ogram 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x40000, 0x0) dup2(r1, r0) 05:53:48 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:53:48 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4005, 0x100000e, 0x13, r0, 0x0) 05:53:48 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1772.651416] dump_stack+0x107/0x167 [ 1772.652535] should_fail.cold+0x5/0xa [ 1772.653503] ? security_prepare_creds+0x112/0x190 [ 1772.654756] should_failslab+0x5/0x20 [ 1772.655719] __kmalloc+0x72/0x390 [ 1772.656611] security_prepare_creds+0x112/0x190 [ 1772.657797] prepare_creds+0x452/0x5e0 [ 1772.658794] copy_creds+0x72/0x580 [ 1772.659696] copy_process+0xfef/0x78b0 [ 1772.660704] ? __lock_acquire+0xbb1/0x5b00 [ 1772.661795] ? lock_downgrade+0x6d0/0x6d0 [ 1772.662859] ? __cleanup_sighand+0xb0/0xb0 [ 1772.663942] ? lock_acquire+0x197/0x470 [ 1772.664964] ? find_held_lock+0x2c/0x110 [ 1772.665997] kernel_clone+0xe7/0x980 [ 1772.666954] ? lock_downgrade+0x6d0/0x6d0 [ 1772.667998] ? find_held_lock+0x2c/0x110 [ 1772.669023] ? create_io_thread+0xf0/0xf0 [ 1772.670069] ? ksys_write+0x12d/0x260 [ 1772.670994] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1772.671983] __do_sys_fork+0x8a/0xc0 [ 1772.672746] ? kernel_thread+0xf0/0xf0 [ 1772.673552] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1772.674627] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1772.675669] ? trace_hardirqs_on+0x5b/0x180 [ 1772.676554] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1772.677607] do_syscall_64+0x33/0x40 05:53:49 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1772.678369] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1772.679578] RIP: 0033:0x7f22e1959b19 [ 1772.680331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1772.684070] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1772.685606] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1772.687065] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1772.688533] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 05:53:49 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1772.688544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1772.688555] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 1772.706181] FAULT_INJECTION: forcing a failure. [ 1772.706181] name failslab, interval 1, probability 0, space 0, times 0 [ 1772.706202] CPU: 0 PID: 9476 Comm: syz-executor.1 Not tainted 5.10.254 #1 [ 1772.706211] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 05:53:49 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:53:49 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4006, 0x100000e, 0x13, r0, 0x0) [ 1772.706217] Call Trace: [ 1772.706242] dump_stack+0x107/0x167 05:53:49 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1772.706264] should_fail.cold+0x5/0xa [ 1772.706285] ? create_object.isra.0+0x3a/0xa30 [ 1772.706302] should_failslab+0x5/0x20 [ 1772.706321] kmem_cache_alloc+0x5b/0x310 [ 1772.706345] create_object.isra.0+0x3a/0xa30 [ 1772.706360] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1772.706384] kmem_cache_alloc+0x159/0x310 [ 1772.706408] vm_area_alloc+0x1c/0x110 [ 1772.706425] mmap_region+0x982/0x1500 [ 1772.706456] do_mmap+0x868/0x1370 [ 1772.706483] vm_mmap_pgoff+0x198/0x1f0 05:53:49 executing program 4: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x40, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x43973fe2860aa99c}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x2000000200000000, 0xffffffffffffffff, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r0, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x89801) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) 05:53:49 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:53:49 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) (fail_nth: 7) [ 1772.706505] ? randomize_page+0xb0/0xb0 [ 1772.706556] ksys_mmap_pgoff+0x41c/0x560 [ 1772.706576] ? find_mergeable_anon_vma+0x250/0x250 [ 1772.706600] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1772.706620] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1772.706642] do_syscall_64+0x33/0x40 [ 1772.706661] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1772.706672] RIP: 0033:0x7f45fbb8ab19 05:53:49 executing program 2: fork() (fail_nth: 7) 05:53:49 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1772.706688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1772.706697] RSP: 002b:00007f45f9100188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1772.706717] RAX: ffffffffffffffda RBX: 00007f45fbc9df60 RCX: 00007f45fbb8ab19 [ 1772.706727] RDX: 000000000000000f RSI: 0000000000001000 RDI: 0000000020ffb000 [ 1772.706737] RBP: 00007f45f91001d0 R08: 0000000000000003 R09: 0000000008000000 05:53:49 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1772.706746] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001 [ 1772.706756] R13: 00007ffee7e80baf R14: 00007f45f9100300 R15: 0000000000022000 [ 1772.920134] FAULT_INJECTION: forcing a failure. [ 1772.920134] name failslab, interval 1, probability 0, space 0, times 0 [ 1772.920155] CPU: 1 PID: 9496 Comm: syz-executor.1 Not tainted 5.10.254 #1 [ 1772.920164] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1772.920170] Call Trace: [ 1772.920196] dump_stack+0x107/0x167 [ 1772.920218] should_fail.cold+0x5/0xa [ 1772.920239] ? perf_event_mmap+0x51a/0xd90 [ 1772.920256] should_failslab+0x5/0x20 [ 1772.920276] kmem_cache_alloc_trace+0x55/0x320 [ 1772.920300] perf_event_mmap+0x51a/0xd90 [ 1772.920324] ? perf_event_namespaces+0x50/0x50 [ 1772.920356] ? vma_link+0x619/0x820 [ 1772.920381] mmap_region+0x3a6/0x1500 [ 1772.920413] do_mmap+0x868/0x1370 [ 1772.920440] vm_mmap_pgoff+0x198/0x1f0 [ 1772.920462] ? randomize_page+0xb0/0xb0 [ 1772.920502] ksys_mmap_pgoff+0x41c/0x560 [ 1772.920522] ? find_mergeable_anon_vma+0x250/0x250 [ 1772.920546] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1772.920567] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1772.920593] do_syscall_64+0x33/0x40 [ 1772.920612] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1772.920624] RIP: 0033:0x7f45fbb8ab19 [ 1772.920640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1772.920650] RSP: 002b:00007f45f9100188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1772.920669] RAX: ffffffffffffffda RBX: 00007f45fbc9df60 RCX: 00007f45fbb8ab19 [ 1772.920679] RDX: 000000000000000f RSI: 0000000000001000 RDI: 0000000020ffb000 [ 1772.920689] RBP: 00007f45f91001d0 R08: 0000000000000003 R09: 0000000008000000 [ 1772.920699] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001 [ 1772.920708] R13: 00007ffee7e80baf R14: 00007f45f9100300 R15: 0000000000022000 [ 1772.967098] FAULT_INJECTION: forcing a failure. [ 1772.967098] name failslab, interval 1, probability 0, space 0, times 0 [ 1772.967117] CPU: 1 PID: 9500 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1772.967125] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1772.967131] Call Trace: [ 1772.967151] dump_stack+0x107/0x167 [ 1772.967171] should_fail.cold+0x5/0xa [ 1772.967191] ? create_object.isra.0+0x3a/0xa30 [ 1772.967206] should_failslab+0x5/0x20 [ 1772.967224] kmem_cache_alloc+0x5b/0x310 [ 1772.967247] create_object.isra.0+0x3a/0xa30 [ 1772.967263] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1772.967285] __kmalloc+0x16e/0x390 [ 1772.967309] security_prepare_creds+0x112/0x190 [ 1772.967331] prepare_creds+0x452/0x5e0 [ 1772.967350] copy_creds+0x72/0x580 [ 1772.967371] copy_process+0xfef/0x78b0 [ 1772.967394] ? __lock_acquire+0xbb1/0x5b00 [ 1772.967423] ? lock_downgrade+0x6d0/0x6d0 [ 1772.967447] ? __cleanup_sighand+0xb0/0xb0 [ 1772.967483] ? lock_acquire+0x197/0x470 [ 1772.967507] ? find_held_lock+0x2c/0x110 [ 1772.967529] kernel_clone+0xe7/0x980 [ 1772.967547] ? lock_downgrade+0x6d0/0x6d0 [ 1772.967562] ? find_held_lock+0x2c/0x110 [ 1772.967579] ? create_io_thread+0xf0/0xf0 [ 1772.967597] ? ksys_write+0x12d/0x260 [ 1772.967620] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1772.967645] __do_sys_fork+0x8a/0xc0 [ 1772.967662] ? kernel_thread+0xf0/0xf0 [ 1772.967694] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1772.967713] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1772.967728] ? trace_hardirqs_on+0x5b/0x180 [ 1772.967748] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1772.967764] do_syscall_64+0x33/0x40 [ 1772.967783] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1772.967794] RIP: 0033:0x7f22e1959b19 [ 1772.967809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1772.967818] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1772.967837] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1772.967846] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1772.967856] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1772.967865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1772.967875] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:54:04 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x40000, 0x0) dup2(r1, r0) 05:54:04 executing program 2: fork() (fail_nth: 8) 05:54:04 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) (fail_nth: 8) 05:54:04 executing program 4: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x40, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x43973fe2860aa99c}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x2000000200000000, 0xffffffffffffffff, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r0, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x89801) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) 05:54:04 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4007, 0x100000e, 0x13, r0, 0x0) [ 1787.827337] FAULT_INJECTION: forcing a failure. [ 1787.827337] name failslab, interval 1, probability 0, space 0, times 0 [ 1787.829123] CPU: 1 PID: 9514 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1787.830094] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1787.831277] Call Trace: [ 1787.831659] dump_stack+0x107/0x167 [ 1787.832177] should_fail.cold+0x5/0xa [ 1787.832720] ? __delayacct_tsk_init+0x1b/0x80 [ 1787.833352] should_failslab+0x5/0x20 [ 1787.833891] kmem_cache_alloc+0x5b/0x310 [ 1787.834471] ? prepare_creds+0x466/0x5e0 [ 1787.835061] __delayacct_tsk_init+0x1b/0x80 [ 1787.835672] copy_process+0x3399/0x78b0 [ 1787.836237] ? __lock_acquire+0xbb1/0x5b00 [ 1787.836840] ? lock_downgrade+0x6d0/0x6d0 [ 1787.837429] ? __cleanup_sighand+0xb0/0xb0 [ 1787.838032] ? lock_acquire+0x197/0x470 [ 1787.838597] ? find_held_lock+0x2c/0x110 [ 1787.839189] kernel_clone+0xe7/0x980 [ 1787.839730] ? lock_downgrade+0x6d0/0x6d0 [ 1787.840311] ? find_held_lock+0x2c/0x110 [ 1787.840886] ? create_io_thread+0xf0/0xf0 [ 1787.841470] ? ksys_write+0x12d/0x260 [ 1787.842011] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1787.842711] __do_sys_fork+0x8a/0xc0 [ 1787.843237] ? kernel_thread+0xf0/0xf0 [ 1787.843808] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1787.844550] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1787.845279] ? trace_hardirqs_on+0x5b/0x180 [ 1787.845889] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1787.846615] do_syscall_64+0x33/0x40 [ 1787.847167] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1787.847889] RIP: 0033:0x7f22e1959b19 [ 1787.848413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1787.851033] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1787.852119] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1787.853132] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1787.854142] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1787.855165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1787.856175] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:54:04 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:54:04 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:54:04 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) [ 1787.875498] FAULT_INJECTION: forcing a failure. [ 1787.875498] name failslab, interval 1, probability 0, space 0, times 0 [ 1787.877039] CPU: 1 PID: 9515 Comm: syz-executor.1 Not tainted 5.10.254 #1 [ 1787.877998] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1787.879121] Call Trace: [ 1787.879507] dump_stack+0x107/0x167 [ 1787.880030] should_fail.cold+0x5/0xa [ 1787.880573] ? create_object.isra.0+0x3a/0xa30 [ 1787.881225] should_failslab+0x5/0x20 [ 1787.881769] kmem_cache_alloc+0x5b/0x310 [ 1787.882341] create_object.isra.0+0x3a/0xa30 [ 1787.882966] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1787.883674] kmem_cache_alloc_trace+0x151/0x320 [ 1787.884302] perf_event_mmap+0x51a/0xd90 [ 1787.884876] ? perf_event_namespaces+0x50/0x50 [ 1787.885519] ? vma_link+0x619/0x820 [ 1787.886028] mmap_region+0x3a6/0x1500 [ 1787.886566] do_mmap+0x868/0x1370 [ 1787.887078] vm_mmap_pgoff+0x198/0x1f0 [ 1787.887628] ? randomize_page+0xb0/0xb0 [ 1787.888188] ksys_mmap_pgoff+0x41c/0x560 [ 1787.888756] ? find_mergeable_anon_vma+0x250/0x250 [ 1787.889438] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1787.890163] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1787.890888] do_syscall_64+0x33/0x40 [ 1787.891405] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1787.892117] RIP: 0033:0x7f45fbb8ab19 [ 1787.892640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1787.895196] RSP: 002b:00007f45f9100188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1787.896251] RAX: ffffffffffffffda RBX: 00007f45fbc9df60 RCX: 00007f45fbb8ab19 [ 1787.897217] RDX: 000000000000000f RSI: 0000000000001000 RDI: 0000000020ffb000 [ 1787.898206] RBP: 00007f45f91001d0 R08: 0000000000000003 R09: 0000000008000000 [ 1787.899170] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001 [ 1787.900173] R13: 00007ffee7e80baf R14: 00007f45f9100300 R15: 0000000000022000 05:54:04 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:54:04 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) (fail_nth: 9) 05:54:04 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x40000, 0x0) dup2(r1, r0) [ 1788.022463] FAULT_INJECTION: forcing a failure. [ 1788.022463] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1788.024091] CPU: 1 PID: 9533 Comm: syz-executor.1 Not tainted 5.10.254 #1 [ 1788.024949] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1788.025987] Call Trace: [ 1788.026326] dump_stack+0x107/0x167 [ 1788.026793] should_fail.cold+0x5/0xa [ 1788.027277] _copy_to_user+0x2e/0x180 [ 1788.027764] simple_read_from_buffer+0xcc/0x160 [ 1788.028350] proc_fail_nth_read+0x198/0x230 [ 1788.028890] ? proc_sessionid_read+0x230/0x230 [ 1788.029462] ? security_file_permission+0xb1/0xe0 [ 1788.030072] ? proc_sessionid_read+0x230/0x230 [ 1788.030642] vfs_read+0x228/0x620 [ 1788.031084] ksys_read+0x12d/0x260 [ 1788.031526] ? vfs_write+0xb10/0xb10 [ 1788.031998] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1788.032655] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1788.033300] do_syscall_64+0x33/0x40 [ 1788.033773] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1788.034413] RIP: 0033:0x7f45fbb3d69c [ 1788.034887] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1788.037183] RSP: 002b:00007f45f9100170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1788.038132] RAX: ffffffffffffffda RBX: 0000000020ffb000 RCX: 00007f45fbb3d69c [ 1788.039036] RDX: 000000000000000f RSI: 00007f45f91001e0 RDI: 0000000000000005 [ 1788.039923] RBP: 00007f45f91001d0 R08: 0000000000000000 R09: 0000000008000000 [ 1788.040814] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001 [ 1788.041703] R13: 00007ffee7e80baf R14: 00007f45f9100300 R15: 0000000000022000 05:54:17 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 05:54:17 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:54:17 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x40000, 0x0) dup2(r1, r0) 05:54:17 executing program 2: fork() (fail_nth: 9) 05:54:17 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:54:17 executing program 4: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x40, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x43973fe2860aa99c}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x2000000200000000, 0xffffffffffffffff, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r0, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x89801) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) 05:54:17 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:54:17 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x200000, 0x100000e, 0x13, r0, 0x0) [ 1801.138027] FAULT_INJECTION: forcing a failure. [ 1801.138027] name failslab, interval 1, probability 0, space 0, times 0 [ 1801.141223] CPU: 1 PID: 9554 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1801.143084] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1801.145326] Call Trace: [ 1801.146042] dump_stack+0x107/0x167 [ 1801.147054] should_fail.cold+0x5/0xa [ 1801.148100] ? create_object.isra.0+0x3a/0xa30 [ 1801.149349] should_failslab+0x5/0x20 [ 1801.150401] kmem_cache_alloc+0x5b/0x310 [ 1801.151530] create_object.isra.0+0x3a/0xa30 [ 1801.152735] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1801.154122] kmem_cache_alloc+0x159/0x310 [ 1801.155273] ? prepare_creds+0x466/0x5e0 [ 1801.156387] __delayacct_tsk_init+0x1b/0x80 [ 1801.157551] copy_process+0x3399/0x78b0 [ 1801.158640] ? __lock_acquire+0xbb1/0x5b00 [ 1801.159819] ? lock_downgrade+0x6d0/0x6d0 [ 1801.160954] ? __cleanup_sighand+0xb0/0xb0 [ 1801.162126] ? lock_acquire+0x197/0x470 [ 1801.163230] ? find_held_lock+0x2c/0x110 [ 1801.164161] kernel_clone+0xe7/0x980 [ 1801.165172] ? lock_downgrade+0x6d0/0x6d0 [ 1801.166200] ? find_held_lock+0x2c/0x110 [ 1801.167312] ? create_io_thread+0xf0/0xf0 [ 1801.168434] ? ksys_write+0x12d/0x260 [ 1801.169488] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1801.170825] __do_sys_fork+0x8a/0xc0 [ 1801.171845] ? kernel_thread+0xf0/0xf0 [ 1801.172927] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1801.174360] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1801.175582] ? trace_hardirqs_on+0x5b/0x180 [ 1801.176754] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1801.177948] do_syscall_64+0x33/0x40 [ 1801.178963] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1801.180130] RIP: 0033:0x7f22e1959b19 [ 1801.181129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1801.185475] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1801.187236] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1801.188900] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1801.190579] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1801.192224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1801.193878] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:54:17 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:54:17 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x7fffdf003000, 0x100000e, 0x13, r0, 0x0) 05:54:17 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x40000, 0x0) dup2(r1, r0) 05:54:17 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:54:17 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:54:17 executing program 4: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x40, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x43973fe2860aa99c}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x2000000200000000, 0xffffffffffffffff, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r0, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x89801) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) 05:54:17 