfa23b27b73dccaacf84cfe8e0b3f65699a200df56fa115c6f5982f85ba57bd2dae08568d39278063f00e624267b7a2063ca5827fdfdf234c9b34b1f51f16b342f681dcf95ac9ef4cbcf62d716842c5d13a34e322447abbcd9d82e018db491757ac8615c39197cf8700d7e94375389ccb9a7f32d6159e322f0026404e0d15a79585a70f65490585a5c1203760c7136561e5065c9e9b50011ca24008e979c4dcf0ad5007adadd0fb2c5fb062875af41dabcad0dc786cd43fb8ebabab8bfdaad64c412762940b4f5934dbbb6805fe6b822f80b4d0a8dd81d3e92c4a1f4b5e6c441d96976dfc502f282868e757ff7324d1b40a37baca5d3c4c3ff92a895f7672d7cd7d9ee720915e9d8abf615c570809ede11b5ff0a139cf2fb05d80e8dac7a62e4e7a4995e2ff0e0a8ba267be6f0961ed5122e06ffa00629c83e3977287a3a91215f78ab673eaae1616ba686b564dfdf797d0cbae9e640f9d23dbab7eae13cb79a3863cd6ef8b7578aeb9bebe3a0b9b054562bc40096dcf3b7750255e50b124872719d2b3308c4604bd7087873f2f94805cc28dbd646d1bb476039e36239190ef0b6ffa3f1912e004ab8c32f83c86e5672bd99c440ff0ae1ef9edd28d1d0170a5feac100cb6982e312ab95eb8851170bae635c7499dc13acd0ace515acdd308a7942679282ff1b682e253307bd9c1c2a3de06e909e0b7e4049e36eea7d06a2280c8b8f6dab4aeec5d9a924c6a5d9b145d1d23820dfd1e9efd791298b2b7606aa2f599aea70305aa2235b335f4db80d9e840f2181f966ebe001fcec88629763afcf44775f73b5c8e3477b0ba8b309d319df1a59037559a4a84105166722c2e7bcaf1ba8246227b2ebc9570da3989ed783414c393324691a13c6d46e8437892c8c8b34eb84a7931ee332b85b268c607542ac4cc9c52920fb092a0f2227ca655e3d776de9f86182e5d67716c31109e6656622940521d8394cdada22d6d4ad3869e3d14b2ef5fd5a7bf361fd1d61503559e3b3f7edee62255cb5e3150faadc59bb9063f8e442c92a346df8e2b05b122e038698d9b8217c480f3d324235c1af49e9eb2502e0d97b7b0b310644e997502c587ce4a98956f4689eea448453ed7680772619e458616184c77d3d9347b9eb122e39923aa69578585d8934e80d3805248c5f67ed85f1470c597e7680726c7fa4d48ee072b013f5477a8cd2ea2391902a275ff1a8f8db0c8b337d54472adbd7b361c5ce551ab2380f1abde1a1659b401301cc6ae5d597631549b2cdfd504584dd98019eb94beb34adbcd7116c3f8390b701a69224e830f3c4025c74d085d79caa34d7aa7428c3eea28cc80431debdf2369dffae8661742a8f90c7c6760eba8556f8be49fd0f2f8cca5e23786452f27c727dcc65412310e73685a88cfb8d839dc5a1b16c9cd4ba99aad57bce32d612943b2d044d988da9b2aa5849e60571b99a1da06ca8cec721c8766cfacfd37dcb677726a857a5aa54c0875ba185ea7fdc3e9d9c15896668e23d8531981a12a8e4971b9c977bf9cd399493c07bbe77ffbac4215eba3fc68e140cc55ca361e56aff7311dcd11a7fe05b6ee40d542607a0d96b5170092229c9d8ace67b1b0e8dc25641ee5d812f694f8ae292b13e0914f0a3434da185db8c77defe5f055bbfba75c2dcf87d67461608bf90fd8104522d14e28d73c0d0b0fb285d8aa87c43618b47b8aa7466e3e352a89afba18e561f01d5775cd9b9df3be7c985dd349357ac250a4643b1e373f32571a6b2abbd80dbd39adf62e1b52a092f165c31e23fbfb7bf2357e8fc03192f4695364d8f715c829143dff8f9a15f9852ca55e30f85227cccda1ef203f171a7c7b4b48c3469cef7ed44ce00c16adaa035941c7a1d4d3eb695854c25fa3e001e7db9321c71f32a8aca7dcb029aa23571341b498193c0f2cde4499f04be1c83bd1090099f07f652e84b7ccb1bcb9eb17a93d6e4c3fdce51e889e52769e27789fd8a9b2b5d7453a8be4647ad686017efcbc5feb7d3401be626164d05d7dfad1973518dceeb57dd7bec2216f577b1876dda062a0e071b7a63ee75beb51cb4d3c279b9c624d8ce15d08a8c572f7c1c3a3548fe04e09a065f7ff784ad258a5ea624c5117f2cab26f761450c7a8f13dbb3822d4f10b6546f72deed0b573b966498474ef1600a20344ea4904d86b0022dc3ad9d480a83e8ca47858e514f360686f95fd609c6e4e573d74ba87b776f75eac23b6eb6e7418eda57d2234aefb1408e8dc02bc3468b430fc5da3a44192311c7bb9a9ce32852dce1edc15d50ed02063f9effcdfeeddde3d9eda6f83fadd3bca51ab5428442687ffc02c6365616e4323263e66724e8977c1f9f443c585623b4f60800e0566cc8a09f1c7dcb673adec9050793e9890f934ba3cbca6e15c111372689dcdff1758a9437fb3f6147118a17449291edca6198e2147fa06b9f5f1a068cbe05fc3382730b43e9246e5ce2a90dc9ad699e8888f7735b446884f827e0633bd471b14ce07d8ba082a71bcadf577791430998360ea1a3d563c4fbf1fde4af67355942775eeab29c87a02fd80631346901b70035e2f6257710669763c89c1fc06635379f8fa42988db8370a2c1cb11596eb560e06da9ed3c5b33a5be2a42a2f5a896ef322f786d72bf7d895dac022f14e0ead1322975e25e4e7052a120d60ba78f37429854c0ed790c5a73d25eafd7ae16c27d0748ceace9bafaa38b2417a59d1d041bfb3152b4b95e55d9c1a48c1df2f6167ea988793a93b9974839323d797b3a78c804c281271c9689bea7b4d5cf43aa46fd7ffb04928a8ae38ade123d45a5f61d25b4af2586a066582a50b6b90c7e06ab80876eefe76efc977ab60a4b1925b9692f9d406c379f316a7ed20dffb0104547c33f1bcbd5592c6ed922b04708feff2d0fb24405cd2e49524aaaa71aa98329af0308ac37b8c87d123c86f7724d6eae5aa505267d0c84e717eb348952fab5f53b46b6cc2adb10ea208feb21e596d4eb9c047196b209600b484f0cf9b0a74b4cf7985f4c4fbcac275fbb101dae2fe2b27e32ebb6024029e3dcd1a1e7376d04f75531197d3a44b4b4a4d5fb31d49aa9e985796458c7a904cbee45933c6496335d48d7628684628a9398a9f2f4b653c98d9309a70c556b285516e8254b386d186b0877a5e2b66b14c38ec96c8b617ad9f8fccb3fe87b009550c14991c2446fb99c6d321e5c1b3525f4a2b080747bbf048ef701ed400f7ef3ecb80ea594c35020c9a2e23f209c000359af804fe3352649ed254938c9a003c0889db5eabcd78b9b80dce7615b261a3cdeb4f199c4bd97578915e2857ba78ba1fceb6f1f30054bead83cd32e0c99d840fd7c101324fc8ecf27a678373447db5db7f5eb6f32a976e9ee73c203134a977d25074a4ce19917dc948f6ee749feec345c5727c15142173199c2b415e1eb8960907b40aa4df707d33a3ef4c0cda6c310382547a7b6533df96f4a65e70e3604043871ac6fd5ef6a4eda4c8af6dae3f721f81ce645f513cb44a45ec5231ceeb3b9a8b7c8190b56dffc5fbd90cc76c02f677f3751280c631f91ac75f4040e8554cb90044c7db967e18ccda868737100d4938bde64651c926eb51afd908a668aa3389b34f130e31e3e9aa991b7b4b057a8969d18473515b288d080da95444d5c3a8eb", 0x1000, 0x2}, {&(0x7f0000001500)="1b8b6918696d1d68094f905a842c12b9e03099d4165631678396791696a493af543f7ca239a442919bb6c5e1e12e50cc416fae59403099107cc9128aba64ba87606ee360618e078e0df6fb1f1578b1c418b97980b1ef2c7594688de2f339eb0b59c4ec7da92ee6060787bbfc9fd38bcfd0e80f5b0fb98b7ad30c810798d5d38198563bc0ca917961f4c877e96207d2aa736629bd73697902e71b33cf3f424f68dc2e73a8b356d1897868a69af50685bd75190d71df6bb84e41c452292fc970cf91725da4cdba78a20b9d59788e24fab4ed5a51aeef7d39b6", 0xd8, 0x1}], 0x1000, &(0x7f00000017c0)={[{@map_normal}, {@cruft}, {@iocharset={'iocharset', 0x3d, 'none'}}, {@map_normal}], [{@uid_lt={'uid<', r2}}, {@fsmagic={'fsmagic', 0x3d, 0x3}}, {@euid_gt={'euid>', r3}}, {@mask={'mask', 0x3d, '^MAY_APPEND'}}, {@seclabel}]}) 13:51:47 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x20000000, 0xfffffff7000) 13:51:47 executing program 1: r0 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x105142, 0x51) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:51:47 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x21030000, 0xfffffff7000) 13:51:47 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xc000000, 0xfffffff7000) 13:51:47 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x80000000000000, 0xfffffff7000) 13:51:47 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, 0x0, 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:51:48 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 62) 13:51:48 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x40000000, 0xfffffff7000) [ 1067.248491] FAULT_INJECTION: forcing a failure. [ 1067.248491] name failslab, interval 1, probability 0, space 0, times 0 [ 1067.249878] CPU: 0 PID: 7245 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1067.250667] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1067.251632] Call Trace: [ 1067.251947] dump_stack+0x107/0x167 [ 1067.252375] should_fail.cold+0x5/0xa [ 1067.252835] ? xas_alloc+0x336/0x440 [ 1067.253263] should_failslab+0x5/0x20 [ 1067.253699] kmem_cache_alloc+0x5b/0x310 [ 1067.254177] xas_alloc+0x336/0x440 [ 1067.254591] xas_create+0x34a/0x10d0 [ 1067.255036] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1067.255643] xas_store+0x8c/0x1c40 [ 1067.256077] __xa_store+0x164/0x2d0 [ 1067.256506] ? xa_delete_node+0x280/0x280 [ 1067.257106] ? trace_hardirqs_on+0x5b/0x180 [ 1067.257706] xa_store+0x31/0x50 [ 1067.258152] __io_uring_add_tctx_node+0x1cf/0x520 [ 1067.258800] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1067.259437] ? alloc_fd+0x2e7/0x670 [ 1067.259895] io_uring_setup+0x1fbb/0x2980 [ 1067.260398] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1067.260999] ? wait_for_completion_io+0x270/0x270 [ 1067.261583] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1067.262199] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1067.262800] do_syscall_64+0x33/0x40 [ 1067.263235] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1067.263840] RIP: 0033:0x7f084f4a7b19 [ 1067.264269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1067.266392] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1067.267275] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1067.268102] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1067.268936] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1067.269749] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1067.270573] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:52:01 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:01 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x100000000000000, 0xfffffff7000) 13:52:01 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, 0x0, 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:01 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 63) 13:52:01 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xd000000, 0xfffffff7000) 13:52:01 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:01 executing program 1: ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000180)={0xba, 0xe5f, 0x7, "ba51a731f9bcd14f4e98efd1d871d3c72e8564d736a832b0f6a6de50e08c4960805d69493191fc875945a42cda9419aa81e7d590ba38347f8ee28ac3eb35187b473f883070e6a9e029ea495ead63de77be9213bb3d66f9f5100525c6376c923e7cb67fc087e71cd7b97852457da192fe4673dd5225f582e870d7ea9aca34ac31428a04257ae31947bb54df6e2b33cede6bac66ee8f240323cb3f6b50290165846281db54131f167693102ce9e9f4c33aa6dae13398d66b8e7128"}) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f00000002c0)={0x0, 0x3, {0x6e, @struct={0x3, 0x9}, 0x0, 0x8, 0xffffffffffff6ff3, 0x6, 0x9, 0xcdb, 0x410, @usage=0xfffffffffffffffd, 0x100, 0x7fffffff, [0x7, 0x20, 0x7, 0x0, 0x59, 0x100000001]}, {0x8, @struct={0x10001, 0xffffff01}, 0x0, 0x101, 0x0, 0x23d, 0x8, 0xa062, 0x19, @usage=0x254, 0xdaca, 0x4, [0x22dc0ab3, 0x9, 0xf0, 0x200, 0xfffffffffffffff9, 0x9450]}, {0x100000001, @usage=0x6, 0x0, 0x3, 0x5, 0x10001, 0x1, 0x3, 0x80, @struct={0x6}, 0x20, 0x5, [0x0, 0x810, 0xfffffffffffffe01, 0x7f, 0x2, 0x4]}, {0x4, 0xe, 0x9}}) ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f00000006c0)={r2, 0xfffffffffffffffb, 0x3, 0x1}) read(r1, &(0x7f0000000ac0)=""/34, 0x22) sendfile(r0, r1, 0x0, 0x100000001) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) lseek(r3, 0x6, 0x4) lseek(r0, 0x0, 0x4) sendmsg$IPVS_CMD_GET_DAEMON(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x2, 0x70bd29, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x5}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x4008000) 13:52:01 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x81020000, 0xfffffff7000) [ 1081.084299] FAULT_INJECTION: forcing a failure. [ 1081.084299] name failslab, interval 1, probability 0, space 0, times 0 [ 1081.086886] CPU: 1 PID: 7263 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1081.088354] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1081.090097] Call Trace: [ 1081.090663] dump_stack+0x107/0x167 [ 1081.091462] should_fail.cold+0x5/0xa [ 1081.092274] ? create_object.isra.0+0x3a/0xa30 [ 1081.093260] should_failslab+0x5/0x20 [ 1081.094054] kmem_cache_alloc+0x5b/0x310 [ 1081.094907] ? mark_held_locks+0x9e/0xe0 [ 1081.095782] create_object.isra.0+0x3a/0xa30 [ 1081.096697] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1081.097810] kmem_cache_alloc+0x159/0x310 [ 1081.098721] xas_alloc+0x336/0x440 [ 1081.099485] xas_create+0x34a/0x10d0 [ 1081.100275] ? queued_spin_lock_slowpath+0xcc/0x8c0 [ 1081.101331] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1081.102435] xas_store+0x8c/0x1c40 [ 1081.103227] __xa_store+0x164/0x2d0 [ 1081.103993] ? xa_delete_node+0x280/0x280 [ 1081.104888] ? trace_hardirqs_on+0x5b/0x180 [ 1081.105803] xa_store+0x31/0x50 [ 1081.106492] __io_uring_add_tctx_node+0x1cf/0x520 [ 1081.107520] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1081.108605] ? alloc_fd+0x2e7/0x670 13:52:01 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xe4ffffff, 0xfffffff7000) [ 1081.109383] io_uring_setup+0x1fbb/0x2980 [ 1081.110408] ? __do_sys_io_uring_enter+0x1890/0x1890 13:52:01 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x202002, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) [ 1081.111547] ? wait_for_completion_io+0x270/0x270 [ 1081.112615] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1081.113758] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1081.114862] do_syscall_64+0x33/0x40 [ 1081.115630] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1081.116937] RIP: 0033:0x7f084f4a7b19 [ 1081.117740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1081.121576] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1081.123184] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1081.124653] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1081.126150] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1081.127756] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1081.129586] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:52:02 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x200000000000000, 0xfffffff7000) 13:52:02 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xe000000, 0xfffffff7000) 13:52:02 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xf4ffffff, 0xfffffff7000) 13:52:02 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, 0x0, 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:02 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x10000000, 0xfffffff7000) 13:52:15 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x0, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:15 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xf5ffffff, 0xfffffff7000) 13:52:15 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:15 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:15 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x201000000000000, 0xfffffff7000) 13:52:15 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 64) 13:52:15 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) ioctl$TUNGETDEVNETNS(r1, 0x54e3, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000040)={@empty}, 0x14) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000002c0)={'ip6tnl0\x00', &(0x7f0000000240)={'syztnl2\x00', 0x0, 0x2f, 0x0, 0x81, 0x7, 0x10, @empty, @rand_addr=' \x01\x00', 0x7, 0x80, 0x1, 0x7}}) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000080)={'syztnl1\x00', 0x0, 0x17dbad8164fba5bc, 0x6, 0x8, 0x4, 0x4, @empty, @private0={0xfc, 0x0, '\x00', 0x1}, 0x20, 0x40, 0x993d, 0x1}}) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000040)={@empty, r5}, 0x14) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000002c0)={'ip6tnl0\x00', &(0x7f0000000240)={'syztnl2\x00', r5, 0x2f, 0x0, 0x81, 0x7, 0x10, @empty, @rand_addr=' \x01\x00', 0x7, 0x80, 0x1, 0x7}}) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000040)={@empty, r7}, 0x14) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000002c0)={'ip6tnl0\x00', &(0x7f0000000240)={'syztnl2\x00', r7, 0x2f, 0x0, 0x81, 0x7, 0x10, @empty, @rand_addr=' \x01\x00', 0x7, 0x80, 0x1, 0x7}}) getsockname$packet(r1, &(0x7f00000001c0)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x14) sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000700)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000800)={0x404, 0x0, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [{{0x8}, {0x48, 0x2, 0x0, 0x1, [{0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}]}}, {{0x8}, {0x19c, 0x2, 0x0, 0x1, [{0x38, 0x1, @user_linkup}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r3}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x38, 0x1, @notify_peers_count={{}, {}, {0x0, 0x4, 0x401}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}]}}, {{0x8}, {0xc4, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x1d, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}]}}, {{0x8, 0x1, r5}, {0x128, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x101}}, {0x8, 0x6, r7}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}]}}]}, 0x404}, 0x1, 0x0, 0x0, 0xd0}, 0x20000004) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) sendfile(r1, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:52:15 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x12000000, 0xfffffff7000) [ 1095.007874] FAULT_INJECTION: forcing a failure. [ 1095.007874] name failslab, interval 1, probability 0, space 0, times 0 [ 1095.010493] CPU: 0 PID: 7322 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1095.011952] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1095.013730] Call Trace: [ 1095.014306] dump_stack+0x107/0x167 [ 1095.015096] should_fail.cold+0x5/0xa [ 1095.015917] ? xas_alloc+0x336/0x440 [ 1095.016721] should_failslab+0x5/0x20 [ 1095.017543] kmem_cache_alloc+0x5b/0x310 [ 1095.018426] xas_alloc+0x336/0x440 [ 1095.019195] xas_create+0x34a/0x10d0 [ 1095.020018] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1095.021158] xas_store+0x8c/0x1c40 [ 1095.021956] __xa_store+0x164/0x2d0 [ 1095.022746] ? xa_delete_node+0x280/0x280 [ 1095.023651] ? trace_hardirqs_on+0x5b/0x180 [ 1095.024591] xa_store+0x31/0x50 [ 1095.025321] __io_uring_add_tctx_node+0x1cf/0x520 [ 1095.026357] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1095.027477] ? alloc_fd+0x2e7/0x670 [ 1095.028284] io_uring_setup+0x1fbb/0x2980 [ 1095.029196] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1095.030268] ? wait_for_completion_io+0x270/0x270 [ 1095.031362] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1095.032501] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1095.033628] do_syscall_64+0x33/0x40 [ 1095.034438] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1095.035532] RIP: 0033:0x7f084f4a7b19 [ 1095.036335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1095.040259] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1095.041875] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1095.043410] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1095.044943] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1095.046466] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1095.048001] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:52:15 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x20000000, 0xfffffff7000) 13:52:15 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x300000000000000, 0xfffffff7000) 13:52:15 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xfbffffff, 0xfffffff7000) 13:52:15 executing program 1: r0 = syz_open_dev$vcsa(&(0x7f0000000140), 0x2, 0x40) r1 = openat(r0, &(0x7f00000000c0)='./file1\x00', 0x8c0a02, 0x34) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002200)='/proc/sysvipc/msg\x00', 0x0, 0x0) write$binfmt_script(r2, &(0x7f0000002240)=ANY=[@ANYBLOB="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"], 0x106) ioctl$BTRFS_IOC_SET_FEATURES(r2, 0x40309439, &(0x7f00000001c0)={0x2, 0x2, 0x4}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="c9b5a7494e7579e1fdd32e380000003100"]) getsockopt$bt_BT_RCVMTU(r1, 0x112, 0xd, &(0x7f0000000040)=0x1f, &(0x7f0000000080)=0x2) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) lseek(r4, 0x0, 0x4) r6 = open(&(0x7f0000000180)='./file1\x00', 0x80001, 0x4) getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000), 0x10) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$SO_TIMESTAMPING(r7, 0x1, 0x25, &(0x7f00000002c0)=0x1000, 0x4) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r8, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r6, 0xc018937a, &(0x7f0000000240)=ANY=[@ANYRES64, @ANYRESOCT, @ANYRESHEX=r8]) 13:52:15 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x400000000000000, 0xfffffff7000) 13:52:16 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x21030000, 0xfffffff7000) 13:52:16 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 65) 13:52:16 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xfeffffff, 0xfffffff7000) [ 1095.347785] FAULT_INJECTION: forcing a failure. [ 1095.347785] name failslab, interval 1, probability 0, space 0, times 0 [ 1095.350303] CPU: 0 PID: 7344 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1095.351743] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1095.353499] Call Trace: [ 1095.354077] dump_stack+0x107/0x167 [ 1095.354852] should_fail.cold+0x5/0xa [ 1095.355668] ? create_object.isra.0+0x3a/0xa30 [ 1095.356644] should_failslab+0x5/0x20 [ 1095.357468] kmem_cache_alloc+0x5b/0x310 [ 1095.358333] ? mark_held_locks+0x9e/0xe0 [ 1095.359203] create_object.isra.0+0x3a/0xa30 [ 1095.360137] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1095.361237] kmem_cache_alloc+0x159/0x310 [ 1095.362135] xas_alloc+0x336/0x440 [ 1095.362897] xas_create+0x34a/0x10d0 [ 1095.363705] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1095.364817] xas_store+0x8c/0x1c40 [ 1095.365605] __xa_store+0x164/0x2d0 [ 1095.366384] ? xa_delete_node+0x280/0x280 [ 1095.367279] ? trace_hardirqs_on+0x5b/0x180 [ 1095.368215] xa_store+0x31/0x50 [ 1095.368936] __io_uring_add_tctx_node+0x1cf/0x520 [ 1095.369954] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1095.371060] ? alloc_fd+0x2e7/0x670 [ 1095.371859] io_uring_setup+0x1fbb/0x2980 [ 1095.372765] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1095.373846] ? wait_for_completion_io+0x270/0x270 [ 1095.374921] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1095.376049] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1095.377155] do_syscall_64+0x33/0x40 [ 1095.377941] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1095.379020] RIP: 0033:0x7f084f4a7b19 [ 1095.379809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1095.383699] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1095.385304] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1095.386810] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1095.388314] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1095.389820] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1095.391322] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:52:16 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x0, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:16 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x500000000000000, 0xfffffff7000) 13:52:16 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x0, 0x0) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x22f3]) semop(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)={r1, r2+60000000}) semtimedop(0x0, &(0x7f00000003c0), 0x0, &(0x7f00000001c0)={0x0, 0x989680}) semtimedop(r0, &(0x7f0000000000), 0x0, &(0x7f0000000040)={0x77359400}) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) r3 = semget$private(0x0, 0x6, 0x81) semop(r3, &(0x7f0000000200)=[{0x3, 0xee, 0x1800}, {}, {0x2, 0x5, 0x1000}], 0x3) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f0000000080)=""/14) semctl$SEM_STAT_ANY(r3, 0x3, 0x14, &(0x7f0000000400)=""/81) semctl$SEM_STAT_ANY(r0, 0x0, 0x14, &(0x7f00000000c0)=""/103) semctl$SEM_STAT_ANY(r3, 0x3, 0x14, &(0x7f0000001140)=""/4096) unshare(0x48020200) 13:52:16 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:30 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x0, 