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1002, 0xf, 0x13, r0, 0x8000000) 05:54:17 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x40000, 0x0) dup2(r1, r0) 05:54:17 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) [ 1814.974325] FAULT_INJECTION: forcing a failure. [ 1814.974325] name failslab, interval 1, probability 0, space 0, times 0 [ 1814.976764] CPU: 1 PID: 9586 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1814.978202] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1814.979964] Call Trace: [ 1814.980531] dump_stack+0x107/0x167 [ 1814.981299] should_fail.cold+0x5/0xa [ 1814.982103] ? dup_fd+0x89/0xe40 [ 1814.982822] should_failslab+0x5/0x20 [ 1814.983632] kmem_cache_alloc+0x5b/0x310 [ 1814.984500] dup_fd+0x89/0xe40 [ 1814.985179] ? audit_filter_inodes+0x40/0x40 [ 1814.986114] ? security_task_alloc+0xe6/0x260 [ 1814.987075] copy_process+0x197c/0x78b0 [ 1814.987926] ? __lock_acquire+0xbb1/0x5b00 [ 1814.988831] ? __cleanup_sighand+0xb0/0xb0 [ 1814.989732] ? lock_acquire+0x197/0x470 [ 1814.990590] ? find_held_lock+0x2c/0x110 [ 1814.991447] kernel_clone+0xe7/0x980 [ 1814.992222] ? lock_downgrade+0x6d0/0x6d0 [ 1814.993088] ? find_held_lock+0x2c/0x110 [ 1814.993929] ? create_io_thread+0xf0/0xf0 [ 1814.994789] ? ksys_write+0x12d/0x260 [ 1814.995621] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1814.996629] __do_sys_fork+0x8a/0xc0 [ 1814.997401] ? kernel_thread+0xf0/0xf0 [ 1814.998223] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1814.999336] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1815.000417] ? trace_hardirqs_on+0x5b/0x180 [ 1815.001313] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1815.002389] do_syscall_64+0x33/0x40 [ 1815.003181] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1815.004242] RIP: 0033:0x7f22e1959b19 [ 1815.005003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.008809] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1815.010377] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1815.011867] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1815.013342] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1815.014810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1815.016292] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:54:31 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:54:31 executing program 2: fork() (fail_nth: 10) 05:54:31 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1003, 0xf, 0x13, r0, 0x8000000) 05:54:31 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x7ffffffff000, 0x100000e, 0x13, r0, 0x0) 05:54:31 executing program 4: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x40, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x43973fe2860aa99c}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x2000000200000000, 0xffffffffffffffff, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r0, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x89801) 05:54:31 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:54:31 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:54:31 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, 0x0, 0x40000, 0x0) dup2(r1, r0) 05:54:31 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, 0x0, 0x40000, 0x0) dup2(r1, r0) 05:54:31 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:54:31 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:54:31 executing program 4: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x40, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x43973fe2860aa99c}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x2000000200000000, 0xffffffffffffffff, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r0, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) 05:54:31 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1004, 0xf, 0x13, r0, 0x8000000) 05:54:31 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:54:31 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, 0x0, 0x40000, 0x0) dup2(r1, r0) 05:54:31 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x13, r0, 0x0) 05:54:31 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:54:31 executing program 2: fork() (fail_nth: 11) 05:54:31 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1005, 0xf, 0x13, r0, 0x8000000) 05:54:31 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) [ 1815.329459] FAULT_INJECTION: forcing a failure. [ 1815.329459] name failslab, interval 1, probability 0, space 0, times 0 [ 1815.332025] CPU: 0 PID: 9628 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1815.333468] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1815.335233] Call Trace: [ 1815.335794] dump_stack+0x107/0x167 [ 1815.336563] should_fail.cold+0x5/0xa [ 1815.337376] ? create_object.isra.0+0x3a/0xa30 [ 1815.338344] should_failslab+0x5/0x20 [ 1815.339179] kmem_cache_alloc+0x5b/0x310 [ 1815.340041] create_object.isra.0+0x3a/0xa30 [ 1815.340963] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1815.342035] kmem_cache_alloc+0x159/0x310 [ 1815.342925] dup_fd+0x89/0xe40 [ 1815.343612] ? audit_filter_inodes+0x40/0x40 [ 1815.344543] ? security_task_alloc+0xe6/0x260 [ 1815.345492] copy_process+0x197c/0x78b0 [ 1815.346336] ? __lock_acquire+0xbb1/0x5b00 [ 1815.347255] ? __cleanup_sighand+0xb0/0xb0 [ 1815.348155] ? lock_acquire+0x197/0x470 [ 1815.348998] ? find_held_lock+0x2c/0x110 [ 1815.349857] kernel_clone+0xe7/0x980 [ 1815.350643] ? lock_downgrade+0x6d0/0x6d0 [ 1815.351525] ? find_held_lock+0x2c/0x110 [ 1815.352380] ? create_io_thread+0xf0/0xf0 [ 1815.353261] ? ksys_write+0x12d/0x260 [ 1815.354079] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1815.355118] __do_sys_fork+0x8a/0xc0 [ 1815.355910] ? kernel_thread+0xf0/0xf0 [ 1815.356743] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1815.357859] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1815.359087] ? trace_hardirqs_on+0x5b/0x180 [ 1815.360166] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1815.361449] do_syscall_64+0x33/0x40 [ 1815.362376] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1815.363671] RIP: 0033:0x7f22e1959b19 [ 1815.364600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.369231] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1815.371146] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1815.372925] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1815.374698] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1815.376500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1815.378276] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:54:43 executing program 4: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x40, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x43973fe2860aa99c}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x2000000200000000, 0xffffffffffffffff, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) 05:54:43 executing program 2: fork() (fail_nth: 12) 05:54:43 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1006, 0xf, 0x13, r0, 0x8000000) 05:54:43 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) 05:54:43 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 1) [ 1827.462034] FAULT_INJECTION: forcing a failure. [ 1827.462034] name failslab, interval 1, probability 0, space 0, times 0 [ 1827.463802] CPU: 0 PID: 9642 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1827.464728] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1827.465912] Call Trace: [ 1827.466303] dump_stack+0x107/0x167 [ 1827.466836] should_fail.cold+0x5/0xa [ 1827.467343] ? alloc_fdtable+0x9e/0x2c0 [ 1827.467792] should_failslab+0x5/0x20 [ 1827.468219] kmem_cache_alloc_trace+0x55/0x320 [ 1827.468731] ? rwlock_bug.part.0+0x90/0x90 [ 1827.469206] alloc_fdtable+0x9e/0x2c0 [ 1827.469635] dup_fd+0x92d/0xe40 [ 1827.470023] copy_process+0x197c/0x78b0 [ 1827.470476] ? __lock_acquire+0xbb1/0x5b00 [ 1827.470962] ? __cleanup_sighand+0xb0/0xb0 [ 1827.471449] ? lock_acquire+0x197/0x470 [ 1827.471898] ? find_held_lock+0x2c/0x110 [ 1827.472359] kernel_clone+0xe7/0x980 [ 1827.472778] ? lock_downgrade+0x6d0/0x6d0 [ 1827.473245] ? find_held_lock+0x2c/0x110 [ 1827.473704] ? create_io_thread+0xf0/0xf0 [ 1827.474171] ? ksys_write+0x12d/0x260 [ 1827.474193] FAULT_INJECTION: forcing a failure. [ 1827.474193] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1827.474602] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1827.474616] __do_sys_fork+0x8a/0xc0 [ 1827.474625] ? kernel_thread+0xf0/0xf0 [ 1827.474643] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1827.474663] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1827.480067] ? trace_hardirqs_on+0x5b/0x180 [ 1827.480552] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1827.481126] do_syscall_64+0x33/0x40 [ 1827.481548] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1827.482125] RIP: 0033:0x7f22e1959b19 [ 1827.482544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1827.484610] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1827.485469] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1827.486267] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1827.487065] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1827.487870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1827.488669] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 1827.489497] CPU: 1 PID: 9648 Comm: syz-executor.7 Not tainted 5.10.254 #1 [ 1827.491242] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1827.493335] Call Trace: [ 1827.493998] dump_stack+0x107/0x167 [ 1827.494915] should_fail.cold+0x5/0xa [ 1827.495896] _copy_from_user+0x2e/0x1b0 [ 1827.496901] perf_copy_attr+0x11a/0x8a0 [ 1827.497908] __do_sys_perf_event_open+0xb9/0x2e60 [ 1827.499140] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1827.500353] ? perf_event_set_output+0x5b0/0x5b0 [ 1827.501537] ? wait_for_completion_io+0x270/0x270 [ 1827.502775] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1827.504098] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1827.505396] do_syscall_64+0x33/0x40 [ 1827.506336] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1827.507633] RIP: 0033:0x7f6a5fc12b19 [ 1827.508563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1827.513216] RSP: 002b:00007f6a5d188188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1827.515148] RAX: ffffffffffffffda RBX: 00007f6a5fd25f60 RCX: 00007f6a5fc12b19 [ 1827.516867] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1827.518486] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1827.520100] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1827.521708] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 05:54:43 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x2) 05:54:43 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:54:43 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:54:56 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:54:56 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 2) 05:54:56 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:54:56 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1007, 0xf, 0x13, r0, 0x8000000) 05:54:56 executing program 2: fork() (fail_nth: 13) 05:54:56 executing program 4: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x40, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x43973fe2860aa99c}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x2000000200000000, 0xffffffffffffffff, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, 0xffffffffffffffff, 0x0) 05:54:56 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(0xffffffffffffffff, r0) 05:54:56 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x3) [ 1839.960615] FAULT_INJECTION: forcing a failure. [ 1839.960615] name failslab, interval 1, probability 0, space 0, times 0 [ 1839.963157] CPU: 0 PID: 9666 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1839.964726] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1839.966605] Call Trace: [ 1839.967201] dump_stack+0x107/0x167 [ 1839.968041] should_fail.cold+0x5/0xa [ 1839.968904] ? create_object.isra.0+0x3a/0xa30 [ 1839.969936] should_failslab+0x5/0x20 [ 1839.970796] kmem_cache_alloc+0x5b/0x310 [ 1839.971725] create_object.isra.0+0x3a/0xa30 [ 1839.972713] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1839.973870] kmem_cache_alloc_trace+0x151/0x320 [ 1839.974912] ? rwlock_bug.part.0+0x90/0x90 [ 1839.975876] alloc_fdtable+0x9e/0x2c0 [ 1839.976728] dup_fd+0x92d/0xe40 [ 1839.977488] copy_process+0x197c/0x78b0 [ 1839.978390] ? __lock_acquire+0xbb1/0x5b00 [ 1839.979377] ? __cleanup_sighand+0xb0/0xb0 [ 1839.980341] ? lock_acquire+0x197/0x470 [ 1839.981243] ? find_held_lock+0x2c/0x110 [ 1839.982169] kernel_clone+0xe7/0x980 [ 1839.983001] ? lock_downgrade+0x6d0/0x6d0 [ 1839.983936] ? find_held_lock+0x2c/0x110 [ 1839.984850] ? create_io_thread+0xf0/0xf0 [ 1839.985790] ? ksys_write+0x12d/0x260 [ 1839.986655] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1839.987750] __do_sys_fork+0x8a/0xc0 [ 1839.988598] ? kernel_thread+0xf0/0xf0 [ 1839.989503] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1839.990694] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1839.991856] ? trace_hardirqs_on+0x5b/0x180 [ 1839.992828] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1839.993986] do_syscall_64+0x33/0x40 [ 1839.994818] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1839.995972] RIP: 0033:0x7f22e1959b19 [ 1839.996804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1840.000937] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1840.002639] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1840.004272] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1840.005900] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1840.007532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1840.009140] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:54:56 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80ffff00000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1840.048204] FAULT_INJECTION: forcing a failure. [ 1840.048204] name failslab, interval 1, probability 0, space 0, times 0 [ 1840.050760] CPU: 0 PID: 9664 Comm: syz-executor.7 Not tainted 5.10.254 #1 05:54:56 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1840.052320] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1840.054313] Call Trace: [ 1840.054914] dump_stack+0x107/0x167 [ 1840.055753] should_fail.cold+0x5/0xa [ 1840.056619] ? perf_event_alloc.part.0+0x5b/0x2b70 [ 1840.057738] should_failslab+0x5/0x20 [ 1840.058609] kmem_cache_alloc_trace+0x55/0x320 [ 1840.059660] perf_event_alloc.part.0+0x5b/0x2b70 [ 1840.060737] ? alloc_fd+0x2e7/0x670 [ 1840.061575] __do_sys_perf_event_open+0x579/0x2e60 [ 1840.062699] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1840.063801] ? perf_event_set_output+0x5b0/0x5b0 [ 1840.064871] ? wait_for_completion_io+0x270/0x270 [ 1840.065985] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1840.067167] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1840.068345] do_syscall_64+0x33/0x40 [ 1840.069194] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1840.070363] RIP: 0033:0x7f6a5fc12b19 [ 1840.071215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1840.075403] RSP: 002b:00007f6a5d188188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1840.077136] RAX: ffffffffffffffda RBX: 00007f6a5fd25f60 RCX: 00007f6a5fc12b19 [ 1840.078747] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1840.080365] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1840.081977] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1840.083600] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 05:54:56 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:54:56 executing program 4: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x40, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x43973fe2860aa99c}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x2000000200000000, 0xffffffffffffffff, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, 0xffffffffffffffff, 0x0) 05:54:56 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x4) 05:54:56 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x100000, 0xf, 0x13, r0, 0x8000000) 05:54:56 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(0xffffffffffffffff, r0) 05:54:56 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:54:56 executing program 4: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x40, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x43973fe2860aa99c}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x2000000200000000, 0xffffffffffffffff, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, 0xffffffffffffffff, 0x0) 05:55:10 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:55:10 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:55:10 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x5) 05:55:10 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x20ffb000, 0xf, 0x13, r0, 0x8000000) 05:55:10 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(0xffffffffffffffff, r0) 05:55:10 executing program 4: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x40, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x43973fe2860aa99c}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x2000000200000000, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) 05:55:10 executing program 2: fork() (fail_nth: 14) 05:55:10 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 3) [ 1853.888838] FAULT_INJECTION: forcing a failure. [ 1853.888838] name failslab, interval 1, probability 0, space 0, times 0 [ 1853.890427] CPU: 0 PID: 9720 Comm: syz-executor.7 Not tainted 5.10.254 #1 [ 1853.891333] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1853.892448] Call Trace: [ 1853.892810] dump_stack+0x107/0x167 [ 1853.893299] should_fail.cold+0x5/0xa [ 1853.893812] ? create_object.isra.0+0x3a/0xa30 [ 1853.894415] should_failslab+0x5/0x20 [ 1853.894916] kmem_cache_alloc+0x5b/0x310 [ 1853.895460] create_object.isra.0+0x3a/0xa30 [ 1853.896036] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1853.896713] kmem_cache_alloc_trace+0x151/0x320 [ 1853.897330] perf_event_alloc.part.0+0x5b/0x2b70 [ 1853.897969] ? alloc_fd+0x2e7/0x670 [ 1853.898432] __do_sys_perf_event_open+0x579/0x2e60 [ 1853.899096] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1853.899738] ? perf_event_set_output+0x5b0/0x5b0 [ 1853.900361] ? wait_for_completion_io+0x270/0x270 [ 1853.901016] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1853.901705] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1853.902386] do_syscall_64+0x33/0x40 [ 1853.902859] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1853.903548] RIP: 0033:0x7f6a5fc12b19 [ 1853.904038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1853.906493] RSP: 002b:00007f6a5d188188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1853.907504] RAX: ffffffffffffffda RBX: 00007f6a5fd25f60 RCX: 00007f6a5fc12b19 [ 1853.908456] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1853.909393] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1853.910348] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1853.911244] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 [ 1853.912671] FAULT_INJECTION: forcing a failure. [ 1853.912671] name failslab, interval 1, probability 0, space 0, times 0 [ 1853.914139] CPU: 0 PID: 9719 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1853.915057] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1853.916205] Call Trace: [ 1853.916543] dump_stack+0x107/0x167 [ 1853.917004] should_fail.cold+0x5/0xa [ 1853.917484] ? kvmalloc_node+0x119/0x170 [ 1853.917994] should_failslab+0x5/0x20 [ 1853.918473] __kmalloc_node+0x76/0x420 [ 1853.918976] kvmalloc_node+0x119/0x170 [ 1853.919474] alloc_fdtable+0xed/0x2c0 [ 1853.919957] dup_fd+0x92d/0xe40 [ 1853.920386] copy_process+0x197c/0x78b0 [ 1853.920922] ? __lock_acquire+0x1657/0x5b00 [ 1853.921482] ? __cleanup_sighand+0xb0/0xb0 [ 1853.922009] ? lock_acquire+0x197/0x470 [ 1853.922536] ? __hrtimer_run_queues+0x230/0xa00 [ 1853.923123] ? find_held_lock+0x2c/0x110 [ 1853.923645] kernel_clone+0xe7/0x980 [ 1853.924112] ? create_io_thread+0xf0/0xf0 [ 1853.924637] ? recalibrate_cpu_khz+0x10/0x10 [ 1853.925184] ? ktime_get+0x158/0x1f0 [ 1853.925653] ? setup_APIC_eilvt+0x2f0/0x2f0 [ 1853.926193] ? clockevents_program_event+0x131/0x360 [ 1853.926843] __do_sys_fork+0x8a/0xc0 [ 1853.927306] ? kernel_thread+0xf0/0xf0 [ 1853.927810] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1853.928464] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1853.929144] ? trace_hardirqs_on+0x5b/0x180 [ 1853.929688] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1853.930374] do_syscall_64+0x33/0x40 [ 1853.930848] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1853.931539] RIP: 0033:0x7f22e1959b19 [ 1853.932040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1853.934532] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1853.935567] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1853.936506] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1853.937465] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1853.938412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1853.939415] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:55:10 executing program 6: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r0, 0xffffffffffffffff) 05:55:10 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) 05:55:10 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:55:10 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:55:10 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 4) 05:55:10 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x6) [ 1854.047495] FAULT_INJECTION: forcing a failure. [ 1854.047495] name failslab, interval 1, probability 0, space 0, times 0 [ 1854.048931] CPU: 0 PID: 9732 Comm: syz-executor.7 Not tainted 5.10.254 #1 [ 1854.049787] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1854.050785] Call Trace: [ 1854.051105] dump_stack+0x107/0x167 [ 1854.051552] should_fail.cold+0x5/0xa [ 1854.052012] ? allocate_fake_cpuc+0x45/0x110 [ 1854.052541] should_failslab+0x5/0x20 [ 1854.052998] kmem_cache_alloc_trace+0x55/0x320 [ 1854.053545] ? x86_pmu_hw_config+0x3ec/0x850 [ 1854.054072] allocate_fake_cpuc+0x45/0x110 [ 1854.054577] x86_pmu_event_init+0x4e9/0x6e0 [ 1854.055098] perf_try_init_event+0x130/0x570 [ 1854.055632] perf_event_alloc.part.0+0xd96/0x2b70 [ 1854.056247] __do_sys_perf_event_open+0x579/0x2e60 [ 1854.056843] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1854.057424] ? perf_event_set_output+0x5b0/0x5b0 [ 1854.057986] ? wait_for_completion_io+0x270/0x270 [ 1854.058605] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1854.059237] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1854.059895] do_syscall_64+0x33/0x40 [ 1854.060358] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1854.060993] RIP: 0033:0x7f6a5fc12b19 [ 1854.061456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1854.063745] RSP: 002b:00007f6a5d188188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1854.064688] RAX: ffffffffffffffda RBX: 00007f6a5fd25f60 RCX: 00007f6a5fc12b19 [ 1854.065578] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1854.066460] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1854.067342] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1854.068248] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 05:55:10 executing program 2: fork() (fail_nth: 15) 05:55:10 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x52c00fff, 0xf, 0x13, r0, 0x8000000) 05:55:10 executing program 4: r0 = openat(0xffffffffffffff9c, 0x0, 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) 05:55:10 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:55:10 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:55:10 executing program 6: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r0, 0xffffffffffffffff) 05:55:10 executing program 4: r0 = openat(0xffffffffffffff9c, 0x0, 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) 05:55:10 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:55:10 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x7) [ 1854.189775] FAULT_INJECTION: forcing a failure. [ 1854.189775] name failslab, interval 1, probability 0, space 0, times 0 [ 1854.192528] CPU: 1 PID: 9753 Comm: syz-executor.2 Not tainted 5.10.254 #1 05:55:10 executing program 4: r0 = openat(0xffffffffffffff9c, 0x0, 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) [ 1854.194180] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1854.196381] Call Trace: [ 1854.197014] dump_stack+0x107/0x167 [ 1854.197887] should_fail.cold+0x5/0xa [ 1854.198821] ? alloc_fdtable+0x9e/0x2c0 [ 1854.199789] should_failslab+0x5/0x20 [ 1854.200688] kmem_cache_alloc_trace+0x55/0x320 [ 1854.201902] ? rwlock_bug.part.0+0x90/0x90 [ 1854.202984] alloc_fdtable+0x9e/0x2c0 [ 1854.203903] dup_fd+0x92d/0xe40 [ 1854.204693] copy_process+0x197c/0x78b0 [ 1854.205634] ? __lock_acquire+0xbb1/0x5b00 05:55:10 executing program 6: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r0, 0xffffffffffffffff) 05:55:10 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) [ 1854.206659] ? __cleanup_sighand+0xb0/0xb0 [ 1854.207790] ? lock_acquire+0x197/0x470 [ 1854.208728] ? find_held_lock+0x2c/0x110 [ 1854.209684] kernel_clone+0xe7/0x980 [ 1854.210559] ? lock_downgrade+0x6d0/0x6d0 [ 1854.211533] ? find_held_lock+0x2c/0x110 [ 1854.212485] ? create_io_thread+0xf0/0xf0 [ 1854.213449] ? ksys_write+0x12d/0x260 [ 1854.214345] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1854.215487] __do_sys_fork+0x8a/0xc0 [ 1854.216350] ? kernel_thread+0xf0/0xf0 [ 1854.217273] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1854.218498] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1854.219697] ? trace_hardirqs_on+0x5b/0x180 [ 1854.220728] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1854.221929] do_syscall_64+0x33/0x40 [ 1854.222788] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1854.223985] RIP: 0033:0x7f22e1959b19 [ 1854.224842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1854.229118] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1854.230891] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1854.232542] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1854.234194] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1854.234205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 05:55:10 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 5) [ 1854.234216] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:55:10 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) 05:55:10 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0xff0fc052, 0xf, 0x13, r0, 0x8000000) [ 1854.282357] FAULT_INJECTION: forcing a failure. [ 1854.282357] name failslab, interval 1, probability 0, space 0, times 0 05:55:10 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) [ 1854.284942] CPU: 1 PID: 9764 Comm: syz-executor.7 Not tainted 5.10.254 #1 [ 1854.286619] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1854.288512] Call Trace: [ 1854.289119] dump_stack+0x107/0x167 [ 1854.289949] should_fail.cold+0x5/0xa [ 1854.290824] ? create_object.isra.0+0x3a/0xa30 [ 1854.291857] should_failslab+0x5/0x20 [ 1854.292723] kmem_cache_alloc+0x5b/0x310 [ 1854.293638] ? lock_release+0x680/0x680 [ 1854.294541] create_object.isra.0+0x3a/0xa30 [ 1854.295534] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1854.296688] kmem_cache_alloc_trace+0x151/0x320 [ 1854.297755] allocate_fake_cpuc+0x45/0x110 [ 1854.298718] x86_pmu_event_init+0x4e9/0x6e0 [ 1854.299704] perf_try_init_event+0x130/0x570 [ 1854.300696] perf_event_alloc.part.0+0xd96/0x2b70 [ 1854.301914] __do_sys_perf_event_open+0x579/0x2e60 [ 1854.303124] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1854.304428] ? perf_event_set_output+0x5b0/0x5b0 [ 1854.305492] ? wait_for_completion_io+0x270/0x270 [ 1854.306616] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1854.307817] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1854.308989] do_syscall_64+0x33/0x40 [ 1854.309836] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1854.310991] RIP: 0033:0x7f6a5fc12b19 [ 1854.311844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1854.316314] RSP: 002b:00007f6a5d188188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1854.318042] RAX: ffffffffffffffda RBX: 00007f6a5fd25f60 RCX: 00007f6a5fc12b19 [ 1854.319671] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1854.321296] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1854.322920] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1854.324550] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 05:55:24 executing program 2: fork() (fail_nth: 16) 05:55:24 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) [ 1867.698032] FAULT_INJECTION: forcing a failure. [ 1867.698032] name failslab, interval 1, probability 0, space 0, times 0 [ 1867.700528] CPU: 1 PID: 9787 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1867.701984] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1867.703721] Call Trace: [ 1867.704291] dump_stack+0x107/0x167 [ 1867.704344] FAULT_INJECTION: forcing a failure. [ 1867.704344] name failslab, interval 1, probability 0, space 0, times 0 [ 1867.705068] should_fail.cold+0x5/0xa [ 1867.705087] ? kvmalloc_node+0x119/0x170 [ 1867.705108] should_failslab+0x5/0x20 [ 1867.709849] __kmalloc_node+0x76/0x420 [ 1867.710677] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1867.711759] kvmalloc_node+0x119/0x170 [ 1867.712588] alloc_fdtable+0x159/0x2c0 [ 1867.713418] dup_fd+0x92d/0xe40 [ 1867.714147] copy_process+0x197c/0x78b0 [ 1867.714993] ? __lock_acquire+0xbb1/0x5b00 [ 1867.715891] ? __cleanup_sighand+0xb0/0xb0 [ 1867.716792] ? lock_acquire+0x197/0x470 [ 1867.717639] ? find_held_lock+0x2c/0x110 [ 1867.718499] kernel_clone+0xe7/0x980 [ 1867.719291] ? lock_downgrade+0x6d0/0x6d0 [ 1867.720178] ? find_held_lock+0x2c/0x110 [ 1867.721035] ? create_io_thread+0xf0/0xf0 [ 1867.721913] ? ksys_write+0x12d/0x260 [ 1867.722727] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1867.723767] __do_sys_fork+0x8a/0xc0 [ 1867.724556] ? kernel_thread+0xf0/0xf0 [ 1867.725393] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1867.726510] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1867.727610] ? trace_hardirqs_on+0x5b/0x180 [ 1867.728525] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1867.729608] do_syscall_64+0x33/0x40 [ 1867.730399] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1867.731475] RIP: 0033:0x7f22e1959b19 [ 1867.732276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1867.736195] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1867.737803] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1867.739320] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1867.740833] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1867.742348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1867.743866] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 1867.745397] CPU: 0 PID: 9783 Comm: syz-executor.7 Not tainted 5.10.254 #1 [ 1867.746843] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1867.748593] Call Trace: [ 1867.749163] dump_stack+0x107/0x167 [ 1867.749188] should_fail.cold+0x5/0xa [ 1867.750749] ? selinux_perf_event_alloc+0x43/0x190 [ 1867.751790] should_failslab+0x5/0x20 [ 1867.752596] kmem_cache_alloc_trace+0x55/0x320 [ 1867.753564] selinux_perf_event_alloc+0x43/0x190 [ 1867.754569] security_perf_event_alloc+0x46/0xa0 [ 1867.755579] perf_event_alloc.part.0+0x18b3/0x2b70 [ 1867.756628] __do_sys_perf_event_open+0x579/0x2e60 [ 1867.757674] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1867.758697] ? perf_event_set_output+0x5b0/0x5b0 [ 1867.758846] FAULT_INJECTION: forcing a failure. [ 1867.758846] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1867.759700] ? wait_for_completion_io+0x270/0x270 [ 1867.759741] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1867.759768] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1867.765302] do_syscall_64+0x33/0x40 [ 1867.766090] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1867.767171] RIP: 0033:0x7f6a5fc12b19 [ 1867.767960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1867.771859] RSP: 002b:00007f6a5d188188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1867.773466] RAX: ffffffffffffffda RBX: 00007f6a5fd25f60 RCX: 00007f6a5fc12b19 [ 1867.774977] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1867.776495] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1867.778012] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1867.779530] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 [ 1867.781057] CPU: 1 PID: 9788 Comm: syz-executor.6 Not tainted 5.10.254 #1 [ 1867.782515] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1867.784283] Call Trace: [ 1867.784841] dump_stack+0x107/0x167 [ 1867.785615] should_fail.cold+0x5/0xa [ 1867.786431] _copy_to_user+0x2e/0x180 [ 1867.787245] simple_read_from_buffer+0xcc/0x160 [ 1867.788266] proc_fail_nth_read+0x198/0x230 [ 1867.789184] ? proc_sessionid_read+0x230/0x230 [ 1867.790154] ? security_file_permission+0xb1/0xe0 [ 1867.791182] ? proc_sessionid_read+0x230/0x230 [ 1867.792165] vfs_read+0x228/0x620 [ 1867.792911] ksys_read+0x12d/0x260 [ 1867.793662] ? vfs_write+0xb10/0xb10 [ 1867.794458] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1867.795580] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1867.796675] do_syscall_64+0x33/0x40 [ 1867.797467] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1867.798553] RIP: 0033:0x7f2aa952969c [ 1867.799343] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1867.803269] RSP: 002b:00007f2aa6acb170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1867.804890] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007f2aa952969c [ 1867.806406] RDX: 000000000000000f RSI: 00007f2aa6acb1e0 RDI: 0000000000000005 [ 1867.807931] RBP: 00007f2aa6acb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1867.809446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1867.810963] R13: 00007ffc9af750df R14: 00007f2aa6acb300 R15: 0000000000022000 05:55:24 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) (fail_nth: 1) 05:55:24 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 6) 05:55:24 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x8) 05:55:24 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, 0x0, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:55:24 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff00000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:55:24 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x7fffdf004000, 0xf, 0x13, r0, 0x8000000) 05:55:40 executing program 2: fork() (fail_nth: 17) 05:55:40 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) 05:55:40 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 7) 05:55:40 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, 0x0, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:55:40 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff00000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:55:40 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) 05:55:40 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x10) 05:55:40 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x7ffffffff000, 0xf, 0x13, r0, 0x8000000) [ 1884.444381] FAULT_INJECTION: forcing a failure. [ 1884.444381] name failslab, interval 1, probability 0, space 0, times 0 [ 1884.446827] CPU: 1 PID: 9804 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1884.448289] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1884.450062] Call Trace: [ 1884.450638] dump_stack+0x107/0x167 [ 1884.451416] should_fail.cold+0x5/0xa [ 1884.452241] ? create_object.isra.0+0x3a/0xa30 [ 1884.453212] should_failslab+0x5/0x20 [ 1884.454022] kmem_cache_alloc+0x5b/0x310 [ 1884.454895] create_object.isra.0+0x3a/0xa30 [ 1884.455842] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1884.456928] __kmalloc_node+0x1ae/0x420 [ 1884.457780] kvmalloc_node+0x119/0x170 [ 1884.458615] alloc_fdtable+0x159/0x2c0 [ 1884.459439] dup_fd+0x92d/0xe40 [ 1884.460174] copy_process+0x197c/0x78b0 [ 1884.461034] ? __lock_acquire+0xbb1/0x5b00 [ 1884.461953] ? __cleanup_sighand+0xb0/0xb0 [ 1884.462862] ? lock_acquire+0x197/0x470 [ 1884.463722] ? find_held_lock+0x2c/0x110 [ 1884.464589] kernel_clone+0xe7/0x980 [ 1884.465381] ? lock_downgrade+0x6d0/0x6d0 [ 1884.466264] ? find_held_lock+0x2c/0x110 [ 1884.467120] ? create_io_thread+0xf0/0xf0 [ 1884.468008] ? ksys_write+0x12d/0x260 [ 1884.468818] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1884.469840] __do_sys_fork+0x8a/0xc0 [ 1884.470624] ? kernel_thread+0xf0/0xf0 [ 1884.471459] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1884.472590] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1884.473679] ? trace_hardirqs_on+0x5b/0x180 [ 1884.474595] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1884.475696] do_syscall_64+0x33/0x40 [ 1884.476483] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1884.477567] RIP: 0033:0x7f22e1959b19 [ 1884.478349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1884.482246] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1884.483856] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1884.485364] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1884.486868] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1884.488385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1884.489897] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 1884.514046] FAULT_INJECTION: forcing a failure. [ 1884.514046] name failslab, interval 1, probability 0, space 0, times 0 [ 1884.516895] CPU: 1 PID: 9814 Comm: syz-executor.7 Not tainted 5.10.254 #1 [ 1884.518592] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1884.520573] Call Trace: [ 1884.521131] dump_stack+0x107/0x167 [ 1884.522030] should_fail.cold+0x5/0xa [ 1884.522977] ? create_object.isra.0+0x3a/0xa30 [ 1884.524102] should_failslab+0x5/0x20 [ 1884.524987] kmem_cache_alloc+0x5b/0x310 [ 1884.525843] ? slab_free_freelist_hook+0xa9/0x180 [ 1884.526866] create_object.isra.0+0x3a/0xa30 [ 1884.527944] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1884.529083] kmem_cache_alloc_trace+0x151/0x320 [ 1884.530073] selinux_perf_event_alloc+0x43/0x190 [ 1884.531075] security_perf_event_alloc+0x46/0xa0 [ 1884.532091] perf_event_alloc.part.0+0x18b3/0x2b70 [ 1884.533126] __do_sys_perf_event_open+0x579/0x2e60 [ 1884.534164] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1884.535175] ? perf_event_set_output+0x5b0/0x5b0 [ 1884.536206] ? wait_for_completion_io+0x270/0x270 [ 1884.537244] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1884.538357] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1884.539445] do_syscall_64+0x33/0x40 [ 1884.540232] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1884.541311] RIP: 0033:0x7f6a5fc12b19 [ 1884.542097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1884.545954] RSP: 