0x0) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x22f3]) semop(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)={r1, r2+60000000}) semtimedop(0x0, &(0x7f00000003c0), 0x0, &(0x7f00000001c0)={0x0, 0x989680}) semtimedop(r0, &(0x7f0000000000), 0x0, &(0x7f0000000040)={0x77359400}) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) r3 = semget$private(0x0, 0x6, 0x81) semop(r3, &(0x7f0000000200)=[{0x3, 0xee, 0x1800}, {}, {0x2, 0x5, 0x1000}], 0x3) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f0000000080)=""/14) semctl$SEM_STAT_ANY(r3, 0x3, 0x14, &(0x7f0000000400)=""/81) semctl$SEM_STAT_ANY(r0, 0x0, 0x14, &(0x7f00000000c0)=""/103) semctl$SEM_STAT_ANY(r3, 0x3, 0x14, &(0x7f0000001140)=""/4096) unshare(0x48020200) 13:52:30 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:30 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x3f000000, 0xfffffff7000) 13:52:30 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x800000000000000, 0xfffffff7000) 13:52:30 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xff010000, 0xfffffff7000) 13:52:30 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 66) 13:52:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00fkle1\x00']) r2 = openat(r1, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r2, 0x0, 0x100000001) lsetxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f0000000240), &(0x7f0000000380)={0x0, 0xfb, 0xb6, 0x2, 0x1, "096b78f587a5285715c1ea3b169be1b3", "96217190ad51c69716bb3b9b1b2b10c39a2bde7ff324871f8061fcf80f41be7918c636d87ef79977c5494d1b5d08e4f6665b540ed0421c910eef2ad1dbf933b675162167ffb8d21fa3e861967cc5b0599658995b029a9e9a07dbedccdb5fe065e112d18b0479fb89582d120d2a37038c6db1d71a7bed1535d91e0caec03f467c03463a6f0dd4b8b08ae924f50fadc09428786fd28f043a42f6a59fd77e39e82d08"}, 0xb6, 0x1) lseek(r0, 0x0, 0x4) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r6, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) setsockopt$inet6_MCAST_MSFILTER(r6, 0x29, 0x30, &(0x7f00000002c0)={0x5, {{0xa, 0x4e24, 0x20, @local, 0x7}}, 0x1}, 0x90) r7 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x300400, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, r7, 0x0, r3}, 0x0) ioctl$EVIOCGKEY(r7, 0x80404518, &(0x7f0000000040)=""/79) 13:52:30 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x0, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 1110.168673] FAULT_INJECTION: forcing a failure. [ 1110.168673] name failslab, interval 1, probability 0, space 0, times 0 [ 1110.170325] CPU: 0 PID: 7376 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1110.171145] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1110.172159] Call Trace: [ 1110.172470] dump_stack+0x107/0x167 [ 1110.172903] should_fail.cold+0x5/0xa [ 1110.173388] ? xas_alloc+0x336/0x440 [ 1110.173867] should_failslab+0x5/0x20 [ 1110.174316] kmem_cache_alloc+0x5b/0x310 [ 1110.174806] xas_alloc+0x336/0x440 [ 1110.175241] xas_create+0x34a/0x10d0 [ 1110.175710] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1110.176345] xas_store+0x8c/0x1c40 [ 1110.176783] __xa_store+0x164/0x2d0 [ 1110.177251] ? xa_delete_node+0x280/0x280 [ 1110.177781] ? trace_hardirqs_on+0x5b/0x180 [ 1110.178416] xa_store+0x31/0x50 [ 1110.178807] __io_uring_add_tctx_node+0x1cf/0x520 [ 1110.179366] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1110.179999] ? alloc_fd+0x2e7/0x670 [ 1110.180472] io_uring_setup+0x1fbb/0x2980 [ 1110.180977] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1110.181567] ? wait_for_completion_io+0x270/0x270 [ 1110.182182] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1110.182797] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1110.183403] do_syscall_64+0x33/0x40 [ 1110.183836] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1110.184426] RIP: 0033:0x7f084f4a7b19 [ 1110.184857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1110.187008] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1110.187902] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1110.188748] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1110.189600] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1110.190417] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1110.191256] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:52:31 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:31 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 67) 13:52:31 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x64000000, 0xfffffff7000) 13:52:31 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x900000000000000, 0xfffffff7000) 13:52:31 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xffefffff, 0xfffffff7000) 13:52:31 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xb00000000000000, 0xfffffff7000) [ 1110.344635] FAULT_INJECTION: forcing a failure. [ 1110.344635] name failslab, interval 1, probability 0, space 0, times 0 [ 1110.347280] CPU: 1 PID: 7400 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1110.348735] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1110.350512] Call Trace: [ 1110.351083] dump_stack+0x107/0x167 [ 1110.351867] should_fail.cold+0x5/0xa [ 1110.352684] ? create_object.isra.0+0x3a/0xa30 [ 1110.353664] should_failslab+0x5/0x20 [ 1110.354467] kmem_cache_alloc+0x5b/0x310 [ 1110.355316] ? mark_held_locks+0x9e/0xe0 [ 1110.356178] create_object.isra.0+0x3a/0xa30 [ 1110.357094] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1110.358168] kmem_cache_alloc+0x159/0x310 [ 1110.359052] xas_alloc+0x336/0x440 [ 1110.359813] xas_create+0x34a/0x10d0 [ 1110.360620] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1110.361753] xas_store+0x8c/0x1c40 [ 1110.362526] __xa_store+0x164/0x2d0 [ 1110.363305] ? xa_delete_node+0x280/0x280 [ 1110.364194] ? trace_hardirqs_on+0x5b/0x180 [ 1110.365137] xa_store+0x31/0x50 [ 1110.365844] __io_uring_add_tctx_node+0x1cf/0x520 [ 1110.366869] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1110.367984] ? alloc_fd+0x2e7/0x670 [ 1110.368778] io_uring_setup+0x1fbb/0x2980 [ 1110.369698] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1110.370779] ? wait_for_completion_io+0x270/0x270 [ 1110.371857] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1110.373173] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1110.374374] do_syscall_64+0x33/0x40 [ 1110.375174] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1110.376269] RIP: 0033:0x7f084f4a7b19 [ 1110.377070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1110.380988] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1110.382627] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1110.384146] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1110.385684] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 13:52:31 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xd00000000000000, 0xfffffff7000) [ 1110.387205] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1110.388917] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:52:31 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xffffefff, 0xfffffff7000) 13:52:31 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x0, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:31 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:31 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xe00000000000000, 0xfffffff7000) 13:52:31 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x81020000, 0xfffffff7000) 13:52:31 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xffffff7f, 0xfffffff7000) 13:52:31 executing program 1: r0 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x6}}, './file1/file0\x00'}) r2 = openat(r1, &(0x7f0000000280)='./file1/file0\x00', 0x0, 0x0) sendfile(r0, r2, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:52:31 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x86ea0000, 0xfffffff7000) 13:52:31 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x1000000000000000, 0xfffffff7000) 13:52:44 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 68) 13:52:44 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x1200000000000000, 0xfffffff7000) 13:52:44 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:44 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:44 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:44 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xffffffe4, 0xfffffff7000) 13:52:44 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) lstat(&(0x7f0000000040)='./file1\x00', &(0x7f0000000080)) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r2, 0x0) getresgid(&(0x7f0000000140), &(0x7f0000000180)=0x0, &(0x7f00000001c0)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x8, 0x110, r1, 0x8000000) syz_io_uring_submit(r4, 0x0, &(0x7f00000002c0)=@IORING_OP_NOP={0x0, 0x1}, 0x80000001) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) r6 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) r9 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x300400, 0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, r9, 0x0, r5}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) r10 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) syz_io_uring_submit(r10, r8, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001) syz_io_uring_submit(r4, r8, &(0x7f0000000200)=@IORING_OP_FALLOCATE={0x11, 0x7, 0x0, @fd=r0, 0x1, 0x0, 0x3000000, 0x0, 0x1}, 0x0) lchown(&(0x7f0000000000)='./file1\x00', r2, r3) 13:52:44 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xe4ffffff, 0xfffffff7000) [ 1123.223962] FAULT_INJECTION: forcing a failure. [ 1123.223962] name failslab, interval 1, probability 0, space 0, times 0 [ 1123.226922] CPU: 1 PID: 7446 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1123.228509] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1123.230369] Call Trace: [ 1123.231010] dump_stack+0x107/0x167 [ 1123.231894] should_fail.cold+0x5/0xa [ 1123.232816] ? xas_alloc+0x336/0x440 [ 1123.233627] should_failslab+0x5/0x20 [ 1123.234633] kmem_cache_alloc+0x5b/0x310 [ 1123.235616] xas_alloc+0x336/0x440 [ 1123.236451] xas_create+0x34a/0x10d0 [ 1123.237487] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1123.238764] xas_store+0x8c/0x1c40 [ 1123.239684] __xa_store+0x164/0x2d0 [ 1123.240597] ? xa_delete_node+0x280/0x280 [ 1123.241661] ? trace_hardirqs_on+0x5b/0x180 [ 1123.242805] xa_store+0x31/0x50 [ 1123.243597] __io_uring_add_tctx_node+0x1cf/0x520 [ 1123.244792] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1123.246120] ? alloc_fd+0x2e7/0x670 [ 1123.246930] io_uring_setup+0x1fbb/0x2980 [ 1123.247919] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1123.249221] ? wait_for_completion_io+0x270/0x270 [ 1123.250438] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1123.251745] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1123.253003] do_syscall_64+0x33/0x40 [ 1123.253995] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1123.255188] RIP: 0033:0x7f084f4a7b19 [ 1123.255973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1123.260590] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1123.262310] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1123.264053] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1123.265834] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1123.267441] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1123.268994] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:52:44 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xf4ffffff, 0xfffffff7000) 13:52:44 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 69) [ 1123.356729] FAULT_INJECTION: forcing a failure. [ 1123.356729] name failslab, interval 1, probability 0, space 0, times 0 [ 1123.358122] CPU: 0 PID: 7469 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1123.358915] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1123.359883] Call Trace: [ 1123.360195] dump_stack+0x107/0x167 [ 1123.360625] should_fail.cold+0x5/0xa [ 1123.361070] ? create_object.isra.0+0x3a/0xa30 [ 1123.361605] should_failslab+0x5/0x20 [ 1123.362047] kmem_cache_alloc+0x5b/0x310 [ 1123.362514] ? mark_held_locks+0x9e/0xe0 [ 1123.363006] create_object.isra.0+0x3a/0xa30 [ 1123.363523] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1123.364135] kmem_cache_alloc+0x159/0x310 [ 1123.364628] xas_alloc+0x336/0x440 [ 1123.365048] xas_create+0x34a/0x10d0 [ 1123.365511] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1123.366123] xas_store+0x8c/0x1c40 [ 1123.366553] __xa_store+0x164/0x2d0 [ 1123.366986] ? xa_delete_node+0x280/0x280 [ 1123.367489] ? trace_hardirqs_on+0x5b/0x180 [ 1123.368006] xa_store+0x31/0x50 [ 1123.368395] __io_uring_add_tctx_node+0x1cf/0x520 [ 1123.368971] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1123.369586] ? alloc_fd+0x2e7/0x670 [ 1123.370026] io_uring_setup+0x1fbb/0x2980 [ 1123.370522] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1123.371123] ? wait_for_completion_io+0x270/0x270 [ 1123.371723] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1123.372341] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1123.372949] do_syscall_64+0x33/0x40 [ 1123.373394] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1123.373996] RIP: 0033:0x7f084f4a7b19 [ 1123.374446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1123.376624] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1123.377527] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1123.378352] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1123.379179] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1123.380003] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1123.380826] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:52:55 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 70) 13:52:55 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x12ec000000000000, 0xfffffff7000) 13:52:55 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:55 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xf5ffffff, 0xfffffff7000) 13:52:55 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xfffffff4, 0xfffffff7000) 13:52:55 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:55 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) ftruncate(r2, 0x3) 13:52:55 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 1135.128363] FAULT_INJECTION: forcing a failure. [ 1135.128363] name failslab, interval 1, probability 0, space 0, times 0 [ 1135.131091] CPU: 0 PID: 7492 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1135.132658] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1135.134450] Call Trace: [ 1135.135036] dump_stack+0x107/0x167 [ 1135.135834] should_fail.cold+0x5/0xa [ 1135.136669] ? create_object.isra.0+0x3a/0xa30 [ 1135.137681] should_failslab+0x5/0x20 [ 1135.138498] kmem_cache_alloc+0x5b/0x310 [ 1135.139364] ? mark_held_locks+0x9e/0xe0 [ 1135.140236] create_object.isra.0+0x3a/0xa30 [ 1135.141185] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1135.142302] kmem_cache_alloc+0x159/0x310 [ 1135.143213] xas_alloc+0x336/0x440 [ 1135.143968] xas_create+0x34a/0x10d0 [ 1135.144809] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1135.145944] xas_store+0x8c/0x1c40 [ 1135.146755] __xa_store+0x164/0x2d0 [ 1135.147543] ? xa_delete_node+0x280/0x280 [ 1135.148476] ? trace_hardirqs_on+0x5b/0x180 [ 1135.149453] xa_store+0x31/0x50 [ 1135.150186] __io_uring_add_tctx_node+0x1cf/0x520 [ 1135.151237] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1135.152377] ? alloc_fd+0x2e7/0x670 [ 1135.153187] io_uring_setup+0x1fbb/0x2980 [ 1135.154100] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1135.155168] ? wait_for_completion_io+0x270/0x270 [ 1135.156212] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1135.157340] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1135.158429] do_syscall_64+0x33/0x40 [ 1135.159223] entry_SYSCALL_64_after_hwframe+0x67/0xd1 13:52:55 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x2000000000000000, 0xfffffff7000) [ 1135.160318] RIP: 0033:0x7f084f4a7b19 [ 1135.161220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1135.165142] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1135.166726] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1135.168211] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1135.169714] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1135.171181] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1135.172659] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:52:55 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xfbffffff, 0xfffffff7000) 13:52:56 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xfffffff5, 0xfffffff7000) 13:52:56 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:52:56 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x2103000000000000, 0xfffffff7000) 13:52:56 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 71) [ 1135.388552] FAULT_INJECTION: forcing a failure. [ 1135.388552] name failslab, interval 1, probability 0, space 0, times 0 [ 1135.391054] CPU: 0 PID: 7515 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1135.392513] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1135.394318] Call Trace: [ 1135.394895] dump_stack+0x107/0x167 [ 1135.395695] should_fail.cold+0x5/0xa [ 1135.396508] ? create_object.isra.0+0x3a/0xa30 [ 1135.397469] should_failslab+0x5/0x20 [ 1135.398273] kmem_cache_alloc+0x5b/0x310 [ 1135.399133] ? mark_held_locks+0x9e/0xe0 [ 1135.400011] create_object.isra.0+0x3a/0xa30 [ 1135.400940] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1135.402037] kmem_cache_alloc+0x159/0x310 [ 1135.402949] xas_alloc+0x336/0x440 [ 1135.403722] xas_create+0x34a/0x10d0 [ 1135.404548] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1135.405699] xas_store+0x8c/0x1c40 [ 1135.406494] __xa_store+0x164/0x2d0 [ 1135.407287] ? xa_delete_node+0x280/0x280 [ 1135.408197] ? trace_hardirqs_on+0x5b/0x180 [ 1135.409140] xa_store+0x31/0x50 [ 1135.409871] __io_uring_add_tctx_node+0x1cf/0x520 [ 1135.410913] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1135.412027] ? alloc_fd+0x2e7/0x670 [ 1135.412834] io_uring_setup+0x1fbb/0x2980 [ 1135.413735] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1135.414812] ? wait_for_completion_io+0x270/0x270 [ 1135.415898] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1135.417042] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1135.418152] do_syscall_64+0x33/0x40 [ 1135.418948] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1135.420048] RIP: 0033:0x7f084f4a7b19 [ 1135.420839] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1135.424933] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1135.426573] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1135.428100] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1135.429589] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1135.431087] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1135.432577] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:52:56 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xfffffffb, 0xfffffff7000) 13:52:56 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xfeffffff, 0xfffffff7000) 13:52:56 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x7fffffffffffffff, 0xfffffff7000) 13:52:56 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x43) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x9, 0x40010, r0, 0x10000000) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000040)={@empty, r4}, 0x14) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000002c0)={'ip6tnl0\x00', &(0x7f0000000240)={'syztnl2\x00', r4, 0x2f, 0x0, 0x81, 0x7, 0x10, @empty, @rand_addr=' \x01\x00', 0x7, 0x80, 0x1, 0x7}}) r5 = syz_io_uring_setup(0x3862, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000180)=0x0) r8 = creat(&(0x7f0000000100)='./file0\x00', 0x0) fcntl$lock(r8, 0x24, &(0x7f0000000000)={0x0, 0x0, 0xfffffffffffffffc}) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x1, 0x0, 0x0, {0x0, r9}}, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000140)=@IORING_OP_CONNECT={0x10, 0x5, 0x0, r1, 0x80, &(0x7f0000000080)=@ll={0x11, 0x18, r4, 0x1, 0xfe, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xe}}, 0x0, 0x0, 0x0, {0x0, r9}}, 0x8) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) r10 = mq_open(&(0x7f0000000000)='\xbbQ\x00', 0x1, 0x21, &(0x7f0000000040)={0x1, 0x3, 0x7, 0x1}) dup2(r1, r10) 13:52:56 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:53:09 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(0x0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:53:09 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 1148.601766] FAULT_INJECTION: forcing a failure. [ 1148.601766] name failslab, interval 1, probability 0, space 0, times 0 [ 1148.604014] CPU: 0 PID: 7553 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1148.605041] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1148.606516] Call Trace: [ 1148.606922] dump_stack+0x107/0x167 [ 1148.607481] should_fail.cold+0x5/0xa [ 1148.608057] ? xas_alloc+0x336/0x440 [ 1148.608622] should_failslab+0x5/0x20 [ 1148.609205] kmem_cache_alloc+0x5b/0x310 [ 1148.609840] xas_alloc+0x336/0x440 [ 1148.610388] xas_create+0x34a/0x10d0 [ 1148.610963] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1148.611768] xas_store+0x8c/0x1c40 [ 1148.612323] __xa_store+0x164/0x2d0 [ 1148.612886] ? xa_delete_node+0x280/0x280 [ 1148.613526] ? trace_hardirqs_on+0x5b/0x180 [ 1148.614186] xa_store+0x31/0x50 [ 1148.614687] __io_uring_add_tctx_node+0x1cf/0x520 [ 1148.615419] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1148.616202] ? alloc_fd+0x2e7/0x670 [ 1148.616780] io_uring_setup+0x1fbb/0x2980 [ 1148.617425] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1148.618173] ? wait_for_completion_io+0x270/0x270 [ 1148.618924] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1148.619708] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1148.620479] do_syscall_64+0x33/0x40 [ 1148.621033] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1148.621805] RIP: 0033:0x7f084f4a7b19 [ 1148.622354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1148.625232] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1148.626373] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1148.627421] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1148.628469] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1148.629521] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1148.630579] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:53:09 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:53:09 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x8102000000000000, 0xfffffff7000) 13:53:09 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xfffffffe, 0xfffffff7000) 13:53:09 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xff010000, 0xfffffff7000) 13:53:09 executing program 1: sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)={0x8c, 0x0, 0x200, 0x70bd28, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}, @MPTCP_PM_ATTR_ADDR={0x40, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @mcast1}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x5}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x20}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4}, 0x20008080) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) syz_io_uring_setup(0x23c5, &(0x7f0000000040)={0x0, 0xc5cd, 0x0, 0x2, 0x336, 