002b:00007f6a5d188188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1884.547547] RAX: ffffffffffffffda RBX: 00007f6a5fd25f60 RCX: 00007f6a5fc12b19 [ 1884.549055] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1884.550557] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1884.552067] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1884.553569] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 05:55:40 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, 0x0, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:55:40 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r0, 0x0) 05:55:40 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x60) 05:55:40 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x5}}, './file0\x00'}) connect$unix(r2, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e22}, 0x6e) dup2(r1, r0) 05:55:40 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:55:53 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x300) 05:55:53 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) 05:55:53 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) r3 = open_tree(r2, &(0x7f0000000040)='./file0\x00', 0x89801) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r4, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r4, 0x0) open_tree(r4, &(0x7f0000000040)='./file0\x00', 0x89801) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, r4, @in_args={0x4fc806c3afd7d203}}, './file0\x00'}) signalfd(r3, &(0x7f0000000100)={[0xca68]}, 0x8) dup2(r1, r0) 05:55:53 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:55:53 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x4, 0x13, r0, 0x8000000) 05:55:53 executing program 2: fork() (fail_nth: 18) 05:55:53 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r0, 0x0) 05:55:53 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 8) [ 1897.370395] FAULT_INJECTION: forcing a failure. [ 1897.370395] name failslab, interval 1, probability 0, space 0, times 0 [ 1897.372042] CPU: 0 PID: 9849 Comm: syz-executor.7 Not tainted 5.10.254 #1 [ 1897.373001] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1897.374157] Call Trace: [ 1897.374525] dump_stack+0x107/0x167 [ 1897.375031] should_fail.cold+0x5/0xa [ 1897.375556] ? find_get_context+0x18d/0x9a0 [ 1897.376157] should_failslab+0x5/0x20 [ 1897.376682] kmem_cache_alloc_trace+0x55/0x320 [ 1897.377315] find_get_context+0x18d/0x9a0 [ 1897.377890] ? security_perf_event_alloc+0x79/0xa0 [ 1897.378571] ? ctx_sched_out+0xa00/0xa00 [ 1897.379136] __do_sys_perf_event_open+0xed1/0x2e60 [ 1897.379448] FAULT_INJECTION: forcing a failure. [ 1897.379448] name failslab, interval 1, probability 0, space 0, times 0 [ 1897.379825] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1897.379839] ? perf_event_set_output+0x5b0/0x5b0 [ 1897.379848] ? wait_for_completion_io+0x270/0x270 [ 1897.379875] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1897.385273] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1897.385981] do_syscall_64+0x33/0x40 [ 1897.386497] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1897.387202] RIP: 0033:0x7f6a5fc12b19 [ 1897.387714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1897.390196] RSP: 002b:00007f6a5d188188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1897.391214] RAX: ffffffffffffffda RBX: 00007f6a5fd25f60 RCX: 00007f6a5fc12b19 [ 1897.392186] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1897.393145] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1897.394125] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1897.395083] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 [ 1897.396066] CPU: 1 PID: 9850 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1897.397713] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1897.399695] Call Trace: [ 1897.400337] dump_stack+0x107/0x167 [ 1897.401210] should_fail.cold+0x5/0xa [ 1897.402121] ? kvmalloc_node+0x119/0x170 [ 1897.403089] should_failslab+0x5/0x20 [ 1897.404027] __kmalloc_node+0x76/0x420 [ 1897.404962] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1897.406177] kvmalloc_node+0x119/0x170 [ 1897.407101] alloc_fdtable+0x159/0x2c0 [ 1897.408049] dup_fd+0x92d/0xe40 [ 1897.408854] copy_process+0x197c/0x78b0 [ 1897.409803] ? __lock_acquire+0xbb1/0x5b00 [ 1897.410826] ? __cleanup_sighand+0xb0/0xb0 [ 1897.411854] ? lock_acquire+0x197/0x470 [ 1897.412813] ? find_held_lock+0x2c/0x110 [ 1897.413772] kernel_clone+0xe7/0x980 [ 1897.414667] ? lock_downgrade+0x6d0/0x6d0 [ 1897.415640] ? find_held_lock+0x2c/0x110 [ 1897.416605] ? create_io_thread+0xf0/0xf0 [ 1897.417588] ? ksys_write+0x12d/0x260 [ 1897.418499] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1897.419647] __do_sys_fork+0x8a/0xc0 [ 1897.420567] ? kernel_thread+0xf0/0xf0 [ 1897.421512] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1897.422761] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1897.424075] ? trace_hardirqs_on+0x5b/0x180 [ 1897.425269] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1897.426481] do_syscall_64+0x33/0x40 [ 1897.427396] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1897.428643] RIP: 0033:0x7f22e1959b19 [ 1897.429539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1897.433930] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1897.435725] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1897.437411] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1897.439084] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1897.440766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1897.442442] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:55:53 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:55:53 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x500) 05:55:53 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 9) 05:55:53 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:55:53 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x2000000) 05:55:53 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)) 05:55:53 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r0, 0x0) [ 1897.530322] FAULT_INJECTION: forcing a failure. [ 1897.530322] name failslab, interval 1, probability 0, space 0, times 0 [ 1897.531884] CPU: 0 PID: 9864 Comm: syz-executor.7 Not tainted 5.10.254 #1 [ 1897.532757] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1897.533834] Call Trace: [ 1897.534179] dump_stack+0x107/0x167 [ 1897.534642] should_fail.cold+0x5/0xa [ 1897.535128] ? create_object.isra.0+0x3a/0xa30 [ 1897.535706] should_failslab+0x5/0x20 [ 1897.536199] kmem_cache_alloc+0x5b/0x310 [ 1897.536724] create_object.isra.0+0x3a/0xa30 [ 1897.537286] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1897.537952] kmem_cache_alloc_trace+0x151/0x320 [ 1897.538546] find_get_context+0x18d/0x9a0 [ 1897.539073] ? security_perf_event_alloc+0x79/0xa0 [ 1897.539701] ? ctx_sched_out+0xa00/0xa00 [ 1897.540231] __do_sys_perf_event_open+0xed1/0x2e60 [ 1897.540854] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1897.541466] ? perf_event_set_output+0x5b0/0x5b0 [ 1897.542065] ? wait_for_completion_io+0x270/0x270 [ 1897.542702] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1897.543365] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1897.544037] do_syscall_64+0x33/0x40 [ 1897.544508] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1897.545156] RIP: 0033:0x7f6a5fc12b19 [ 1897.545634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1897.547969] RSP: 002b:00007f6a5d188188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1897.548943] RAX: ffffffffffffffda RBX: 00007f6a5fd25f60 RCX: 00007f6a5fc12b19 [ 1897.549846] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1897.550737] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1897.551630] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1897.552545] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 05:55:53 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x4, 0x81, 0xff, 0x6, 0x0, 0x3, 0x180c, 0x4, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5, 0x2, @perf_bp={&(0x7f0000000080)}, 0x40000, 0x0, 0x9, 0x6, 0x8, 0x10001, 0x5, 0x0, 0x9, 0x0, 0x2}, 0xffffffffffffffff, 0xa, 0xffffffffffffffff, 0x0) 05:55:53 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x600) 05:55:53 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)) 05:55:53 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x10, r0, 0x0) 05:55:53 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000002) 05:55:53 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = dup2(r1, r0) fsetxattr$security_capability(r2, &(0x7f0000000080), &(0x7f0000000100)=@v3={0x3000000, [{0x7fff, 0x1}, {0x8000, 0x1}], 0xee01}, 0x18, 0x1) 05:56:09 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x2002}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) getdents(r1, &(0x7f0000000080)=""/31, 0x1f) dup2(r1, r0) 05:56:09 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:56:09 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)) 05:56:09 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x700) 05:56:09 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x10, r0, 0x0) 05:56:09 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000003) 05:56:09 executing program 2: fork() (fail_nth: 19) 05:56:09 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 10) [ 1913.585957] FAULT_INJECTION: forcing a failure. [ 1913.585957] name failslab, interval 1, probability 0, space 0, times 0 [ 1913.588966] CPU: 1 PID: 9905 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1913.590752] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1913.592929] Call Trace: [ 1913.593614] dump_stack+0x107/0x167 [ 1913.594565] should_fail.cold+0x5/0xa [ 1913.595585] ? create_object.isra.0+0x3a/0xa30 [ 1913.596790] should_failslab+0x5/0x20 [ 1913.597808] kmem_cache_alloc+0x5b/0x310 [ 1913.598882] create_object.isra.0+0x3a/0xa30 [ 1913.600054] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1913.601368] __kmalloc_node+0x1ae/0x420 [ 1913.602417] kvmalloc_node+0x119/0x170 [ 1913.603428] alloc_fdtable+0x159/0x2c0 [ 1913.604472] dup_fd+0x92d/0xe40 [ 1913.605380] copy_process+0x197c/0x78b0 [ 1913.606425] ? __lock_acquire+0xbb1/0x5b00 [ 1913.607569] ? __cleanup_sighand+0xb0/0xb0 [ 1913.608695] ? lock_acquire+0x197/0x470 [ 1913.609769] ? find_held_lock+0x2c/0x110 [ 1913.610845] kernel_clone+0xe7/0x980 [ 1913.611840] ? lock_downgrade+0x6d0/0x6d0 [ 1913.612887] ? find_held_lock+0x2c/0x110 [ 1913.613753] ? create_io_thread+0xf0/0xf0 [ 1913.614650] ? ksys_write+0x12d/0x260 [ 1913.614685] FAULT_INJECTION: forcing a failure. [ 1913.614685] name failslab, interval 1, probability 0, space 0, times 0 [ 1913.615480] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1913.615508] __do_sys_fork+0x8a/0xc0 [ 1913.619585] ? kernel_thread+0xf0/0xf0 [ 1913.620444] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1913.621594] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1913.622708] ? trace_hardirqs_on+0x5b/0x180 [ 1913.623645] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1913.624754] do_syscall_64+0x33/0x40 [ 1913.625578] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1913.626668] RIP: 0033:0x7f22e1959b19 [ 1913.627474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1913.631466] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1913.633146] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1913.634683] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1913.636243] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1913.637807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1913.639635] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 1913.641637] CPU: 0 PID: 9906 Comm: syz-executor.7 Not tainted 5.10.254 #1 [ 1913.643030] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1913.644715] Call Trace: [ 1913.645257] dump_stack+0x107/0x167 [ 1913.645997] should_fail.cold+0x5/0xa [ 1913.646774] ? __d_alloc+0x2a/0x990 [ 1913.647514] should_failslab+0x5/0x20 [ 1913.648296] kmem_cache_alloc+0x5b/0x310 [ 1913.649128] __d_alloc+0x2a/0x990 [ 1913.649835] d_alloc_pseudo+0x19/0x70 [ 1913.650606] alloc_file_pseudo+0xce/0x250 [ 1913.651447] ? alloc_file+0x5a0/0x5a0 [ 1913.652228] ? ctx_sched_out+0xa00/0xa00 [ 1913.653060] anon_inode_getfile+0xc8/0x1f0 [ 1913.653918] __do_sys_perf_event_open+0xf59/0x2e60 [ 1913.654917] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1913.655905] ? perf_event_set_output+0x5b0/0x5b0 [ 1913.655920] ? wait_for_completion_io+0x270/0x270 [ 1913.655969] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1913.655990] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1913.656011] do_syscall_64+0x33/0x40 [ 1913.656030] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1913.656041] RIP: 0033:0x7f6a5fc12b19 [ 1913.656059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1913.656068] RSP: 002b:00007f6a5d188188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a 05:56:10 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x10, r0, 0x0) 05:56:10 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), 0x0) 05:56:10 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000004) [ 1913.656088] RAX: ffffffffffffffda RBX: 00007f6a5fd25f60 RCX: 00007f6a5fc12b19 [ 1913.656098] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1913.656108] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1913.656119] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000002 [ 1913.656129] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 05:56:10 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x4000) 05:56:10 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:56:10 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) open_tree(r2, &(0x7f0000000040)='./file0\x00', 0x89801) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000080)={'syztnl2\x00', &(0x7f0000000280)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="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"/357]}) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x300000b, 0x810, r0, 0x14a85000) 05:56:10 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, 0xffffffffffffffff, 0x0) 05:56:10 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000005) 05:56:10 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), 0x0) 05:56:10 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 11) 05:56:10 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x6000) 05:56:10 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1913.938949] FAULT_INJECTION: forcing a failure. [ 1913.938949] name failslab, interval 1, probability 0, space 0, times 0 [ 1913.940986] CPU: 0 PID: 9936 Comm: syz-executor.7 Not tainted 5.10.254 #1 [ 1913.942174] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1913.943622] Call Trace: [ 1913.944095] dump_stack+0x107/0x167 [ 1913.944725] should_fail.cold+0x5/0xa [ 1913.945381] ? __d_alloc+0x2a/0x990 [ 1913.946015] should_failslab+0x5/0x20 [ 1913.946671] kmem_cache_alloc+0x5b/0x310 [ 1913.947381] __d_alloc+0x2a/0x990 [ 1913.947991] d_alloc_pseudo+0x19/0x70 [ 1913.948652] alloc_file_pseudo+0xce/0x250 [ 1913.949370] ? alloc_file+0x5a0/0x5a0 [ 1913.950036] ? ctx_sched_out+0xa00/0xa00 [ 1913.950745] anon_inode_getfile+0xc8/0x1f0 [ 1913.951474] __do_sys_perf_event_open+0xf59/0x2e60 [ 1913.952334] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1913.953171] ? perf_event_set_output+0x5b0/0x5b0 [ 1913.953984] ? wait_for_completion_io+0x270/0x270 [ 1913.954836] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1913.955741] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1913.956640] do_syscall_64+0x33/0x40 [ 1913.957287] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1913.958170] RIP: 0033:0x7f6a5fc12b19 [ 1913.958824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1913.961983] RSP: 002b:00007f6a5d188188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1913.963282] RAX: ffffffffffffffda RBX: 00007f6a5fd25f60 RCX: 00007f6a5fc12b19 [ 1913.964504] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1913.965725] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1913.966949] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000002 [ 1913.968168] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 05:56:10 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, 0xffffffffffffffff, 0x0) 05:56:10 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xa, 0x810, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000080)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x1000) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r2, r0) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) syz_io_uring_submit(r1, 0x0, &(0x7f0000000180)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f0000000140)={r3, r4+60000000}}, 0x5) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r5, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r5, 0x0) open_tree(r5, &(0x7f0000000040)='./file0\x00', 0x89801) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r6, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r6, 0x0) open_tree(r6, &(0x7f0000000040)='./file0\x00', 0x89801) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r5, 0xc0189372, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r6, {0xe5b}}, './file0\x00'}) 05:56:25 executing program 2: fork() (fail_nth: 20) 05:56:25 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 12) 05:56:25 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x400000000000000}, 0x1002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) [ 1929.324669] FAULT_INJECTION: forcing a failure. [ 1929.324669] name failslab, interval 1, probability 0, space 0, times 0 [ 1929.327053] CPU: 1 PID: 9955 Comm: syz-executor.7 Not tainted 5.10.254 #1 [ 1929.328565] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1929.330295] Call Trace: [ 1929.330842] dump_stack+0x107/0x167 [ 1929.331610] should_fail.cold+0x5/0xa [ 1929.332464] ? __alloc_file+0x21/0x320 [ 1929.333305] should_failslab+0x5/0x20 [ 1929.334123] kmem_cache_alloc+0x5b/0x310 [ 1929.335002] __alloc_file+0x21/0x320 [ 1929.335788] alloc_empty_file+0x6d/0x170 [ 1929.336649] alloc_file+0x5e/0x5a0 [ 1929.337422] alloc_file_pseudo+0x16a/0x250 [ 1929.338286] ? alloc_file+0x5a0/0x5a0 [ 1929.339095] ? ctx_sched_out+0xa00/0xa00 [ 1929.339977] anon_inode_getfile+0xc8/0x1f0 [ 1929.340880] __do_sys_perf_event_open+0xf59/0x2e60 [ 1929.341915] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1929.342965] ? perf_event_set_output+0x5b0/0x5b0 [ 1929.343982] ? wait_for_completion_io+0x270/0x270 [ 1929.345072] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1929.346195] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1929.347259] do_syscall_64+0x33/0x40 [ 1929.348030] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1929.349157] RIP: 0033:0x7f6a5fc12b19 05:56:25 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000006) 05:56:25 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), 0x0) 05:56:25 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, 0xffffffffffffffff, 0x0) 05:56:25 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:56:25 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x400000) [ 1929.349955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1929.354135] RSP: 002b:00007f6a5d188188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1929.355785] RAX: ffffffffffffffda RBX: 00007f6a5fd25f60 RCX: 00007f6a5fc12b19 [ 1929.357360] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1929.358908] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1929.360423] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000002 [ 1929.361931] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 [ 1929.365110] FAULT_INJECTION: forcing a failure. [ 1929.365110] name failslab, interval 1, probability 0, space 0, times 0 [ 1929.367577] CPU: 1 PID: 9964 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1929.369089] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1929.370837] Call Trace: [ 1929.371402] dump_stack+0x107/0x167 [ 1929.372191] should_fail.cold+0x5/0xa [ 1929.372988] ? copy_process+0x1ae7/0x78b0 [ 1929.373861] should_failslab+0x5/0x20 [ 1929.374659] kmem_cache_alloc+0x5b/0x310 [ 1929.375515] ? _raw_spin_unlock+0x1a/0x30 [ 1929.376416] copy_process+0x1ae7/0x78b0 [ 1929.377277] ? __lock_acquire+0xbb1/0x5b00 [ 1929.378189] ? __cleanup_sighand+0xb0/0xb0 [ 1929.379084] ? lock_acquire+0x197/0x470 [ 1929.379934] ? find_held_lock+0x2c/0x110 [ 1929.380799] kernel_clone+0xe7/0x980 [ 1929.381582] ? lock_downgrade+0x6d0/0x6d0 [ 1929.382427] ? find_held_lock+0x2c/0x110 [ 1929.383272] ? create_io_thread+0xf0/0xf0 [ 1929.384147] ? ksys_write+0x12d/0x260 [ 1929.384950] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1929.385956] __do_sys_fork+0x8a/0xc0 [ 1929.386719] ? kernel_thread+0xf0/0xf0 [ 1929.387550] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1929.388661] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1929.389996] ? trace_hardirqs_on+0x5b/0x180 [ 1929.390885] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1929.392075] do_syscall_64+0x33/0x40 [ 1929.392875] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1929.393928] RIP: 0033:0x7f22e1959b19 [ 1929.394686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1929.398482] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1929.400291] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1929.401776] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1929.403265] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1929.404785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1929.406273] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:56:25 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x600000) 05:56:25 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:56:25 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 1) 05:56:25 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x2, 0x7, 0x9, 0x6, 0x0, 0x450, 0x44e2, 0x6, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, 0x4, @perf_config_ext={0xcb0, 0x6}, 0x300, 0x6, 0x2, 0x3, 0x5, 0x401, 0x6, 0x0, 0x8, 0x0, 0x7}, 0x0, 0xe, r0, 0x2) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = dup2(r1, r0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f0000000180)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x400}}, './file0\x00'}) r4 = syz_open_dev$ptys(0xc, 0x3, 0x0) fcntl$dupfd(r0, 0x406, r4) [ 1929.573606] FAULT_INJECTION: forcing a failure. [ 1929.573606] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1929.576663] CPU: 0 PID: 9975 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 1929.578125] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1929.579902] Call Trace: [ 1929.580488] dump_stack+0x107/0x167 [ 1929.581287] should_fail.cold+0x5/0xa [ 1929.582118] _copy_from_user+0x2e/0x1b0 [ 1929.582994] io_uring_setup+0x9b/0x2980 [ 1929.583854] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1929.584908] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1929.586001] ? wait_for_completion_io+0x270/0x270 [ 1929.587020] ? rcu_read_lock_any_held+0x75/0xa0 [ 1929.588010] ? vfs_write+0x354/0xb10 [ 1929.588806] ? fput_many+0x2f/0x1a0 [ 1929.589603] ? ksys_write+0x1a9/0x260 [ 1929.590532] ? __ia32_sys_read+0xb0/0xb0 [ 1929.591453] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1929.592560] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1929.593664] do_syscall_64+0x33/0x40 [ 1929.594448] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1929.595524] RIP: 0033:0x7f530d0e5b19 [ 1929.596324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1929.600213] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1929.601825] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 1929.603323] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 1929.604848] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1929.606375] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 1929.607909] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 05:56:25 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 13) [ 1929.652092] FAULT_INJECTION: forcing a failure. [ 1929.652092] name failslab, interval 1, probability 0, space 0, times 0 [ 1929.655134] CPU: 0 PID: 9984 Comm: syz-executor.7 Not tainted 5.10.254 #1 [ 1929.656741] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1929.658678] Call Trace: [ 1929.659298] dump_stack+0x107/0x167 [ 1929.660145] should_fail.cold+0x5/0xa [ 1929.661041] ? create_object.isra.0+0x3a/0xa30 [ 1929.662110] should_failslab+0x5/0x20 [ 1929.662992] kmem_cache_alloc+0x5b/0x310 [ 1929.663938] create_object.isra.0+0x3a/0xa30 [ 1929.664977] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1929.666162] kmem_cache_alloc+0x159/0x310 [ 1929.667121] __alloc_file+0x21/0x320 [ 1929.667992] alloc_empty_file+0x6d/0x170 [ 1929.668946] alloc_file+0x5e/0x5a0 [ 1929.669766] alloc_file_pseudo+0x16a/0x250 [ 1929.670747] ? alloc_file+0x5a0/0x5a0 [ 1929.671627] ? ctx_sched_out+0xa00/0xa00 [ 1929.672583] anon_inode_getfile+0xc8/0x1f0 [ 1929.673559] __do_sys_perf_event_open+0xf59/0x2e60 [ 1929.674751] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1929.675838] ? perf_event_set_output+0x5b0/0x5b0 [ 1929.676935] ? wait_for_completion_io+0x270/0x270 [ 1929.678066] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1929.679258] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1929.680444] do_syscall_64+0x33/0x40 [ 1929.681307] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1929.682471] RIP: 0033:0x7f6a5fc12b19 [ 1929.683325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1929.687512] RSP: 002b:00007f6a5d188188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1929.689276] RAX: ffffffffffffffda RBX: 00007f6a5fd25f60 RCX: 00007f6a5fc12b19 [ 1929.690939] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1929.692538] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1929.694135] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000002 [ 1929.695734] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 05:56:44 executing program 2: fork() (fail_nth: 21) 05:56:44 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 14) 05:56:44 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) (fail_nth: 1) 05:56:44 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:56:44 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x800000) 05:56:44 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000007) 05:56:44 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffff80000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) 05:56:44 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 2) [ 1948.293123] FAULT_INJECTION: forcing a failure. [ 1948.293123] name failslab, interval 1, probability 0, space 0, times 0 [ 1948.295532] CPU: 1 PID: 9999 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1948.296940] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1948.298633] Call Trace: [ 1948.299173] dump_stack+0x107/0x167 [ 1948.299922] should_fail.cold+0x5/0xa [ 1948.300724] ? copy_fs_struct+0x45/0x340 [ 1948.301553] should_failslab+0x5/0x20 [ 1948.302338] kmem_cache_alloc+0x5b/0x310 [ 1948.303179] copy_fs_struct+0x45/0x340 [ 1948.303201] copy_process+0x34b5/0x78b0 [ 1948.303226] ? __lock_acquire+0xbb1/0x5b00 [ 1948.303264] ? __cleanup_sighand+0xb0/0xb0 [ 1948.303291] ? lock_acquire+0x197/0x470 [ 1948.303315] ? find_held_lock+0x2c/0x110 [ 1948.303337] kernel_clone+0xe7/0x980 [ 1948.303355] ? lock_downgrade+0x6d0/0x6d0 [ 1948.303371] ? find_held_lock+0x2c/0x110 [ 1948.303388] ? create_io_thread+0xf0/0xf0 [ 1948.303406] ? ksys_write+0x12d/0x260 [ 1948.303431] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1948.303456] __do_sys_fork+0x8a/0xc0 [ 1948.303473] ? kernel_thread+0xf0/0xf0 [ 1948.303504] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1948.303524] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1948.303539] ? trace_hardirqs_on+0x5b/0x180 [ 1948.303560] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1948.303577] do_syscall_64+0x33/0x40 [ 1948.303596] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1948.303608] RIP: 0033:0x7f22e1959b19 [ 1948.303624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1948.303634] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1948.303653] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1948.303663] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1948.303673] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1948.303683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1948.303694] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 1948.309668] FAULT_INJECTION: forcing a failure. [ 1948.309668] name failslab, interval 1, probability 0, space 0, times 0 [ 1948.342307] CPU: 1 PID: 9998 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 1948.342317] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1948.342323] Call Trace: [ 1948.342343] dump_stack+0x107/0x167 [ 1948.342364] should_fail.cold+0x5/0xa [ 1948.342385] ? io_uring_setup+0x258/0x2980 [ 1948.342402] should_failslab+0x5/0x20 [ 1948.342421] kmem_cache_alloc_trace+0x55/0x320 [ 1948.342446] io_uring_setup+0x258/0x2980 [ 1948.342465] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1948.342488] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1948.342503] ? wait_for_completion_io+0x270/0x270 [ 1948.342549] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1948.342569] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1948.342591] do_syscall_64+0x33/0x40 [ 1948.342610] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1948.342621] RIP: 0033:0x7f530d0e5b19 [ 1948.342638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1948.342647] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1948.342667] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 1948.342677] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 1948.342688] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1948.342699] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 1948.342709] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 1948.348012] FAULT_INJECTION: forcing a failure. [ 1948.348012] name failslab, interval 1, probability 0, space 0, times 0 [ 1948.348030] CPU: 1 PID: 10008 Comm: syz-executor.7 Not tainted 5.10.254 #1 [ 1948.348039] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1948.348045] Call Trace: [ 1948.348064] dump_stack+0x107/0x167 [ 1948.348085] should_fail.cold+0x5/0xa [ 1948.348104] ? security_file_alloc+0x34/0x170 [ 1948.348121] should_failslab+0x5/0x20 [ 1948.348138] kmem_cache_alloc+0x5b/0x310 [ 1948.348162] security_file_alloc+0x34/0x170 [ 1948.348180] __alloc_file+0xb7/0x320 [ 1948.348199] alloc_empty_file+0x6d/0x170 [ 1948.348217] alloc_file+0x5e/0x5a0 [ 1948.348238] alloc_file_pseudo+0x16a/0x250 [ 1948.348255] ? alloc_file+0x5a0/0x5a0 [ 1948.348279] ? ctx_sched_out+0xa00/0xa00 [ 1948.348302] anon_inode_getfile+0xc8/0x1f0 [ 1948.348339] __do_sys_perf_event_open+0xf59/0x2e60 [ 1948.348363] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1948.348385] ? perf_event_set_output+0x5b0/0x5b0 [ 1948.348400] ? wait_for_completion_io+0x270/0x270 [ 1948.348440] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1948.348460] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1948.348481] do_syscall_64+0x33/0x40 [ 1948.348500] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1948.348512] RIP: 0033:0x7f6a5fc12b19 [ 1948.348528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1948.348545] RSP: 002b:00007f6a5d188188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1948.348564] RAX: ffffffffffffffda RBX: 00007f6a5fd25f60 RCX: 00007f6a5fc12b19 [ 1948.348575] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1948.348585] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1948.348595] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000002 [ 1948.348606] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 [ 1948.351241] FAULT_INJECTION: forcing a failure. [ 1948.351241] name failslab, interval 1, probability 0, space 0, times 0 [ 1948.351261] CPU: 0 PID: 10007 Comm: syz-executor.4 Not tainted 5.10.254 #1 [ 1948.351271] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1948.351276] Call Trace: [ 1948.351298] dump_stack+0x107/0x167 [ 1948.351318] should_fail.cold+0x5/0xa [ 1948.351338] ? vm_area_dup+0x78/0x290 [ 1948.351355] should_failslab+0x5/0x20 [ 1948.351374] kmem_cache_alloc+0x5b/0x310 [ 1948.351392] vm_area_dup+0x78/0x290 [ 1948.351405] ? mark_lock+0xf5/0x2df0 [ 1948.351417] ? mark_lock+0xf5/0x2df0 [ 1948.351430] ? lock_chain_count+0x20/0x20 [ 1948.351443] ? avc_has_extended_perms+0xf40/0xf40 [ 1948.351454] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1948.351464] ? lock_downgrade+0x6d0/0x6d0 [ 1948.351474] ? __lock_acquire+0x1657/0x5b00 [ 1948.351489] ? vm_area_alloc+0x110/0x110 [ 1948.351501] ? __lock_acquire+0x1657/0x5b00 [ 1948.351521] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1948.351531] ? vmacache_find+0x55/0x2a0 [ 1948.351547] __split_vma+0xa8/0x4e0 [ 1948.351558] __do_munmap+0xfae/0x1260 [ 1948.351570] ? arch_get_unmapped_area+0x450/0x450 [ 1948.351581] ? lock_release+0x680/0x680 [ 1948.351591] mmap_region+0x7cc/0x1500 [ 1948.351609] do_mmap+0x868/0x1370 [ 1948.351624] vm_mmap_pgoff+0x198/0x1f0 [ 1948.351637] ? randomize_page+0xb0/0xb0 [ 1948.351654] ksys_mmap_pgoff+0x41c/0x560 [ 1948.351666] ? find_mergeable_anon_vma+0x250/0x250 [ 1948.351678] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1948.351690] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1948.351702] do_syscall_64+0x33/0x40 [ 1948.351712] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1948.351719] RIP: 0033:0x7fa2ae602b19 [ 1948.351728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1948.351734] RSP: 002b:00007fa2abb78188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1948.351745] RAX: ffffffffffffffda RBX: 00007fa2ae715f60 RCX: 00007fa2ae602b19 [ 1948.351751] RDX: 000000000100000d RSI: 0000000000c00000 RDI: 0000000020000000 [ 1948.351756] RBP: 00007fa2abb781d0 R08: 0000000000000003 R09: 0000000000000000 [ 1948.351762] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000001 [ 1948.351768] R13: 00007fff398c10ff R14: 00007fa2abb78300 R15: 0000000000022000 05:56:57 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x1, 0x8, 0x7, 0x80, 0x0, 0x6, 0x0, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x8, 0x3, @perf_config_ext={0x4, 0xbb3}, 0x8120, 0x9, 0xc0ec, 0x9, 0x2af8, 0x800, 0x2, 0x0, 0x401, 0x0, 0x290}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x2) 05:56:57 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 15) 05:56:57 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 3) [ 1960.878134] FAULT_INJECTION: forcing a failure. 05:56:57 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000010) [ 1960.878134] name failslab, interval 1, probability 0, space 0, times 0 [ 1960.881700] CPU: 0 PID: 10015 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 1960.883521] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1960.885759] Call Trace: [ 1960.886468] dump_stack+0x107/0x167 05:56:57 executing program 2: fork() (fail_nth: 22) [ 1960.887439] should_fail.cold+0x5/0xa [ 1960.888556] ? create_object.isra.0+0x3a/0xa30 [ 1960.889528] should_failslab+0x5/0x20 [ 1960.890329] kmem_cache_alloc+0x5b/0x310 [ 1960.891192] create_object.isra.0+0x3a/0xa30 [ 1960.892117] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 05:56:57 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) (fail_nth: 2) [ 1960.893207] kmem_cache_alloc_trace+0x151/0x320 [ 1960.894271] io_uring_setup+0x258/0x2980 [ 1960.895156] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1960.896190] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1960.897269] ? wait_for_completion_io+0x270/0x270 [ 1960.898333] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1960.899443] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1960.900551] do_syscall_64+0x33/0x40 [ 1960.901362] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1960.902380] FAULT_INJECTION: forcing a failure. [ 1960.902380] name failslab, interval 1, probability 0, space 0, times 0 [ 1960.902452] RIP: 0033:0x7f530d0e5b19 [ 1960.902478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1960.909486] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1960.911052] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 1960.912523] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 1960.913975] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1960.915422] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 1960.916945] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 1960.918440] CPU: 1 PID: 10020 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1960.919985] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1960.921750] Call Trace: [ 1960.922305] dump_stack+0x107/0x167 [ 1960.923073] should_fail.cold+0x5/0xa [ 1960.923875] ? copy_process+0x1c65/0x78b0 [ 1960.924768] should_failslab+0x5/0x20 [ 1960.925579] kmem_cache_alloc+0x5b/0x310 [ 1960.926433] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1960.927540] copy_process+0x1c65/0x78b0 [ 1960.928376] ? __lock_acquire+0xbb1/0x5b00 [ 1960.929267] ? __cleanup_sighand+0xb0/0xb0 [ 1960.930168] ? lock_acquire+0x197/0x470 [ 1960.931004] ? find_held_lock+0x2c/0x110 [ 1960.931861] kernel_clone+0xe7/0x980 [ 1960.932663] ? lock_downgrade+0x6d0/0x6d0 [ 1960.933544] ? find_held_lock+0x2c/0x110 [ 1960.934401] ? create_io_thread+0xf0/0xf0 [ 1960.935287] ? ksys_write+0x12d/0x260 [ 1960.936086] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1960.937139] __do_sys_fork+0x8a/0xc0 [ 1960.937320] FAULT_INJECTION: forcing a failure. [ 1960.937320] name failslab, interval 1, probability 0, space 0, times 0 [ 1960.937937] ? kernel_thread+0xf0/0xf0 [ 1960.937977] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1960.942229] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1960.943322] ? trace_hardirqs_on+0x5b/0x180 [ 1960.944236] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1960.945325] do_syscall_64+0x33/0x40 [ 1960.946106] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1960.947191] RIP: 0033:0x7f22e1959b19 [ 1960.947968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1960.951882] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1960.953483] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1960.955009] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1960.956519] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1960.958026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1960.959516] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:56:57 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x80ffff) [ 1960.961042] CPU: 0 PID: 10023 Comm: syz-executor.7 Not tainted 5.10.254 #1 [ 1960.962597] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1960.964344] Call Trace: [ 1960.964945] dump_stack+0x107/0x167 [ 1960.965720] should_fail.cold+0x5/0xa [ 1960.966546] ? create_object.isra.0+0x3a/0xa30 [ 1960.967525] should_failslab+0x5/0x20 [ 1960.968338] kmem_cache_alloc+0x5b/0x310 [ 1960.969218] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1960.970392] create_object.isra.0+0x3a/0xa30 [ 1960.971312] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1960.972374] kmem_cache_alloc+0x159/0x310 [ 1960.973269] security_file_alloc+0x34/0x170 [ 1960.974174] __alloc_file+0xb7/0x320 [ 1960.974962] alloc_empty_file+0x6d/0x170 [ 1960.975821] alloc_file+0x5e/0x5a0 [ 1960.976587] alloc_file_pseudo+0x16a/0x250 [ 1960.977484] ? alloc_file+0x5a0/0x5a0 [ 1960.978294] ? ctx_sched_out+0xa00/0xa00 [ 1960.979162] anon_inode_getfile+0xc8/0x1f0 [ 1960.980063] __do_sys_perf_event_open+0xf59/0x2e60 [ 1960.981118] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1960.982147] ? perf_event_set_output+0x5b0/0x5b0 [ 1960.983144] ? wait_for_completion_io+0x270/0x270 [ 1960.984192] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1960.985317] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1960.986427] do_syscall_64+0x33/0x40 [ 1960.987221] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1960.988305] RIP: 0033:0x7f6a5fc12b19 [ 1960.989114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1960.993052] RSP: 002b:00007f6a5d188188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1960.994670] RAX: ffffffffffffffda RBX: 00007f6a5fd25f60 RCX: 00007f6a5fc12b19 [ 1960.996183] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1960.997709] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1960.999234] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000002 [ 1961.000744] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 05:56:57 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1961.031180] FAULT_INJECTION: forcing a failure. [ 1961.031180] name failslab, interval 1, probability 0, space 0, times 0 [ 1961.033639] CPU: 1 PID: 10021 Comm: syz-executor.4 Not tainted 5.10.254 #1 [ 1961.035120] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1961.036898] Call Trace: [ 1961.037473] dump_stack+0x107/0x167 [ 1961.038238] should_fail.cold+0x5/0xa [ 1961.039048] ? create_object.isra.0+0x3a/0xa30 [ 1961.040013] should_failslab+0x5/0x20 [ 1961.040830] kmem_cache_alloc+0x5b/0x310 [ 1961.041700] create_object.isra.0+0x3a/0xa30 [ 1961.042627] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1961.043714] kmem_cache_alloc+0x159/0x310 [ 1961.044615] vm_area_dup+0x78/0x290 [ 1961.045380] ? mark_lock+0xf5/0x2df0 [ 1961.046165] ? mark_lock+0xf5/0x2df0 [ 1961.046961] ? lock_chain_count+0x20/0x20 [ 1961.047826] ? avc_has_extended_perms+0xf40/0xf40 [ 1961.048852] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1961.049838] ? lock_downgrade+0x6d0/0x6d0 [ 1961.050717] ? __lock_acquire+0x1657/0x5b00 [ 1961.051635] ? vm_area_alloc+0x110/0x110 [ 1961.052500] ? __lock_acquire+0x1657/0x5b00 [ 1961.053431] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1961.054559] ? vmacache_find+0x55/0x2a0 [ 1961.055396] __split_vma+0xa8/0x4e0 [ 1961.056169] __do_munmap+0xfae/0x1260 [ 1961.056976] ? arch_get_unmapped_area+0x450/0x450 [ 1961.057991] ? lock_release+0x680/0x680 [ 1961.058842] mmap_region+0x7cc/0x1500 [ 1961.059664] do_mmap+0x868/0x1370 [ 1961.060401] vm_mmap_pgoff+0x198/0x1f0 [ 1961.061232] ? randomize_page+0xb0/0xb0 [ 1961.062088] ksys_mmap_pgoff+0x41c/0x560 [ 1961.062937] ? find_mergeable_anon_vma+0x250/0x250 [ 1961.063988] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1961.065105] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1961.066196] do_syscall_64+0x33/0x40 [ 1961.066980] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1961.068055] RIP: 0033:0x7fa2ae602b19 [ 1961.068845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1961.072724] RSP: 002b:00007fa2abb78188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1961.074316] RAX: ffffffffffffffda RBX: 00007fa2ae715f60 RCX: 00007fa2ae602b19 [ 1961.075878] RDX: 000000000100000d RSI: 0000000000c00000 RDI: 0000000020000000 [ 1961.077419] RBP: 00007fa2abb781d0 R08: 0000000000000003 R09: 0000000000000000 [ 1961.078927] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000001 [ 1961.080441] R13: 00007fff398c10ff R14: 00007fa2abb78300 R15: 0000000000022000 [ 1961.120917] FAULT_INJECTION: forcing a failure. [ 1961.120917] name failslab, interval 1, probability 0, space 0, times 0 05:56:57 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 4) 05:56:57 executing program 2: fork() (fail_nth: 23) 05:56:57 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x1000000) [ 1961.123389] CPU: 1 PID: 10034 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1961.125096] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1961.126845] Call Trace: [ 1961.127410] dump_stack+0x107/0x167 [ 1961.128187] should_fail.cold+0x5/0xa [ 1961.129015] ? create_object.isra.0+0x3a/0xa30 [ 1961.129976] should_failslab+0x5/0x20 [ 1961.130779] kmem_cache_alloc+0x5b/0x310 [ 1961.131633] create_object.isra.0+0x3a/0xa30 [ 1961.132607] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1961.133680] kmem_cache_alloc+0x159/0x310 [ 1961.134542] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1961.135634] copy_process+0x1c65/0x78b0 [ 1961.136350] FAULT_INJECTION: forcing a failure. [ 1961.136350] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1961.136546] ? __lock_acquire+0xbb1/0x5b00 [ 1961.139899] ? __cleanup_sighand+0xb0/0xb0 [ 1961.140808] ? lock_acquire+0x197/0x470 [ 1961.141654] ? find_held_lock+0x2c/0x110 [ 1961.142525] kernel_clone+0xe7/0x980 [ 1961.143317] ? lock_downgrade+0x6d0/0x6d0 [ 1961.144180] ? find_held_lock+0x2c/0x110 [ 1961.145035] ? create_io_thread+0xf0/0xf0 [ 1961.145920] ? ksys_write+0x12d/0x260 [ 1961.146720] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1961.147790] __do_sys_fork+0x8a/0xc0 [ 1961.148573] ? kernel_thread+0xf0/0xf0 [ 1961.149410] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1961.150517] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1961.151604] ? trace_hardirqs_on+0x5b/0x180 [ 1961.152517] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1961.153605] do_syscall_64+0x33/0x40 [ 1961.154393] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1961.155511] RIP: 0033:0x7f22e1959b19 [ 1961.156295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1961.160213] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1961.161853] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1961.163374] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1961.164915] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1961.166427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1961.167939] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 1961.169452] CPU: 0 PID: 10035 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 1961.170955] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1961.172732] Call Trace: [ 1961.173302] dump_stack+0x107/0x167 [ 1961.174078] should_fail.cold+0x5/0xa [ 1961.174893] __alloc_pages_nodemask+0x182/0x600 [ 1961.175891] ? lock_release+0x680/0x680 [ 1961.176724] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 1961.178009] ? lock_downgrade+0x6d0/0x6d0 [ 1961.178904] alloc_pages_current+0x187/0x280 [ 1961.179815] kmalloc_order+0x35/0x160 [ 1961.180627] kmalloc_order_trace+0x14/0xa0 [ 1961.181505] io_uring_setup+0x33c/0x2980 [ 1961.182342] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1961.183361] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1961.184433] ? wait_for_completion_io+0x270/0x270 [ 1961.184483] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1961.184503] ? syscall_enter_from_user_mode+0x1d/0x50 05:56:57 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000060) [ 1961.184525] do_syscall_64+0x33/0x40 [ 1961.184544] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1961.184557] RIP: 0033:0x7f530d0e5b19 05:56:57 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) (fail_nth: 3) [ 1961.184574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 05:56:57 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 16) 05:56:57 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x2000000) [ 1961.184585] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1961.184604] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 1961.184615] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 1961.184626] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1961.184636] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 1961.184647] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 05:56:57 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1961.260865] FAULT_INJECTION: forcing a failure. [ 1961.260865] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1961.263481] CPU: 1 PID: 10041 Comm: syz-executor.7 Not tainted 5.10.254 #1 [ 1961.264960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1961.266707] Call Trace: [ 1961.267253] dump_stack+0x107/0x167 [ 1961.268006] should_fail.cold+0x5/0xa [ 1961.268829] _copy_to_user+0x2e/0x180 [ 1961.269639] simple_read_from_buffer+0xcc/0x160 [ 1961.270643] proc_fail_nth_read+0x198/0x230 [ 1961.271570] ? proc_sessionid_read+0x230/0x230 [ 1961.272539] ? security_file_permission+0xb1/0xe0 [ 1961.273566] ? proc_sessionid_read+0x230/0x230 [ 1961.274525] vfs_read+0x228/0x620 [ 1961.275258] ksys_read+0x12d/0x260 [ 1961.276002] ? vfs_write+0xb10/0xb10 [ 1961.276802] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1961.277898] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1961.279003] do_syscall_64+0x33/0x40 [ 1961.279777] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1961.280871] RIP: 0033:0x7f6a5fbc569c [ 1961.281676] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1961.285466] RSP: 002b:00007f6a5d188170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1961.287070] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007f6a5fbc569c [ 1961.288596] RDX: 000000000000000f RSI: 00007f6a5d1881e0 RDI: 0000000000000003 [ 1961.290107] RBP: 00007f6a5d1881d0 R08: 0000000000000000 R09: 0000000000000000 [ 1961.291614] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000002 [ 1961.293109] R13: 00007ffc77fcb77f R14: 00007f6a5d188300 R15: 0000000000022000 [ 1961.432759] FAULT_INJECTION: forcing a failure. [ 1961.432759] name failslab, interval 1, probability 0, space 0, times 0 [ 1961.435268] CPU: 0 PID: 10051 Comm: syz-executor.4 Not tainted 5.10.254 #1 [ 1961.436757] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1961.438530] Call Trace: [ 1961.439113] dump_stack+0x107/0x167 [ 1961.439888] should_fail.cold+0x5/0xa [ 1961.440708] ? anon_vma_clone+0xdc/0x590 [ 1961.441574] should_failslab+0x5/0x20 [ 1961.442386] kmem_cache_alloc+0x5b/0x310 [ 1961.443255] anon_vma_clone+0xdc/0x590 [ 1961.444084] __split_vma+0x17c/0x4e0 [ 1961.444887] __do_munmap+0xfae/0x1260 [ 1961.445708] ? arch_get_unmapped_area+0x450/0x450 [ 1961.446737] ? lock_release+0x680/0x680 [ 1961.447579] mmap_region+0x7cc/0x1500 [ 1961.448401] do_mmap+0x868/0x1370 [ 1961.449171] vm_mmap_pgoff+0x198/0x1f0 [ 1961.450005] ? randomize_page+0xb0/0xb0 [ 1961.450863] ksys_mmap_pgoff+0x41c/0x560 [ 1961.451706] ? find_mergeable_anon_vma+0x250/0x250 [ 1961.452759] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1961.453882] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1961.454964] do_syscall_64+0x33/0x40 [ 1961.455755] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1961.456848] RIP: 0033:0x7fa2ae602b19 [ 1961.457635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1961.461535] RSP: 002b:00007fa2abb78188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1961.463130] RAX: ffffffffffffffda RBX: 00007fa2ae715f60 RCX: 00007fa2ae602b19 [ 1961.464647] RDX: 000000000100000d RSI: 0000000000c00000 RDI: 0000000020000000 [ 1961.466176] RBP: 00007fa2abb781d0 R08: 0000000000000003 R09: 0000000000000000 [ 1961.467696] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000001 [ 1961.469229] R13: 00007fff398c10ff R14: 00007fa2abb78300 R15: 0000000000022000 05:57:11 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) (fail_nth: 4) 05:57:11 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 5) 05:57:11 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:11 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x3000000) 05:57:11 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r4, 0x10, r2, 0x8) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r5, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r5, 0x0) open_tree(r5, &(0x7f0000000040)='./file0\x00', 0x89801) creat(&(0x7f0000000240)='./file0\x00', 0x24) perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0xff, 0x9, 0x2, 0x2, 0x0, 0x1000, 0x10001, 0xc, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x40000000, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x4000, 0x7, 0x7, 0x2, 0x2, 0x1f, 0x8, 0x0, 0x7, 0x0, 0x100000000}, r4, 0x2, r5, 0x1) r6 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r7, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x5, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xac18, 0x100000000, 0x6, 0x3, 0x2, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r8, 0x10, r6, 0x8) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x40, 0x53, 0x4, 0x1f, 0x0, 0xd06, 0x11800, 0x3, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x3ff, 0x0, @perf_config_ext={0x1, 0x2}, 0x10, 0x3, 0x4, 0x4, 0x401, 0x34e5, 0x0, 0x0, 0x7, 0x0, 0x6}, r8, 0x2, 0xffffffffffffffff, 0x8) dup2(r1, r0) 05:57:11 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:11 executing program 2: fork() (fail_nth: 24) [ 1975.289473] FAULT_INJECTION: forcing a failure. [ 1975.289473] name failslab, interval 1, probability 0, space 0, times 0 [ 1975.291936] CPU: 1 PID: 10069 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1975.293437] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1975.295248] Call Trace: [ 1975.295816] dump_stack+0x107/0x167 [ 1975.296608] should_fail.cold+0x5/0xa [ 1975.297428] ? copy_process+0x1c65/0x78b0 [ 1975.298314] should_failslab+0x5/0x20 [ 1975.299135] kmem_cache_alloc+0x5b/0x310 [ 1975.299998] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1975.301127] copy_process+0x1c65/0x78b0 [ 1975.301984] ? __lock_acquire+0xbb1/0x5b00 [ 1975.302891] ? __cleanup_sighand+0xb0/0xb0 [ 1975.303798] ? lock_acquire+0x197/0x470 [ 1975.304653] ? find_held_lock+0x2c/0x110 [ 1975.305527] kernel_clone+0xe7/0x980 [ 1975.306328] ? lock_downgrade+0x6d0/0x6d0 [ 1975.307208] ? find_held_lock+0x2c/0x110 [ 1975.308070] ? create_io_thread+0xf0/0xf0 [ 1975.308968] ? ksys_write+0x12d/0x260 [ 1975.309801] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1975.309829] __do_sys_fork+0x8a/0xc0 05:57:11 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000300) [ 1975.309847] ? kernel_thread+0xf0/0xf0 [ 1975.309881] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1975.309902] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1975.309917] ? trace_hardirqs_on+0x5b/0x180 [ 1975.309940] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1975.309957] do_syscall_64+0x33/0x40 [ 1975.309977] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1975.309990] RIP: 0033:0x7f22e1959b19 [ 1975.310008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 05:57:11 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 6) 05:57:11 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1975.310018] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1975.310039] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 05:57:11 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) (fail_nth: 5) [ 1975.310049] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1975.310060] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 05:57:11 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x4000000) 05:57:11 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000500) [ 1975.310070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1975.310081] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 1975.311100] FAULT_INJECTION: forcing a failure. [ 1975.311100] name failslab, interval 1, probability 0, space 0, times 0 [ 1975.311126] CPU: 0 PID: 10062 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 1975.311141] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 05:57:11 executing program 2: fork() (fail_nth: 25) 05:57:11 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1975.311147] Call Trace: [ 1975.311183] dump_stack+0x107/0x167 [ 1975.311204] should_fail.cold+0x5/0xa [ 1975.311225] ? create_object.isra.0+0x3a/0xa30 [ 1975.311242] should_failslab+0x5/0x20 [ 1975.311261] kmem_cache_alloc+0x5b/0x310 [ 1975.311285] create_object.isra.0+0x3a/0xa30 05:57:11 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 7) 05:57:11 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1975.311299] ? kasan_unpoison_shadow+0x33/0x50 [ 1975.311318] kmalloc_order+0xfe/0x160 [ 1975.311338] kmalloc_order_trace+0x14/0xa0 [ 1975.311360] io_uring_setup+0x33c/0x2980 [ 1975.311380] ? __mutex_unlock_slowpath+0xe1/0x600 05:57:11 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000600) [ 1975.311402] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1975.311416] ? wait_for_completion_io+0x270/0x270 [ 1975.311457] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1975.311488] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1975.311510] do_syscall_64+0x33/0x40 [ 1975.311528] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1975.311552] RIP: 0033:0x7f530d0e5b19 [ 1975.311574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1975.311588] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1975.311609] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 1975.311619] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 1975.311630] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1975.311640] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 1975.311650] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 1975.327716] FAULT_INJECTION: forcing a failure. [ 1975.327716] name failslab, interval 1, probability 0, space 0, times 0 [ 1975.327737] CPU: 1 PID: 10072 Comm: syz-executor.4 Not tainted 5.10.254 #1 [ 1975.327747] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1975.327753] Call Trace: [ 1975.327777] dump_stack+0x107/0x167 [ 1975.327799] should_fail.cold+0x5/0xa [ 1975.327825] ? create_object.isra.0+0x3a/0xa30 [ 1975.327844] should_failslab+0x5/0x20 [ 1975.327864] kmem_cache_alloc+0x5b/0x310 [ 1975.327888] create_object.isra.0+0x3a/0xa30 [ 1975.327904] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1975.327929] kmem_cache_alloc+0x159/0x310 [ 1975.327954] anon_vma_clone+0xdc/0x590 [ 1975.327981] __split_vma+0x17c/0x4e0 [ 1975.328002] __do_munmap+0xfae/0x1260 [ 1975.328023] ? arch_get_unmapped_area+0x450/0x450 [ 1975.328044] ? lock_release+0x680/0x680 [ 1975.328064] mmap_region+0x7cc/0x1500 [ 1975.328096] do_mmap+0x868/0x1370 [ 1975.328123] vm_mmap_pgoff+0x198/0x1f0 [ 1975.328154] ? randomize_page+0xb0/0xb0 [ 1975.328186] ksys_mmap_pgoff+0x41c/0x560 [ 1975.328206] ? find_mergeable_anon_vma+0x250/0x250 [ 1975.328229] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1975.328250] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1975.328272] do_syscall_64+0x33/0x40 [ 1975.328291] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1975.328303] RIP: 0033:0x7fa2ae602b19 [ 1975.328321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1975.328331] RSP: 002b:00007fa2abb78188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1975.328350] RAX: ffffffffffffffda RBX: 00007fa2ae715f60 RCX: 00007fa2ae602b19 [ 1975.328361] RDX: 000000000100000d RSI: 0000000000c00000 RDI: 0000000020000000 [ 1975.328371] RBP: 00007fa2abb781d0 R08: 0000000000000003 R09: 