0x0, r0}, &(0x7f0000000000/0x4000)=nil, &(0x7f0000003000/0x2000)=nil, &(0x7f00000000c0), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000180)=@IORING_OP_WRITE_FIXED={0x5, 0x4, 0x2007, @fd=r0, 0x6, 0x2df, 0xd3d, 0x13}, 0x331e6370) sendfile(0xffffffffffffffff, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) openat(r0, &(0x7f0000000000)='./file1/file0\x00', 0x30280, 0x8) 13:53:09 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 72) 13:53:09 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 73) [ 1148.696352] FAULT_INJECTION: forcing a failure. [ 1148.696352] name failslab, interval 1, probability 0, space 0, times 0 [ 1148.698199] CPU: 0 PID: 7564 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1148.699209] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1148.700427] Call Trace: [ 1148.700822] dump_stack+0x107/0x167 [ 1148.701365] should_fail.cold+0x5/0xa [ 1148.701944] ? create_object.isra.0+0x3a/0xa30 [ 1148.702617] should_failslab+0x5/0x20 [ 1148.703187] kmem_cache_alloc+0x5b/0x310 [ 1148.703788] ? mark_held_locks+0x9e/0xe0 [ 1148.704393] create_object.isra.0+0x3a/0xa30 [ 1148.705036] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1148.705808] kmem_cache_alloc+0x159/0x310 [ 1148.706433] xas_alloc+0x336/0x440 [ 1148.706963] xas_create+0x34a/0x10d0 [ 1148.707525] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1148.708290] xas_store+0x8c/0x1c40 [ 1148.708836] __xa_store+0x164/0x2d0 [ 1148.709372] ? xa_delete_node+0x280/0x280 [ 1148.709998] ? trace_hardirqs_on+0x5b/0x180 [ 1148.710644] xa_store+0x31/0x50 [ 1148.711138] __io_uring_add_tctx_node+0x1cf/0x520 [ 1148.711844] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1148.712600] ? alloc_fd+0x2e7/0x670 [ 1148.713151] io_uring_setup+0x1fbb/0x2980 [ 1148.713795] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1148.714530] ? wait_for_completion_io+0x270/0x270 [ 1148.715265] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1148.716026] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1148.716783] do_syscall_64+0x33/0x40 [ 1148.717323] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1148.718079] RIP: 0033:0x7f084f4a7b19 [ 1148.718623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1148.721285] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1148.722402] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1148.723438] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1148.724477] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1148.725538] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1148.726581] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:53:09 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xffefffff, 0xfffffff7000) 13:53:09 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xe4ffffff00000000, 0xfffffff7000) 13:53:22 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:53:22 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(0x0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:53:22 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:53:22 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) open$dir(&(0x7f00000000c0)='./file1/file0\x00', 0x400, 0x149) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) lsetxattr(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040)=@random={'system.', '#\',).\x00'}, &(0x7f0000000080)='((\xeb.#&#^/)\x00', 0xb, 0x2) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:53:22 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 74) 13:53:22 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xffffefff, 0xfffffff7000) 13:53:22 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xf4ffffff00000000, 0xfffffff7000) [ 1161.946738] FAULT_INJECTION: forcing a failure. [ 1161.946738] name failslab, interval 1, probability 0, space 0, times 0 [ 1161.949212] CPU: 1 PID: 7583 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1161.950670] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1161.952438] Call Trace: [ 1161.953002] dump_stack+0x107/0x167 [ 1161.953793] should_fail.cold+0x5/0xa [ 1161.954604] ? xas_alloc+0x336/0x440 [ 1161.955397] should_failslab+0x5/0x20 [ 1161.956209] kmem_cache_alloc+0x5b/0x310 [ 1161.957074] xas_alloc+0x336/0x440 [ 1161.957841] xas_create+0x34a/0x10d0 [ 1161.958643] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1161.959761] xas_store+0x8c/0x1c40 [ 1161.960532] __xa_store+0x164/0x2d0 [ 1161.961303] ? xa_delete_node+0x280/0x280 [ 1161.962209] ? trace_hardirqs_on+0x5b/0x180 [ 1161.963129] xa_store+0x31/0x50 [ 1161.963827] __io_uring_add_tctx_node+0x1cf/0x520 [ 1161.964844] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1161.965976] ? alloc_fd+0x2e7/0x670 [ 1161.966763] io_uring_setup+0x1fbb/0x2980 [ 1161.967660] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1161.968741] ? wait_for_completion_io+0x270/0x270 [ 1161.969814] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1161.970937] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1161.972030] do_syscall_64+0x33/0x40 [ 1161.973095] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1161.974285] RIP: 0033:0x7f084f4a7b19 [ 1161.975082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1161.979191] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1161.980990] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1161.982505] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1161.984016] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1161.985522] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1161.987035] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:53:22 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x1000000000000, 0xfffffff7000) 13:53:22 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xffffff7f, 0xfffffff7000) 13:53:22 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x7ffffffffffff, 0xfffffff7000) 13:53:22 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 75) 13:53:22 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xf5ffffff00000000, 0xfffffff7000) 13:53:23 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 1162.269815] FAULT_INJECTION: forcing a failure. [ 1162.269815] name failslab, interval 1, probability 0, space 0, times 0 [ 1162.271789] CPU: 0 PID: 7610 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1162.273003] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1162.274356] Call Trace: [ 1162.274795] dump_stack+0x107/0x167 [ 1162.275398] should_fail.cold+0x5/0xa [ 1162.276032] ? create_object.isra.0+0x3a/0xa30 [ 1162.276775] should_failslab+0x5/0x20 [ 1162.277396] kmem_cache_alloc+0x5b/0x310 [ 1162.278063] ? mark_held_locks+0x9e/0xe0 [ 1162.278727] create_object.isra.0+0x3a/0xa30 [ 1162.279433] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1162.280260] kmem_cache_alloc+0x159/0x310 [ 1162.280941] xas_alloc+0x336/0x440 [ 1162.281510] xas_create+0x34a/0x10d0 [ 1162.282141] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1162.282994] xas_store+0x8c/0x1c40 [ 1162.283599] __xa_store+0x164/0x2d0 [ 1162.284196] ? xa_delete_node+0x280/0x280 [ 1162.284885] ? trace_hardirqs_on+0x5b/0x180 [ 1162.285604] xa_store+0x31/0x50 [ 1162.286149] __io_uring_add_tctx_node+0x1cf/0x520 [ 1162.286926] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1162.287771] ? alloc_fd+0x2e7/0x670 [ 1162.288382] io_uring_setup+0x1fbb/0x2980 [ 1162.289072] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1162.289898] ? wait_for_completion_io+0x270/0x270 [ 1162.290717] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1162.291567] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1162.292415] do_syscall_64+0x33/0x40 [ 1162.293020] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1162.293854] RIP: 0033:0x7f084f4a7b19 [ 1162.294458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1162.297403] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1162.298633] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1162.299780] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1162.300890] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1162.302009] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1162.303121] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:53:23 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xfbffffff00000000, 0xfffffff7000) 13:53:23 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(0x0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:53:40 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:53:40 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x8000000000000, 0xfffffff7000) 13:53:40 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:53:40 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:53:40 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xffffffe4, 0xfffffff7000) 13:53:40 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) ioctl$BTRFS_IOC_DEFRAG_RANGE(r2, 0x40309410, &(0x7f0000000000)={0x8, 0xf4, 0x1, 0x1ff, 0x1, [0x40, 0x4, 0x7, 0x2]}) 13:53:40 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xfeffffff00000000, 0xfffffff7000) 13:53:40 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 76) [ 1179.976618] FAULT_INJECTION: forcing a failure. [ 1179.976618] name failslab, interval 1, probability 0, space 0, times 0 [ 1179.979446] CPU: 1 PID: 7641 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1179.981020] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1179.982960] Call Trace: [ 1179.983581] dump_stack+0x107/0x167 [ 1179.984406] should_fail.cold+0x5/0xa [ 1179.985285] ? xas_alloc+0x336/0x440 [ 1179.986140] should_failslab+0x5/0x20 [ 1179.987009] kmem_cache_alloc+0x5b/0x310 [ 1179.987949] xas_alloc+0x336/0x440 [ 1179.988767] xas_create+0x34a/0x10d0 [ 1179.989622] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1179.990824] xas_store+0x8c/0x1c40 [ 1179.991661] __xa_store+0x164/0x2d0 [ 1179.992509] ? xa_delete_node+0x280/0x280 [ 1179.993461] ? trace_hardirqs_on+0x5b/0x180 [ 1179.994477] xa_store+0x31/0x50 [ 1179.995232] __io_uring_add_tctx_node+0x1cf/0x520 [ 1179.996346] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1179.997539] ? alloc_fd+0x2e7/0x670 [ 1179.998402] io_uring_setup+0x1fbb/0x2980 [ 1179.999349] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1180.000502] ? wait_for_completion_io+0x270/0x270 [ 1180.001621] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1180.002825] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1180.003996] do_syscall_64+0x33/0x40 [ 1180.004842] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1180.006026] RIP: 0033:0x7f084f4a7b19 13:53:40 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xfffffff4, 0xfffffff7000) [ 1180.006867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1180.011279] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1180.013053] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1180.014720] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1180.016369] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1180.018037] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1180.019695] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:53:40 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x10000000000000, 0xfffffff7000) 13:53:40 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xff01000000000000, 0xfffffff7000) 13:53:41 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xfffffff5, 0xfffffff7000) 13:53:41 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) fcntl$setsig(r2, 0xa, 0x21) 13:53:41 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:53:41 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 77) [ 1180.443419] FAULT_INJECTION: forcing a failure. [ 1180.443419] name failslab, interval 