0000000000000000 [ 1975.328382] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000001 [ 1975.328393] R13: 00007fff398c10ff R14: 00007fa2abb78300 R15: 0000000000022000 [ 1975.441308] FAULT_INJECTION: forcing a failure. [ 1975.441308] name failslab, interval 1, probability 0, space 0, times 0 [ 1975.441328] CPU: 0 PID: 10081 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 1975.441337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1975.441343] Call Trace: [ 1975.441369] dump_stack+0x107/0x167 [ 1975.441390] should_fail.cold+0x5/0xa [ 1975.441421] ? io_uring_setup+0x40b/0x2980 [ 1975.441440] should_failslab+0x5/0x20 [ 1975.441459] kmem_cache_alloc_trace+0x55/0x320 [ 1975.441483] io_uring_setup+0x40b/0x2980 [ 1975.441503] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1975.441525] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1975.441540] ? wait_for_completion_io+0x270/0x270 [ 1975.441586] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1975.441606] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1975.441634] do_syscall_64+0x33/0x40 [ 1975.441658] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1975.441674] RIP: 0033:0x7f530d0e5b19 [ 1975.441692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1975.441701] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1975.441721] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 1975.441732] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 1975.441742] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1975.441752] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 1975.441763] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 1975.461474] FAULT_INJECTION: forcing a failure. [ 1975.461474] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1975.461493] CPU: 0 PID: 10084 Comm: syz-executor.4 Not tainted 5.10.254 #1 [ 1975.461502] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1975.461508] Call Trace: [ 1975.461527] dump_stack+0x107/0x167 [ 1975.461557] should_fail.cold+0x5/0xa [ 1975.461581] __alloc_pages_nodemask+0x182/0x600 [ 1975.461607] ? mark_held_locks+0x9e/0xe0 [ 1975.461630] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 1975.461655] ? kmem_cache_free+0xa7/0x2d0 [ 1975.461681] alloc_pages_current+0x187/0x280 [ 1975.461700] __get_free_pages+0xc/0xa0 [ 1975.461714] ? kmem_cache_free+0x249/0x2d0 [ 1975.461729] tlb_remove_table+0x3d5/0xcc0 [ 1975.461755] ___pte_free_tlb+0x86/0xb0 [ 1975.461776] free_pgd_range+0x747/0x1380 [ 1975.461818] free_pgtables+0x230/0x2f0 [ 1975.461840] unmap_region+0x308/0x400 [ 1975.461860] ? find_vma+0x180/0x180 [ 1975.461890] ? __vma_rb_erase+0x775/0xfa0 [ 1975.461917] __do_munmap+0x891/0x1260 [ 1975.461947] mmap_region+0x7cc/0x1500 [ 1975.461979] do_mmap+0x868/0x1370 [ 1975.462006] vm_mmap_pgoff+0x198/0x1f0 [ 1975.462029] ? randomize_page+0xb0/0xb0 [ 1975.462061] ksys_mmap_pgoff+0x41c/0x560 [ 1975.462082] ? find_mergeable_anon_vma+0x250/0x250 [ 1975.462106] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1975.462131] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1975.462158] do_syscall_64+0x33/0x40 [ 1975.462177] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1975.462189] RIP: 0033:0x7fa2ae602b19 [ 1975.462205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1975.462215] RSP: 002b:00007fa2abb78188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1975.462235] RAX: ffffffffffffffda RBX: 00007fa2ae715f60 RCX: 00007fa2ae602b19 [ 1975.462245] RDX: 000000000100000d RSI: 0000000000c00000 RDI: 0000000020000000 [ 1975.462255] RBP: 00007fa2abb781d0 R08: 0000000000000003 R09: 0000000000000000 [ 1975.462265] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000001 [ 1975.462276] R13: 00007fff398c10ff R14: 00007fa2abb78300 R15: 0000000000022000 [ 1975.563671] FAULT_INJECTION: forcing a failure. [ 1975.563671] name failslab, interval 1, probability 0, space 0, times 0 [ 1975.563692] CPU: 1 PID: 10091 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1975.563702] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1975.563708] Call Trace: [ 1975.563734] dump_stack+0x107/0x167 [ 1975.563756] should_fail.cold+0x5/0xa [ 1975.563777] ? create_object.isra.0+0x3a/0xa30 [ 1975.563795] should_failslab+0x5/0x20 [ 1975.563814] kmem_cache_alloc+0x5b/0x310 [ 1975.563838] create_object.isra.0+0x3a/0xa30 [ 1975.563853] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1975.563877] kmem_cache_alloc+0x159/0x310 [ 1975.563901] copy_process+0x2514/0x78b0 [ 1975.563926] ? __lock_acquire+0xbb1/0x5b00 [ 1975.563964] ? __cleanup_sighand+0xb0/0xb0 [ 1975.563991] ? lock_acquire+0x197/0x470 [ 1975.564016] ? find_held_lock+0x2c/0x110 [ 1975.564038] kernel_clone+0xe7/0x980 [ 1975.564056] ? lock_downgrade+0x6d0/0x6d0 [ 1975.564072] ? find_held_lock+0x2c/0x110 [ 1975.564089] ? create_io_thread+0xf0/0xf0 [ 1975.564106] ? ksys_write+0x12d/0x260 [ 1975.564132] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1975.564157] __do_sys_fork+0x8a/0xc0 [ 1975.564174] ? kernel_thread+0xf0/0xf0 [ 1975.564206] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1975.564226] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1975.564241] ? trace_hardirqs_on+0x5b/0x180 [ 1975.564262] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1975.564278] do_syscall_64+0x33/0x40 [ 1975.564298] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1975.564310] RIP: 0033:0x7f22e1959b19 [ 1975.564327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1975.564337] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1975.564357] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1975.564367] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1975.564377] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1975.564387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1975.564397] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 1975.591457] FAULT_INJECTION: forcing a failure. [ 1975.591457] name failslab, interval 1, probability 0, space 0, times 0 [ 1975.591477] CPU: 0 PID: 10096 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 1975.591488] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1975.591493] Call Trace: [ 1975.591519] dump_stack+0x107/0x167 [ 1975.591549] should_fail.cold+0x5/0xa [ 1975.591570] ? create_object.isra.0+0x3a/0xa30 [ 1975.591587] should_failslab+0x5/0x20 [ 1975.591606] kmem_cache_alloc+0x5b/0x310 [ 1975.591629] create_object.isra.0+0x3a/0xa30 [ 1975.591645] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1975.591669] kmem_cache_alloc_trace+0x151/0x320 [ 1975.591695] io_uring_setup+0x40b/0x2980 [ 1975.591715] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1975.591737] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1975.591752] ? wait_for_completion_io+0x270/0x270 [ 1975.591792] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1975.591811] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1975.591832] do_syscall_64+0x33/0x40 [ 1975.591851] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1975.591863] RIP: 0033:0x7f530d0e5b19 [ 1975.591881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1975.591895] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1975.591921] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 1975.591935] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 1975.591948] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1975.591958] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 1975.591968] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 1989.936237] FAULT_INJECTION: forcing a failure. [ 1989.936237] name failslab, interval 1, probability 0, space 0, times 0 [ 1989.937791] CPU: 1 PID: 10111 Comm: syz-executor.4 Not tainted 5.10.254 #1 [ 1989.938650] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1989.939670] Call Trace: [ 1989.940006] dump_stack+0x107/0x167 [ 1989.940456] should_fail.cold+0x5/0xa [ 1989.940940] ? vm_area_alloc+0x1c/0x110 [ 1989.941435] should_failslab+0x5/0x20 [ 1989.941906] kmem_cache_alloc+0x5b/0x310 [ 1989.942425] vm_area_alloc+0x1c/0x110 [ 1989.942906] mmap_region+0x982/0x1500 [ 1989.943357] do_mmap+0x868/0x1370 [ 1989.943774] vm_mmap_pgoff+0x198/0x1f0 [ 1989.944254] ? randomize_page+0xb0/0xb0 [ 1989.944766] ksys_mmap_pgoff+0x41c/0x560 [ 1989.945267] ? find_mergeable_anon_vma+0x250/0x250 [ 1989.945880] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1989.946530] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1989.947167] do_syscall_64+0x33/0x40 [ 1989.947643] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1989.948277] RIP: 0033:0x7fa2ae602b19 [ 1989.948782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1989.951024] RSP: 002b:00007fa2abb78188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1989.951965] RAX: ffffffffffffffda RBX: 00007fa2ae715f60 RCX: 00007fa2ae602b19 [ 1989.952852] RDX: 000000000100000d RSI: 0000000000c00000 RDI: 0000000020000000 [ 1989.953736] RBP: 00007fa2abb781d0 R08: 0000000000000003 R09: 0000000000000000 [ 1989.954620] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000001 [ 1989.955527] R13: 00007fff398c10ff R14: 00007fa2abb78300 R15: 0000000000022000 05:57:26 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:26 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x5000000) 05:57:26 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = syz_io_uring_complete(0x0) perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x0, 0x7f, 0x20, 0x5, 0x0, 0x9, 0x8000, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x7f, 0x0, @perf_bp={&(0x7f0000000080)}, 0x44020, 0x0, 0xfffffffc, 0x7, 0x5, 0x0, 0x56a, 0x0, 0xa0d, 0x0, 0x400000005}, 0x0, 0xd, r2, 0x8) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r3, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r3, 0x0) open_tree(r3, &(0x7f0000000040)='./file0\x00', 0x89801) fcntl$getflags(r3, 0x1) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f00001a6000/0x3000)=nil, 0x3000, 0x2000000, 0x4010, r2, 0x0) syz_io_uring_submit(r4, 0x0, &(0x7f0000000440)=@IORING_OP_RECVMSG={0xa, 0x5, 0x0, r1, 0x0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000001c0)=""/122, 0x7a}, {&(0x7f0000000240)=""/18, 0x12}, {&(0x7f0000000280)=""/63, 0x3f}], 0x3, &(0x7f0000000300)=""/227, 0xe3}, 0x0, 0x0, 0x0, {0x3}}, 0x1ff) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000180)={0xffffffff, 0x0, 0xc1}) dup2(r1, r0) 05:57:26 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000700) 05:57:26 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 8) 05:57:26 executing program 7: perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:26 executing program 2: fork() (fail_nth: 26) 05:57:26 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) (fail_nth: 6) [ 1989.961974] FAULT_INJECTION: forcing a failure. [ 1989.961974] name failslab, interval 1, probability 0, space 0, times 0 [ 1989.963368] CPU: 1 PID: 10118 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 1989.964209] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1989.965238] Call Trace: [ 1989.965564] dump_stack+0x107/0x167 [ 1989.966029] should_fail.cold+0x5/0xa [ 1989.966498] ? create_object.isra.0+0x3a/0xa30 [ 1989.967052] should_failslab+0x5/0x20 [ 1989.967523] kmem_cache_alloc+0x5b/0x310 [ 1989.968017] create_object.isra.0+0x3a/0xa30 [ 1989.968551] kmemleak_alloc_percpu+0xa0/0x100 [ 1989.969110] pcpu_alloc+0x4e2/0x1240 [ 1989.969580] ? io_tctx_exit_cb+0xf0/0xf0 [ 1989.970073] percpu_ref_init+0x31/0x3d0 [ 1989.970559] io_uring_setup+0x47a/0x2980 [ 1989.971050] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1989.971638] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1989.972251] ? wait_for_completion_io+0x270/0x270 [ 1989.972858] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1989.973491] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1989.974118] do_syscall_64+0x33/0x40 [ 1989.974568] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1989.975193] RIP: 0033:0x7f530d0e5b19 [ 1989.975643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1989.977902] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1989.978822] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 1989.979688] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 1989.980553] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1989.981427] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 1989.982289] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 1990.008918] FAULT_INJECTION: forcing a failure. [ 1990.008918] name failslab, interval 1, probability 0, space 0, times 0 [ 1990.011299] CPU: 0 PID: 10120 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 1990.012733] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1990.014458] Call Trace: [ 1990.015017] dump_stack+0x107/0x167 [ 1990.015780] should_fail.cold+0x5/0xa [ 1990.016561] ? copy_process+0x2514/0x78b0 [ 1990.017432] should_failslab+0x5/0x20 [ 1990.018211] kmem_cache_alloc+0x5b/0x310 [ 1990.019049] copy_process+0x2514/0x78b0 [ 1990.019880] ? __lock_acquire+0xbb1/0x5b00 [ 1990.020821] ? __cleanup_sighand+0xb0/0xb0 [ 1990.021704] ? lock_acquire+0x197/0x470 [ 1990.022565] ? find_held_lock+0x2c/0x110 [ 1990.023394] kernel_clone+0xe7/0x980 [ 1990.024198] ? lock_downgrade+0x6d0/0x6d0 [ 1990.025052] ? find_held_lock+0x2c/0x110 [ 1990.025905] ? create_io_thread+0xf0/0xf0 [ 1990.026757] ? ksys_write+0x12d/0x260 [ 1990.027562] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1990.028543] __do_sys_fork+0x8a/0xc0 [ 1990.029315] ? kernel_thread+0xf0/0xf0 [ 1990.030126] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1990.031249] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1990.032297] ? trace_hardirqs_on+0x5b/0x180 [ 1990.033236] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1990.034275] do_syscall_64+0x33/0x40 [ 1990.035080] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1990.036124] RIP: 0033:0x7f22e1959b19 [ 1990.036895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1990.041064] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1990.042935] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 1990.044653] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1990.046408] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1990.048168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1990.049920] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:57:26 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x6000000) 05:57:26 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 9) [ 1990.086097] FAULT_INJECTION: forcing a failure. [ 1990.086097] name failslab, interval 1, probability 0, space 0, times 0 [ 1990.087439] CPU: 1 PID: 10129 Comm: syz-executor.4 Not tainted 5.10.254 #1 [ 1990.088244] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1990.089211] Call Trace: [ 1990.089525] dump_stack+0x107/0x167 [ 1990.089955] should_fail.cold+0x5/0xa [ 1990.090405] ? create_object.isra.0+0x3a/0xa30 [ 1990.090940] should_failslab+0x5/0x20 05:57:26 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) (fail_nth: 7) [ 1990.091384] kmem_cache_alloc+0x5b/0x310 [ 1990.091979] create_object.isra.0+0x3a/0xa30 [ 1990.092491] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1990.093096] kmem_cache_alloc+0x159/0x310 [ 1990.093586] vm_area_alloc+0x1c/0x110 [ 1990.094029] mmap_region+0x982/0x1500 [ 1990.094474] do_mmap+0x868/0x1370 [ 1990.094888] vm_mmap_pgoff+0x198/0x1f0 [ 1990.095337] ? randomize_page+0xb0/0xb0 [ 1990.095805] ksys_mmap_pgoff+0x41c/0x560 [ 1990.096276] ? find_mergeable_anon_vma+0x250/0x250 [ 1990.096835] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1990.097448] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1990.098052] do_syscall_64+0x33/0x40 [ 1990.098485] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1990.099077] RIP: 0033:0x7fa2ae602b19 [ 1990.099511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1990.101663] RSP: 002b:00007fa2abb78188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1990.102542] RAX: ffffffffffffffda RBX: 00007fa2ae715f60 RCX: 00007fa2ae602b19 [ 1990.103370] RDX: 000000000100000d RSI: 0000000000c00000 RDI: 0000000020000000 [ 1990.104198] RBP: 00007fa2abb781d0 R08: 0000000000000003 R09: 0000000000000000 [ 1990.105027] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000001 [ 1990.105854] R13: 00007fff398c10ff R14: 00007fa2abb78300 R15: 0000000000022000 05:57:26 executing program 7: perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 1990.115323] FAULT_INJECTION: forcing a failure. [ 1990.115323] name failslab, interval 1, probability 0, space 0, times 0 [ 1990.117273] CPU: 0 PID: 10133 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 1990.118392] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1990.119718] Call Trace: [ 1990.120150] dump_stack+0x107/0x167 [ 1990.120743] should_fail.cold+0x5/0xa [ 1990.121365] ? create_object.isra.0+0x3a/0xa30 [ 1990.122094] should_failslab+0x5/0x20 [ 1990.122703] kmem_cache_alloc+0x5b/0x310 [ 1990.123346] create_object.isra.0+0x3a/0xa30 [ 1990.124059] kmemleak_alloc_percpu+0xa0/0x100 [ 1990.124780] pcpu_alloc+0x4e2/0x1240 [ 1990.125368] ? io_tctx_exit_cb+0xf0/0xf0 [ 1990.126024] percpu_ref_init+0x31/0x3d0 [ 1990.126660] io_uring_setup+0x47a/0x2980 [ 1990.127308] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1990.128070] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1990.128874] ? wait_for_completion_io+0x270/0x270 [ 1990.129653] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1990.130497] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1990.131312] do_syscall_64+0x33/0x40 [ 1990.131894] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1990.132705] RIP: 0033:0x7f530d0e5b19 [ 1990.133305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1990.136194] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1990.137414] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 1990.138547] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 1990.139666] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1990.140799] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 1990.141924] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 05:57:26 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x7000000) 05:57:26 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) sendfile(r0, r1, &(0x7f0000000080)=0x81, 0x5) dup2(r1, r0) 05:57:26 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:26 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8006000) 05:57:26 executing program 7: perf_event_open(&(0x7f0000000000)={0xa, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:26 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x8000000) 05:57:38 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 10) 05:57:38 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x10000000) 05:57:38 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) (fail_nth: 8) 05:57:38 executing program 7: perf_event_open(&(0x7f0000000000)={0x18, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:38 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:38 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x4, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x9, &(0x7f0000000100)=0x4, 0x4) dup2(r1, r0) 05:57:38 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x10000000) 05:57:38 executing program 2: fork() (fail_nth: 27) [ 2002.319876] FAULT_INJECTION: forcing a failure. [ 2002.319876] name failslab, interval 1, probability 0, space 0, times 0 [ 2002.323257] CPU: 1 PID: 10162 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2002.325095] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2002.327285] Call