1, probability 0, space 0, times 0 [ 1180.446337] CPU: 1 PID: 7668 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1180.447788] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1180.449561] Call Trace: [ 1180.450146] dump_stack+0x107/0x167 [ 1180.450932] should_fail.cold+0x5/0xa [ 1180.451742] ? xas_alloc+0x336/0x440 [ 1180.452536] should_failslab+0x5/0x20 [ 1180.453342] kmem_cache_alloc+0x5b/0x310 [ 1180.454223] xas_alloc+0x336/0x440 [ 1180.454979] xas_create+0x34a/0x10d0 [ 1180.455789] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1180.456910] xas_store+0x8c/0x1c40 [ 1180.457683] __xa_store+0x164/0x2d0 [ 1180.458471] ? xa_delete_node+0x280/0x280 [ 1180.459360] ? trace_hardirqs_on+0x5b/0x180 [ 1180.460281] xa_store+0x31/0x50 [ 1180.460982] __io_uring_add_tctx_node+0x1cf/0x520 [ 1180.462015] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1180.463124] ? alloc_fd+0x2e7/0x670 [ 1180.463914] io_uring_setup+0x1fbb/0x2980 [ 1180.464810] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1180.465895] ? wait_for_completion_io+0x270/0x270 [ 1180.466940] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1180.468052] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1180.469146] do_syscall_64+0x33/0x40 [ 1180.469943] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1180.471032] RIP: 0033:0x7f084f4a7b19 [ 1180.471823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1180.475750] RSP: 002b:00007f084ca1d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1180.477379] RAX: ffffffffffffffda RBX: 00007f084f5baf60 RCX: 00007f084f4a7b19 [ 1180.478898] RDX: 0000000020ff6000 RSI: 0000000020000480 RDI: 0000000000003d3f [ 1180.480404] RBP: 0000000020000480 R08: 0000000020000280 R09: 0000000020000280 [ 1180.481919] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000280 [ 1180.483435] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:53:55 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xffefffff00000000, 0xfffffff7000) 13:53:55 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 78) 13:53:55 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:53:55 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 1194.775381] FAULT_INJECTION: forcing a failure. [ 1194.775381] name failslab, interval 1, probability 0, space 0, times 0 13:53:55 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x80000000000000, 0xfffffff7000) 13:53:55 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xfffffffb, 0xfffffff7000) 13:53:55 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:53:55 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) r2 = signalfd(r1, &(0x7f00000000c0)={[0x7ff]}, 0x8) r3 = timerfd_create(0x3, 0x80000) ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000140)={{0x1, 0x1, 0x18, r3}, './file1\x00'}) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) setxattr$security_selinux(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040), &(0x7f0000000080)='system_u:object_r:bsdpty_device_t:s0\x00', 0x25, 0x1) [ 1194.778207] CPU: 0 PID: 7681 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1194.779942] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1194.781694] Call Trace: [ 1194.782276] dump_stack+0x107/0x167 [ 1194.783063] should_fail.cold+0x5/0xa [ 1194.783885] ? vm_area_dup+0x78/0x290 [ 1194.784706] should_failslab+0x5/0x20 [ 1194.785521] kmem_cache_alloc+0x5b/0x310 [ 1194.786413] vm_area_dup+0x78/0x290 [ 1194.787213] ? mark_lock+0xf5/0x2df0 [ 1194.788005] ? perf_tp_event+0x5ce/0xc00 [ 1194.788884] ? lock_chain_count+0x20/0x20 [ 1194.789779] ? perf_event_switch_output+0x7d0/0x7d0 [ 1194.790862] ? lock_chain_count+0x20/0x20 [ 1194.791762] ? mark_lock+0xf5/0x2df0 [ 1194.792565] ? vm_area_alloc+0x110/0x110 [ 1194.793438] ? __lock_acquire+0x1657/0x5b00 [ 1194.794602] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1194.795722] ? SOFTIRQ_verbose+0x10/0x10 [ 1194.796589] ? vmacache_find+0x55/0x2a0 [ 1194.797447] __split_vma+0xa8/0x4e0 [ 1194.798248] __do_munmap+0x365/0x1260 [ 1194.799069] ? arch_get_unmapped_area+0x450/0x450 [ 1194.800103] ? lock_release+0x680/0x680 [ 1194.800959] mmap_region+0x7cc/0x1500 [ 1194.801807] do_mmap+0x868/0x1370 [ 1194.802581] vm_mmap_pgoff+0x198/0x1f0 [ 1194.803431] ? randomize_page+0xb0/0xb0 [ 1194.804317] ksys_mmap_pgoff+0x41c/0x560 [ 1194.805194] ? find_mergeable_anon_vma+0x250/0x250 [ 1194.806259] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1194.807381] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1194.808491] do_syscall_64+0x33/0x40 [ 1194.809294] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1194.810670] RIP: 0033:0x7f084f4a7b62 [ 1194.811638] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1194.816104] RSP: 002b:00007f084ca1d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1194.817717] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f084f4a7b62 [ 1194.819234] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ff8000 [ 1194.820768] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1194.822301] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000280 [ 1194.823797] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:53:55 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x100000000000000, 0xfffffff7000) [ 1194.921669] audit: type=1400 audit(1777816435.743:13): avc: denied { relabelto } for pid=7680 comm="syz-executor.1" name="file1" dev="sda" ino=16026 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:bsdpty_device_t:s0 tclass=file permissive=1 13:53:55 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xffffff7f00000000, 0xfffffff7000) 13:53:55 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xfffffffe, 0xfffffff7000) 13:53:55 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:53:55 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x200000000000000, 0xfffffff7000) 13:53:55 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xffffffff00000000, 0xfffffff7000) 13:53:56 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x1000000000000, 0xfffffff7000) 13:53:56 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 79) 13:53:56 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) r2 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x200481, 0x0) close_range(r0, r2, 0x2) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) [ 1195.315103] FAULT_INJECTION: forcing a failure. [ 1195.315103] name failslab, interval 1, probability 0, space 0, times 0 [ 1195.317676] CPU: 1 PID: 7716 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1195.319141] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1195.320897] Call Trace: [ 1195.321461] dump_stack+0x107/0x167 [ 1195.322251] should_fail.cold+0x5/0xa [ 1195.323069] ? create_object.isra.0+0x3a/0xa30 [ 1195.324041] should_failslab+0x5/0x20 [ 1195.324842] kmem_cache_alloc+0x5b/0x310 [ 1195.325714] create_object.isra.0+0x3a/0xa30 [ 1195.326654] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1195.327734] kmem_cache_alloc+0x159/0x310 [ 1195.328612] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1195.329732] vm_area_dup+0x78/0x290 [ 1195.330527] ? mark_lock+0xf5/0x2df0 [ 1195.331328] ? lock_chain_count+0x20/0x20 [ 1195.332212] ? mark_lock+0xf5/0x2df0 [ 1195.333009] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1195.334133] ? lock_chain_count+0x20/0x20 [ 1195.335011] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1195.335955] ? trace_hardirqs_on+0x5b/0x180 [ 1195.336870] ? mark_lock+0xf5/0x2df0 [ 1195.337660] ? vm_area_alloc+0x110/0x110 [ 1195.338539] ? __lock_acquire+0x1657/0x5b00 [ 1195.339470] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1195.340577] ? SOFTIRQ_verbose+0x10/0x10 [ 1195.341432] ? vmacache_find+0x55/0x2a0 [ 1195.342315] __split_vma+0xa8/0x4e0 [ 1195.343095] __do_munmap+0x365/0x1260 [ 1195.343899] ? arch_get_unmapped_area+0x450/0x450 [ 1195.344913] ? lock_release+0x680/0x680 [ 1195.345759] mmap_region+0x7cc/0x1500 [ 1195.346587] do_mmap+0x868/0x1370 [ 1195.347336] vm_mmap_pgoff+0x198/0x1f0 [ 1195.348163] ? randomize_page+0xb0/0xb0 [ 1195.349019] ksys_mmap_pgoff+0x41c/0x560 [ 1195.349900] ? find_mergeable_anon_vma+0x250/0x250 [ 1195.350950] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1195.352060] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1195.353156] do_syscall_64+0x33/0x40 [ 1195.353947] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1195.355043] RIP: 0033:0x7f084f4a7b62 [ 1195.355824] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1195.359724] RSP: 002b:00007f084ca1d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1195.361349] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f084f4a7b62 [ 1195.362880] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ff8000 [ 1195.364381] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1195.365902] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000280 [ 1195.367408] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:53:56 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x201000000000000, 0xfffffff7000) 13:53:56 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, 0x0, 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:53:56 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105082, 0xc) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:53:56 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xffffffffffff0700, 0xfffffff7000) 13:53:56 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:54:10 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:54:10 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, 0x0, 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:54:10 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x300000000000000, 0xfffffff7000) 13:54:10 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x7ffffffffffff, 0xfffffff7000) 13:54:10 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 80) 13:54:10 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xffffffffffffff7f, 0xfffffff7000) 13:54:10 executing program 1: r0 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)=0xe, 0x80000) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f00000000c0)={'ipvlan1\x00', {0x2, 0x0, @initdev}}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4080, 0x1a0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x501402, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f0000000000)={0xebe, 0x5d, 0x7fffffff, 0x3, 0x6}) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000009, 0x10, r3, 0x26647000) sendfile(r1, r2, 0x0, 0x100000001) lseek(r1, 0x0, 0x4) 13:54:10 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, 0x0) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 1209.358479] FAULT_INJECTION: forcing a failure. [ 1209.358479] name failslab, interval 1, probability 0, space 0, times 0 [ 1209.361009] CPU: 1 PID: 7753 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1209.362461] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1209.364207] Call Trace: [ 1209.364782] dump_stack+0x107/0x167 [ 1209.365568] should_fail.cold+0x5/0xa [ 1209.366395] ? anon_vma_clone+0xdc/0x590 [ 1209.367264] should_failslab+0x5/0x20 [ 1209.368069] kmem_cache_alloc+0x5b/0x310 [ 1209.368927] anon_vma_clone+0xdc/0x590 [ 1209.369754] __split_vma+0x17c/0x4e0 [ 1209.370560] __do_munmap+0x365/0x1260 [ 1209.371371] ? arch_get_unmapped_area+0x450/0x450 [ 1209.372399] ? lock_release+0x680/0x680 [ 1209.373235] mmap_region+0x7cc/0x1500 [ 1209.374061] do_mmap+0x868/0x1370 [ 1209.374815] vm_mmap_pgoff+0x198/0x1f0 [ 1209.375640] ? randomize_page+0xb0/0xb0 [ 1209.376513] ksys_mmap_pgoff+0x41c/0x560 [ 1209.377381] ? find_mergeable_anon_vma+0x250/0x250 [ 1209.378438] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1209.379740] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1209.380835] do_syscall_64+0x33/0x40 [ 1209.381624] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1209.382710] RIP: 0033:0x7f084f4a7b62 [ 1209.383489] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1209.387355] RSP: 002b:00007f084ca1d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1209.388970] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f084f4a7b62 [ 1209.390485] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ff8000 [ 1209.391971] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1209.393478] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000280 [ 1209.394993] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:54:10 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x8000000000000, 0xfffffff7000) 13:54:10 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/nf_conntrack_sip', 0x0, 0x140) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:54:10 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x400000000000000, 0xfffffff7000) 13:54:24 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x0, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:54:24 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0xffffffffffffffff, 0xfffffff7000) 13:54:24 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r0, 0x0, 0x100000001) ioctl$F2FS_IOC_WRITE_CHECKPOINT(0xffffffffffffffff, 0xf507, 0x0) lseek(0xffffffffffffffff, 0x0, 0x4) 13:54:24 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 81) 13:54:24 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x500000000000000, 0xfffffff7000) 13:54:24 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x10000000000000, 0xfffffff7000) 13:54:24 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, 0x0) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:54:24 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, 0x0, 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 1223.877126] FAULT_INJECTION: forcing a failure. [ 1223.877126] name failslab, interval 1, probability 0, space 0, times 0 [ 1223.879687] CPU: 1 PID: 7793 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1223.881124] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1223.882875] Call Trace: [ 1223.883450] dump_stack+0x107/0x167 [ 1223.884225] should_fail.cold+0x5/0xa [ 1223.885035] ? create_object.isra.0+0x3a/0xa30 [ 1223.885993] should_failslab+0x5/0x20 [ 1223.886795] kmem_cache_alloc+0x5b/0x310 [ 1223.887649] create_object.isra.0+0x3a/0xa30 [ 1223.888558] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1223.889620] kmem_cache_alloc+0x159/0x310 [ 1223.890503] anon_vma_clone+0xdc/0x590 [ 1223.891334] __split_vma+0x17c/0x4e0 [ 1223.892115] __do_munmap+0x365/0x1260 [ 1223.892926] ? arch_get_unmapped_area+0x450/0x450 [ 1223.893939] ? lock_release+0x680/0x680 [ 1223.894785] mmap_region+0x7cc/0x1500 [ 1223.895610] do_mmap+0x868/0x1370 [ 1223.896362] vm_mmap_pgoff+0x198/0x1f0 [ 1223.897195] ? randomize_page+0xb0/0xb0 [ 1223.898041] ksys_mmap_pgoff+0x41c/0x560 [ 1223.898904] ? find_mergeable_anon_vma+0x250/0x250 [ 1223.899931] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1223.901037] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1223.902125] do_syscall_64+0x33/0x40 [ 1223.902915] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1223.903985] RIP: 0033:0x7f084f4a7b62 [ 1223.904767] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1223.908671] RSP: 002b:00007f084ca1d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1223.910335] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f084f4a7b62 [ 1223.911879] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ff8000 [ 1223.913402] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1223.914924] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000280 [ 1223.916429] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:54:24 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x80000000000000, 0xfffffff7000) 13:54:24 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff0002) 13:54:24 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x800000000000000, 0xfffffff7000) 13:54:24 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000640)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000200)=ANY=[@ANYRESHEX, @ANYRESOCT=r1]) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000002c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000000)={"26c7193a69336c481f81b9225f999450", r1, r2, {0xfffffffffffff2fd, 0x98}, {0x2, 0x3f}, 0x3, [0x6, 0x0, 0xfffffffffffffffc, 0x0, 0x3b34000000, 0x8, 0x0, 0x47e, 0x9, 0x120, 0xc86, 0x9, 0xff, 0x80000000, 0x1, 0x5]}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x501142, 0xe) r4 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) lseek(r3, 0x0, 0x4) r5 = open_tree(r3, &(0x7f0000000140)='./file1\x00', 0x1901) openat$cgroup_devices(r5, &(0x7f0000000180)='devices.allow\x00', 0x2, 0x0) 13:54:24 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7002) 13:54:24 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x100000000000000, 0xfffffff7000) 13:54:24 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x0, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:54:24 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) r2 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x95a8c8eb96d5623e, 0x0) fallocate(r2, 0x2348cfa061bd577a, 0x0, 0x62) sendfile(0xffffffffffffffff, r1, &(0x7f0000000080)=0x1ff, 0x8) openat(r0, &(0x7f0000000000)='./file1\x00', 0xc040, 0x20) r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x2000c0, 0x49) sendfile(r0, r3, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) mkdirat(r0, &(0x7f0000000040)='./file1\x00', 0x110) 13:54:38 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0x900000000000000, 0xfffffff7000) 13:54:38 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x0, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:54:38 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7003) 13:54:38 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, 0x0) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:54:38 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 82) 13:54:38 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x200000000000000, 0xfffffff7000) 13:54:38 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r0, 0xf503, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) creat(&(0x7f0000000000)='./file1\x00', 0x40) 13:54:38 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x0, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 1238.137459] FAULT_INJECTION: forcing a failure. [ 1238.137459] name failslab, interval 1, probability 0, space 0, times 0 [ 1238.140616] CPU: 1 PID: 7841 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1238.142440] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1238.144718] Call Trace: [ 1238.145392] dump_stack+0x107/0x167 [ 1238.146462] should_fail.cold+0x5/0xa [ 1238.147454] ? vm_area_alloc+0x1c/0x110 [ 1238.148499] should_failslab+0x5/0x20 [ 1238.149601] kmem_cache_alloc+0x5b/0x310 [ 1238.150639] vm_area_alloc+0x1c/0x110 [ 1238.151652] mmap_region+0x982/0x1500 [ 1238.152700] do_mmap+0x868/0x1370 [ 1238.153622] vm_mmap_pgoff+0x198/0x1f0 [ 1238.154710] ? randomize_page+0xb0/0xb0 [ 1238.155757] ksys_mmap_pgoff+0x41c/0x560 [ 1238.156850] ? find_mergeable_anon_vma+0x250/0x250 [ 1238.158175] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.159541] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1238.161002] do_syscall_64+0x33/0x40 [ 1238.161966] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1238.163377] RIP: 0033:0x7f084f4a7b62 [ 1238.164359] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1238.169336] RSP: 002b:00007f084ca1d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1238.171204] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f084f4a7b62 [ 1238.173139] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ff8000 [ 1238.175153] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1238.176935] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000280 [ 1238.178874] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:54:39 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7004) 13:54:39 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x201000000000000, 0xfffffff7000) 13:54:39 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 83) 13:54:39 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xb00000000000000, 0xfffffff7000) 13:54:39 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x0, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 1238.324912] FAULT_INJECTION: forcing a failure. [ 1238.324912] name failslab, interval 1, probability 0, space 0, times 0 [ 1238.326311] CPU: 0 PID: 7858 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1238.327220] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1238.328273] Call Trace: [ 1238.328601] dump_stack+0x107/0x167 [ 1238.329051] should_fail.cold+0x5/0xa [ 1238.329514] ? create_object.isra.0+0x3a/0xa30 [ 1238.330061] should_failslab+0x5/0x20 [ 1238.330522] kmem_cache_alloc+0x5b/0x310 [ 1238.331020] create_object.isra.0+0x3a/0xa30 [ 1238.331537] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1238.332166] kmem_cache_alloc+0x159/0x310 [ 1238.332667] vm_area_alloc+0x1c/0x110 [ 1238.333132] mmap_region+0x982/0x1500 [ 1238.333599] do_mmap+0x868/0x1370 [ 1238.334027] vm_mmap_pgoff+0x198/0x1f0 [ 1238.334513] ? randomize_page+0xb0/0xb0 [ 1238.335006] ksys_mmap_pgoff+0x41c/0x560 [ 1238.335488] ? find_mergeable_anon_vma+0x250/0x250 [ 1238.336077] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.336705] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1238.337329] do_syscall_64+0x33/0x40 [ 1238.337774] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1238.338388] RIP: 0033:0x7f084f4a7b62 [ 1238.338834] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1238.341035] RSP: 002b:00007f084ca1d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1238.341937] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f084f4a7b62 [ 1238.342797] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ff8000 13:54:39 executing program 1: r0 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x100, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) copy_file_range(r2, &(0x7f00000000c0)=0xb42, r1, &(0x7f0000000140)=0x8, 0x81, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x2000015c) sendfile(r3, r1, 0x0, 0x401) lseek(r0, 0x0, 0x4) ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, &(0x7f0000000040)) r4 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$F2FS_IOC_GET_PIN_FILE(r4, 0x8004f50e, &(0x7f0000000000)) [ 1238.343643] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1238.344615] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000280 [ 1238.345431] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:54:39 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x300000000000000, 0xfffffff7000) 13:54:39 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7005) 13:54:39 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x0, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:54:52 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3d3f, &(0x7f0000000480)={0x0, 0x0, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000280)) (fail_nth: 84) 13:54:52 executing program 7: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:54:52 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000004240)=[{{&(0x7f0000000140)=@abs, 0x6e, &(0x7f0000002640)=[{&(0x7f0000000040)}, {&(0x7f00000001c0)=""/23, 0x17}, {&(0x7f0000000200)=""/33, 0x21}, {&(0x7f0000001540)=""/199, 0xc7}, {&(0x7f0000001640)=""/4096, 0x1000}], 0x5, &(0x7f0000000240)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{&(0x7f00000026c0), 0x6e, &(0x7f00000038c0)=[{&(0x7f0000002740)=""/4096, 0x1000}, {&(0x7f0000003740)=""/72, 0x48}, {&(0x7f00000037c0)=""/226, 0xe2}], 0x3, &(0x7f0000003900)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x48}}, {{&(0x7f0000003980)=@abs, 0x6e, &(0x7f0000003ac0)=[{&(0x7f0000003a00)=""/175, 0xaf}], 0x1}}, {{&(0x7f0000003b00)=@abs, 0x6e, &(0x7f0000003c40)=[{&(0x7f0000003b80)=""/175, 0xaf}], 0x1, &(0x7f0000003c80)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xf8}}, {{&(0x7f0000003d80)=@abs, 0x6e, &(0x7f0000004000)=[{&(0x7f0000003e00)=""/7, 0x7}, {&(0x7f0000003e40)=""/240, 0xf0}, {&(0x7f0000003f40)=""/164, 0xa4}], 0x3, &(0x7f0000004040)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x48}}, {{&(0x7f00000040c0), 0x6e, &(0x7f0000004180)=[{&(0x7f0000004140)=""/14, 0xe}], 0x1, &(0x7f00000041c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x78}}], 0x6, 0x2000, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000080)={&(0x7f00000002c0)={0x1244, 0x3e, 0x500, 0x70bd25, 0x25dfdbfd, {0x3}, [@nested={0x1226, 0x67, 0x0, 0x1, [@typed={0xc, 0x5a, 0x0, 0x0, @u64=0x7}, @generic="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", @generic="74fc7c873b81eb055b5361fb8cf28cfdbf64b9c7dc85e568dd02abb2ec1a19450fad1cde7b24f149212ae87a07eba8bc26d66d663f65944dd6798788d937e637b05968b3da92010897e713296837e699036eb24bd53bab19231cc3168ae23ce026bef608a6ec19dd9d207cac01be3be75d88b5367b71d8ee693fe9", @generic="232f3b00666c4c51b94ad8368d74b19c03586d7c77c35a0490028e1cce61f40f1e1ead71f53e5afac9ce2c66a6315fcf5f43518a11cbb59c3ffc7dac6444da8ac90755d45631d755b1cf943b22a20eda052b013c1fdf9e4d5fef555725fd835e007c26b796fa2a3b7a3087560401b6bf6869ef1fb3b70a19d675a3dfa0be01d1724d2c1668dd3dc68155029f23c421151d063b09640d2a0936759f91b5c19d5a43083d5e768ef75601fb72c8365173b04219577d678b74fa225f1554175f7b7dd98b2b077ab98b2b932017277e84fad1a935e19a0f70225e0170aa9c7ebc353744f9", @typed={0x8, 0x62, 0x0, 0x0, @fd=r0}, @typed={0x14, 0x89, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x2c}}, @generic="22d2f90face66fb5d5157f4b10bd6df746b0a195ed9ccee4dc60f11e1e48a735327945d0cbb4a41ccf66789dcf120927dd55504880ea839f985faed404ad6f99306062e845dc33c166516c20358935db6308b2ade5fa9e63d7b6331329786137962fefe64d8f99e471ff8ab564f5871880422854f036a5172e21d21739291f261ff3043ca9582d1393e9877d65d7d6656c0dfe7f9c", @typed={0x5, 0x2d, 0x0, 0x0, @str='\x00'}]}, @typed={0x8, 0x56, 0x0, 0x0, @u32=0x80}]}, 0x1244}, 0x1, 0x0, 0x0, 0x4000}, 0x2000c881) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) lseek(r0, 0x0, 0x4) 13:54:52 executing program 0: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) semget(0x0, 0x3, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x2, 0x0]) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) 13:54:52 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xd00000000000000, 0xfffffff7000) 13:54:52 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x400000000000000, 0xfffffff7000) 13:54:52 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7008) 13:54:52 executing program 4: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext, 0x0, 0x3, 0x0, 0x3, 0x0, 0xfffffffe, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) semop(0x0, &(0x7f0000000040), 0x0) r0 = semget$private(0x0, 0x0, 0x0) r1 = semget(0x0, 0x3, 0x707) semctl$IPC_RMID(r0, 0x0, 0xb) semctl$SETALL(r0, 0x0, 0x11, 0x0) semop(0x0, &(0x7f0000000000)=[{}], 0x1) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000002c0)=""/207) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(0x0, 0x0, 0x0, &(0x7f0000000180)) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x4a41}, {0x0, 0x2, 0x400}, {0x2, 0x400, 0xc00}], 0x3, &(0x7f0000000200)) semtimedop(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) semop(r1, &(0x7f0000000080)=[{0x2, 0x80}], 0x1) semctl$IPC_RMID(0x0, 0x0, 0x0) semctl$SEM_STAT_ANY(0x0, 0x2, 0x14, &(0x7f0000001400)=""/4108) unshare(0x48020200) [ 1251.284096] FAULT_INJECTION: forcing a failure. [ 1251.284096] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1251.287168] CPU: 0 PID: 7894 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1251.288929] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1251.291075] Call Trace: [ 1251.291720] dump_stack+0x107/0x167 [ 1251.292552] should_fail.cold+0x5/0xa [ 1251.293432] __alloc_pages_nodemask+0x182/0x600 [ 1251.294509] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 1251.295899] ? walk_mem_res+0x170/0x170 [ 1251.296818] alloc_pages_current+0x187/0x280 [ 1251.297831] pte_alloc_one+0x16/0x1a0 [ 1251.298709] __pte_alloc+0x1d/0x330 [ 1251.299554] remap_pfn_range_internal+0x9a3/0xf60 [ 1251.300670] ? lookup_memtype+0x5b/0x200 [ 1251.301619] ? apply_to_existing_page_range+0x40/0x40 [ 1251.302826] remap_pfn_range+0xcd/0x160 [ 1251.303733] ? remap_pfn_range_notrack+0x70/0x70 [ 1251.304823] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1251.306002] io_uring_mmap+0x398/0x530 [ 1251.306904] mmap_file+0x5e/0xe0 [ 1251.307678] mmap_region+0xc4d/0x1500 [ 1251.308576] do_mmap+0x868/0x1370 [ 1251.309388] vm_mmap_pgoff+0x198/0x1f0 [ 1251.310285] ? randomize_page+0xb0/0xb0 [ 1251.311234] ksys_mmap_pgoff+0x41c/0x560 [ 1251.312162] ? find_mergeable_anon_vma+0x250/0x250 [ 1251.313280] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1251.314485] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1251.315674] do_syscall_64+0x33/0x40 [ 1251.316516] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1251.317661] RIP: 0033:0x7f084f4a7b62 [ 1251.318503] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1251.322635] RSP: 002b:00007f084ca1d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1251.324341] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f084f4a7b62 [ 1251.325947] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ff8000 [ 1251.327562] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1251.329183] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000280 [ 1251.330826] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 13:54:52 executing program 5: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x500000000000000, 0xfffffff7000) 13:54:52 executing program 2: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x20, 0x0, 0xfffffff7009) 13:54:52 executing program 3: r0 = creat(&(0x7f0000000300)='./file1\x00', 0x0) write$P9_RREADDIR(r0, &(0x7f0000000040)={0xb}, 0xb) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x5}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) fallocate(r0, 0x20, 0xe00000000000000, 0xfffffff7000) [ 1251.352625] ------------[ cut here ]------------ [ 1251.353921] WARNING: CPU: 0 PID: 7894 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270 [ 1251.355993] Modules linked in: [ 1251.356759] CPU: 0 PID: 7894 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1251.358316] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1251.360222] RIP: 0010:get_pat_info+0x216/0x270 [ 1251.361291] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 51 89 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 3a 89 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 15 ad 5a 00 e9 [ 1251.365487] RSP: 0018:ffff8880438e7890 EFLAGS: 00010216 [ 1251.366760] RAX: 000000000001ef91 RBX: ffff88800d438b00 RCX: ffffc90009c6d000 [ 1251.368408] RDX: 0000000000040000 RSI: ffffffff81125456 RDI: 0000000000000007 [ 1251.371821] RBP: ffff8880438e7948 R08: 0000000000000000 R09: ffff8880438e7818 [ 1251.375982] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028 [ 1251.379011] R13: 1ffff1100871cf12 R14: 0000000000000000 R15: ffff88800d438b50 [ 1251.380670] FS: 00007f084ca1d700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 1251.382538] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1251.383895] CR2: 00007fe4a8bff260 CR3: 0000000015ab0000 CR4: 0000000000350ef0 [ 1251.385536] Call Trace: [ 1251.386199] ? pgprot_writethrough+0xc0/0xc0 [ 1251.387246] ? finish_task_switch+0x1a4/0x5d0 [ 1251.388332] untrack_pfn+0xdc/0x240 [ 1251.389412] ? track_pfn_insert+0x150/0x150 [ 1251.390548] ? lock_downgrade+0x6d0/0x6d0 [ 1251.391658] ? uprobe_munmap+0x1c/0x560 [ 1251.392633] unmap_single_vma+0x1bc/0x300 [ 1251.393626] zap_page_range_single+0x2ce/0x450 [ 1251.394711] ? unmap_single_vma+0x300/0x300 [ 1251.395738] ? remap_pfn_range_internal+0xc56/0xf60 [ 1251.396936] ? lookup_memtype+0x5b/0x200 [ 1251.397934] ? apply_to_existing_page_range+0x40/0x40 [ 1251.399372] remap_pfn_range+0x139/0x160 [ 1251.400358] ? remap_pfn_range_notrack+0x70/0x70 [ 1251.401481] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1251.402729] io_uring_mmap+0x398/0x530 [ 1251.403675] mmap_file+0x5e/0xe0 [ 1251.404500] mmap_region+0xc4d/0x1500 [ 1251.405454] do_mmap+0x868/0x1370 [ 1251.406316] vm_mmap_pgoff+0x198/0x1f0 [ 1251.407276] ? randomize_page+0xb0/0xb0 [ 1251.408267] ksys_mmap_pgoff+0x41c/0x560 [ 1251.409245] ? find_mergeable_anon_vma+0x250/0x250 [ 1251.410413] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1251.411673] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1251.412904] do_syscall_64+0x33/0x40 [ 1251.415060] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1251.416431] RIP: 0033:0x7f084f4a7b62 [ 1251.417336] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1251.421581] RSP: 002b:00007f084ca1d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1251.423360] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f084f4a7b62 [ 1251.425023] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ff8000 [ 1251.426690] RBP: 0000000020ff8000 R08: 0000000000000005 R09: 0000000000000000 [ 1251.428340] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000280 [ 1251.430001] R13: 0000000020ff6000 R14: 0000000020000040 R15: 0000000020ff8000 [ 1251.431727] irq event stamp: 1981 [ 1251.432571] hardirqs last enabled at (1991): [] console_unlock+0x92d/0xb40 [ 1251.434577] hardirqs last disabled at (2000): [] console_unlock+0x839/0xb40 [ 1251.436568] softirqs last enabled at (1888): [] asm_call_irq_on_stack+0x12/0x20 [ 1251.438668] softirqs last disabled at (1811): [] asm_call_irq_on_stack+0x12/0x20 [ 1251.440733] ---[ end trace 913441bba688a623 ]--- VM DIAGNOSIS: 13:54:52 Registers: info registers vcpu 0 RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822e8db1 RDI=ffffffff879fa240 RBP=ffffffff879fa200 RSP=ffff8880438e72a8 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=0000000000000030 R13=0000000000000030 R14=ffffffff879fa200 R15=dffffc0000000000 RIP=ffffffff822e8e08 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f084ca1d700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe4a8bff260 CR3=0000000015ab0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000ff0000 XMM01=6a6e695f31313230385f7a7973006273 XMM02=000000000000000000ffffffff000000 XMM03=00007f084f58e7c800007f084f58e7c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffffc9000780b000 RBX=0000000000006364 RCX=ffff888043bb0000 RDX=ffffc9000785a000 RSI=ffffffff8129e030 RDI=ffffc9000765a000 RBP=ffff88800c2b5d00 RSP=ffff88804408fec8 R8 =0000000000000001 R9 =0000000000040000 R10=0000000000000002 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=ffff88800c2b5d08 R15=0000000000000293 RIP=ffffffff8140e2ff RFL=00000087 [--S--PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f518c5d7700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb3652c7542 CR3=00000000475c2000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f518f1487c000007f518f1487c8 XMM02=00007f518f1487e000007f518f1487c0 XMM03=00007f518f1487c800007f518f1487c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000