Trace: [ 2002.327990] dump_stack+0x107/0x167 [ 2002.328976] should_fail.cold+0x5/0xa [ 2002.329995] ? vm_area_dup+0x78/0x290 [ 2002.331000] should_failslab+0x5/0x20 [ 2002.331994] kmem_cache_alloc+0x5b/0x310 [ 2002.333075] vm_area_dup+0x78/0x290 05:57:38 executing program 7: perf_event_open(&(0x7f0000000000)={0x300, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2002.334030] ? __lock_acquire+0xbb1/0x5b00 [ 2002.335299] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2002.336654] ? lock_acquire+0x197/0x470 [ 2002.337705] ? copy_process+0x260c/0x78b0 [ 2002.338818] ? vm_area_alloc+0x110/0x110 [ 2002.339880] ? find_held_lock+0x2c/0x110 [ 2002.340946] ? get_mm_exe_file+0x139/0x310 [ 2002.342044] ? lock_downgrade+0x6d0/0x6d0 [ 2002.343118] ? down_write_nested+0xe4/0x160 [ 2002.344230] ? rwsem_down_write_slowpath+0xc30/0xc30 [ 2002.345562] ? get_mm_exe_file+0x162/0x310 [ 2002.346664] copy_process+0x298b/0x78b0 [ 2002.347731] ? __cleanup_sighand+0xb0/0xb0 [ 2002.348861] ? lock_acquire+0x197/0x470 [ 2002.349927] ? find_held_lock+0x2c/0x110 [ 2002.350987] kernel_clone+0xe7/0x980 [ 2002.351953] ? lock_downgrade+0x6d0/0x6d0 [ 2002.353038] ? find_held_lock+0x2c/0x110 [ 2002.354094] ? create_io_thread+0xf0/0xf0 [ 2002.355157] ? ksys_write+0x12d/0x260 [ 2002.356144] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2002.357417] __do_sys_fork+0x8a/0xc0 [ 2002.358383] ? kernel_thread+0xf0/0xf0 [ 2002.359406] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2002.360770] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2002.362118] ? trace_hardirqs_on+0x5b/0x180 [ 2002.363250] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2002.364559] do_syscall_64+0x33/0x40 [ 2002.365546] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2002.366906] RIP: 0033:0x7f22e1959b19 [ 2002.367877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2002.372179] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2002.373826] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2002.375373] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2002.376914] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2002.378446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2002.379991] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2002.385349] FAULT_INJECTION: forcing a failure. [ 2002.385349] name failslab, interval 1, probability 0, space 0, times 0 [ 2002.386750] CPU: 0 PID: 10173 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2002.387576] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2002.388572] Call Trace: [ 2002.388906] dump_stack+0x107/0x167 [ 2002.389348] should_fail.cold+0x5/0xa [ 2002.389808] ? percpu_ref_init+0xd8/0x3d0 [ 2002.390303] should_failslab+0x5/0x20 [ 2002.390760] kmem_cache_alloc_trace+0x55/0x320 [ 2002.391306] ? io_tctx_exit_cb+0xf0/0xf0 [ 2002.391791] percpu_ref_init+0xd8/0x3d0 [ 2002.392268] io_uring_setup+0x47a/0x2980 [ 2002.392754] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2002.393338] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2002.393941] ? wait_for_completion_io+0x270/0x270 [ 2002.394529] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2002.395156] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2002.395772] do_syscall_64+0x33/0x40 [ 2002.396217] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2002.396827] RIP: 0033:0x7f530d0e5b19 [ 2002.397279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2002.399463] RSP: 002b:00007f530a63a108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2002.400370] RAX: ffffffffffffffda RBX: 00007f530d1f9020 RCX: 00007f530d0e5b19 [ 2002.401226] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2002.402075] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2002.402932] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2002.402939] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2002.405996] FAULT_INJECTION: forcing a failure. [ 2002.405996] name failslab, interval 1, probability 0, space 0, times 0 [ 2002.409672] CPU: 0 PID: 10174 Comm: syz-executor.4 Not tainted 5.10.254 #1 [ 2002.410490] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2002.411468] Call Trace: [ 2002.411782] dump_stack+0x107/0x167 [ 2002.412213] should_fail.cold+0x5/0xa [ 2002.412666] ? jbd2__journal_start+0x190/0x7e0 [ 2002.413214] should_failslab+0x5/0x20 [ 2002.413663] kmem_cache_alloc+0x5b/0x310 [ 2002.414145] jbd2__journal_start+0x190/0x7e0 [ 2002.414688] __ext4_journal_start_sb+0x214/0x390 [ 2002.415376] ext4_dirty_inode+0xbc/0x130 [ 2002.415854] ? ext4_setattr+0x22f0/0x22f0 [ 2002.416341] __mark_inode_dirty+0x492/0xd30 [ 2002.416854] touch_atime+0x5ea/0x6e0 [ 2002.417308] ? atime_needs_update+0x600/0x600 [ 2002.417845] ext4_file_mmap+0x1d5/0x250 [ 2002.418314] mmap_file+0x5e/0xe0 [ 2002.418715] mmap_region+0xc4d/0x1500 [ 2002.419172] do_mmap+0x868/0x1370 [ 2002.419588] vm_mmap_pgoff+0x198/0x1f0 [ 2002.420060] ? randomize_page+0xb0/0xb0 [ 2002.420538] ksys_mmap_pgoff+0x41c/0x560 [ 2002.421032] ? find_mergeable_anon_vma+0x250/0x250 [ 2002.421612] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2002.422231] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2002.422840] do_syscall_64+0x33/0x40 [ 2002.423280] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2002.423883] RIP: 0033:0x7fa2ae602b19 [ 2002.424320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2002.426492] RSP: 002b:00007fa2abb78188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2002.427384] RAX: ffffffffffffffda RBX: 00007fa2ae715f60 RCX: 00007fa2ae602b19 [ 2002.428224] RDX: 000000000100000d RSI: 0000000000c00000 RDI: 0000000020000000 [ 2002.429072] RBP: 00007fa2abb781d0 R08: 0000000000000003 R09: 0000000000000000 [ 2002.429904] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000001 [ 2002.430733] R13: 00007fff398c10ff R14: 00007fa2abb78300 R15: 0000000000022000 05:57:38 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:38 executing program 7: perf_event_open(&(0x7f0000000000)={0xa00, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:38 executing program 7: perf_event_open(&(0x7f0000000000)={0x1800, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:38 executing program 7: perf_event_open(&(0x7f0000000000)={0x2000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:38 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 11) 05:57:38 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x40000000) 05:57:38 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r1, 0x7, &(0x7f0000000000), 0x1) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 05:57:38 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) (fail_nth: 9) 05:57:38 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2002.563156] FAULT_INJECTION: forcing a failure. [ 2002.563156] name failslab, interval 1, probability 0, space 0, times 0 [ 2002.565628] CPU: 1 PID: 10190 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2002.567086] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2002.568820] Call Trace: [ 2002.569389] dump_stack+0x107/0x167 [ 2002.570150] should_fail.cold+0x5/0xa [ 2002.570951] ? create_object.isra.0+0x3a/0xa30 [ 2002.571903] should_failslab+0x5/0x20 [ 2002.572693] kmem_cache_alloc+0x5b/0x310 [ 2002.573552] create_object.isra.0+0x3a/0xa30 [ 2002.574482] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 05:57:38 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0xffffd000) open_tree(r2, &(0x7f0000000040)='./file0\x00', 0x89801) fcntl$setlease(r2, 0x400, 0x1) dup2(r1, r0) [ 2002.575540] kmem_cache_alloc_trace+0x151/0x320 [ 2002.576712] ? io_tctx_exit_cb+0xf0/0xf0 [ 2002.577568] percpu_ref_init+0xd8/0x3d0 [ 2002.578403] io_uring_setup+0x47a/0x2980 [ 2002.579254] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2002.580273] ? __do_sys_io_uring_enter+0x1890/0x1890 05:57:38 executing program 7: perf_event_open(&(0x7f0000000000)={0x4000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2002.581341] ? wait_for_completion_io+0x270/0x270 [ 2002.582500] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2002.583590] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2002.584673] do_syscall_64+0x33/0x40 [ 2002.585467] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2002.586545] RIP: 0033:0x7f530d0e5b19 [ 2002.587324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2002.591253] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2002.591273] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2002.591284] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2002.591294] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2002.591304] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2002.591314] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2002.607644] FAULT_INJECTION: forcing a failure. [ 2002.607644] name failslab, interval 1, probability 0, space 0, times 0 [ 2002.607665] CPU: 1 PID: 10197 Comm: syz-executor.4 Not tainted 5.10.254 #1 [ 2002.607674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2002.607680] Call Trace: [ 2002.607705] dump_stack+0x107/0x167 [ 2002.607727] should_fail.cold+0x5/0xa [ 2002.607749] ? create_object.isra.0+0x3a/0xa30 [ 2002.607766] should_failslab+0x5/0x20 [ 2002.607785] kmem_cache_alloc+0x5b/0x310 [ 2002.607810] create_object.isra.0+0x3a/0xa30 [ 2002.607825] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 05:57:38 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2002.607850] kmem_cache_alloc+0x159/0x310 05:57:39 executing program 7: perf_event_open(&(0x7f0000000000)={0x80000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2002.607875] jbd2__journal_start+0x190/0x7e0 [ 2002.607900] __ext4_journal_start_sb+0x214/0x390 [ 2002.607923] ext4_dirty_inode+0xbc/0x130 [ 2002.607940] ? ext4_setattr+0x22f0/0x22f0 05:57:39 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x53c00fff) [ 2002.607955] __mark_inode_dirty+0x492/0xd30 [ 2002.607980] touch_atime+0x5ea/0x6e0 [ 2002.608000] ? atime_needs_update+0x600/0x600 [ 2002.608032] ext4_file_mmap+0x1d5/0x250 [ 2002.608052] mmap_file+0x5e/0xe0 [ 2002.608070] mmap_region+0xc4d/0x1500 [ 2002.608103] do_mmap+0x868/0x1370 [ 2002.608130] vm_mmap_pgoff+0x198/0x1f0 [ 2002.608153] ? randomize_page+0xb0/0xb0 [ 2002.608187] ksys_mmap_pgoff+0x41c/0x560 [ 2002.608207] ? find_mergeable_anon_vma+0x250/0x250 [ 2002.608232] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2002.608254] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2002.608276] do_syscall_64+0x33/0x40 [ 2002.608296] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2002.608308] RIP: 0033:0x7fa2ae602b19 [ 2002.608326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2002.608336] RSP: 002b:00007fa2abb78188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2002.608356] RAX: ffffffffffffffda RBX: 00007fa2ae715f60 RCX: 00007fa2ae602b19 [ 2002.608367] RDX: 000000000100000d RSI: 0000000000c00000 RDI: 0000000020000000 [ 2002.608377] RBP: 00007fa2abb781d0 R08: 0000000000000003 R09: 0000000000000000 [ 2002.608388] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000001 [ 2002.608398] R13: 00007fff398c10ff R14: 00007fa2abb78300 R15: 0000000000022000 [ 2019.675475] FAULT_INJECTION: forcing a failure. [ 2019.675475] name failslab, interval 1, probability 0, space 0, times 0 [ 2019.676875] CPU: 0 PID: 10220 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2019.677701] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2019.678681] Call Trace: [ 2019.679001] dump_stack+0x107/0x167 [ 2019.679442] should_fail.cold+0x5/0xa [ 2019.679893] ? create_object.isra.0+0x3a/0xa30 [ 2019.680431] should_failslab+0x5/0x20 [ 2019.680877] kmem_cache_alloc+0x5b/0x310 [ 2019.681370] create_object.isra.0+0x3a/0xa30 [ 2019.681891] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2019.682491] kmem_cache_alloc+0x159/0x310 [ 2019.682988] vm_area_dup+0x78/0x290 [ 2019.683419] ? __lock_acquire+0xbb1/0x5b00 [ 2019.683936] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2019.684554] ? lock_acquire+0x197/0x470 [ 2019.685021] ? copy_process+0x260c/0x78b0 [ 2019.685524] ? vm_area_alloc+0x110/0x110 [ 2019.686003] ? find_held_lock+0x2c/0x110 [ 2019.686482] ? get_mm_exe_file+0x139/0x310 [ 2019.686981] ? lock_downgrade+0x6d0/0x6d0 [ 2019.687470] ? down_write_nested+0xe4/0x160 [ 2019.687978] ? rwsem_down_write_slowpath+0xc30/0xc30 [ 2019.688578] ? get_mm_exe_file+0x162/0x310 [ 2019.689084] copy_process+0x298b/0x78b0 [ 2019.689578] ? __cleanup_sighand+0xb0/0xb0 [ 2019.690086] ? lock_acquire+0x197/0x470 [ 2019.690562] ? find_held_lock+0x2c/0x110 [ 2019.691040] kernel_clone+0xe7/0x980 [ 2019.691480] ? lock_downgrade+0x6d0/0x6d0 [ 2019.691961] ? find_held_lock+0x2c/0x110 [ 2019.692437] ? create_io_thread+0xf0/0xf0 [ 2019.692925] ? ksys_write+0x12d/0x260 [ 2019.693382] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2019.693952] __do_sys_fork+0x8a/0xc0 [ 2019.694387] ? kernel_thread+0xf0/0xf0 [ 2019.694853] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2019.695468] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2019.696072] ? trace_hardirqs_on+0x5b/0x180 [ 2019.696583] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2019.697191] do_syscall_64+0x33/0x40 [ 2019.697627] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2019.698226] RIP: 0033:0x7f22e1959b19 [ 2019.698662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2019.700821] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2019.701719] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2019.702555] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2019.703389] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2019.704227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2019.705067] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:57:56 executing program 2: fork() (fail_nth: 28) 05:57:56 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) shmget(0x1, 0x3000, 0x12, &(0x7f0000ffb000/0x3000)=nil) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x4000010, r0, 0x8000000) 05:57:56 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x53c03fff) 05:57:56 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) (fail_nth: 10) 05:57:56 executing program 7: perf_event_open(&(0x7f0000000000)={0x200000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:56 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:56 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 12) 05:57:56 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xad7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$vcsu(&(0x7f0000000080), 0x0, 0x0) openat(r1, &(0x7f0000000100)='./file0\x00', 0xa0200, 0xd2) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r2, r0) [ 2019.713013] FAULT_INJECTION: forcing a failure. [ 2019.713013] name failslab, interval 1, probability 0, space 0, times 0 [ 2019.714353] CPU: 0 PID: 10229 Comm: syz-executor.4 Not tainted 5.10.254 #1 [ 2019.715156] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2019.716112] Call Trace: [ 2019.716421] dump_stack+0x107/0x167 [ 2019.716848] should_fail.cold+0x5/0xa [ 2019.717300] ? perf_event_mmap+0x51a/0xd90 [ 2019.717787] should_failslab+0x5/0x20 [ 2019.718228] kmem_cache_alloc_trace+0x55/0x320 [ 2019.718755] perf_event_mmap+0x51a/0xd90 [ 2019.719224] ? perf_event_namespaces+0x50/0x50 [ 2019.719759] ? vma_link+0x619/0x820 [ 2019.720180] mmap_region+0x3a6/0x1500 [ 2019.720628] do_mmap+0x868/0x1370 [ 2019.721035] vm_mmap_pgoff+0x198/0x1f0 [ 2019.721492] ? randomize_page+0xb0/0xb0 [ 2019.721955] ksys_mmap_pgoff+0x41c/0x560 [ 2019.722422] ? find_mergeable_anon_vma+0x250/0x250 [ 2019.722989] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2019.723590] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2019.724183] do_syscall_64+0x33/0x40 [ 2019.724614] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2019.725209] RIP: 0033:0x7fa2ae602b19 [ 2019.725634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2019.727753] RSP: 002b:00007fa2abb78188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2019.728625] RAX: ffffffffffffffda RBX: 00007fa2ae715f60 RCX: 00007fa2ae602b19 [ 2019.729446] RDX: 000000000100000d RSI: 0000000000c00000 RDI: 0000000020000000 [ 2019.730257] RBP: 00007fa2abb781d0 R08: 0000000000000003 R09: 0000000000000000 [ 2019.731071] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000002 [ 2019.731885] R13: 00007fff398c10ff R14: 00007fa2abb78300 R15: 0000000000022000 05:57:56 executing program 7: perf_event_open(&(0x7f0000000000)={0x400000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2019.756544] FAULT_INJECTION: forcing a failure. [ 2019.756544] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2019.759303] CPU: 1 PID: 10218 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2019.760892] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2019.762814] Call Trace: [ 2019.763431] dump_stack+0x107/0x167 [ 2019.764279] should_fail.cold+0x5/0xa [ 2019.765209] __alloc_pages_nodemask+0x182/0x600 [ 2019.766348] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 2019.767750] ? cap_capable+0x1cd/0x230 [ 2019.768662] alloc_pages_current+0x187/0x280 [ 2019.769711] __get_free_pages+0xc/0xa0 [ 2019.770622] io_uring_setup+0xe27/0x2980 [ 2019.771572] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2019.772745] ? wait_for_completion_io+0x270/0x270 [ 2019.773901] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2019.775122] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2019.776323] do_syscall_64+0x33/0x40 [ 2019.777208] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2019.778396] RIP: 0033:0x7f530d0e5b19 [ 2019.779261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2019.783544] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2019.785328] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2019.786979] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2019.788634] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2019.790299] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2019.791953] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 05:57:56 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) (fail_nth: 11) 05:57:56 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:56 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x53e03fff) [ 2019.884619] FAULT_INJECTION: forcing a failure. 05:57:56 executing program 7: perf_event_open(&(0x7f0000000000)={0x80ffff, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:57:56 executing program 6: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r2, 0x10, r0, 0x8) r3 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4}, r2, 0x0, 0xffffffffffffffff, 0x0) r4 = openat$cgroup_type(r1, &(0x7f0000000180), 0x2, 0x0) ioctl$BTRFS_IOC_SCRUB_CANCEL(r4, 0x941c, 0x0) r5 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, 0x1}, 0x6) dup2(r5, r3) ioctl$TIOCGDEV(r1, 0x80045432, &(0x7f0000000140)) [ 2019.884619] name failslab, interval 1, probability 0, space 0, times 0 [ 2019.886201] CPU: 0 PID: 10244 Comm: syz-executor.4 Not tainted 5.10.254 #1 [ 2019.886991] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2019.887941] Call Trace: [ 2019.888248] dump_stack+0x107/0x167 [ 2019.888666] should_fail.cold+0x5/0xa [ 2019.889113] ? create_object.isra.0+0x3a/0xa30 [ 2019.889635] should_failslab+0x5/0x20 [ 2019.890066] kmem_cache_alloc+0x5b/0x310 [ 2019.890532] create_object.isra.0+0x3a/0xa30 [ 2019.891037] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2019.891627] kmem_cache_alloc_trace+0x151/0x320 [ 2019.892169] perf_event_mmap+0x51a/0xd90 [ 2019.892641] ? perf_event_namespaces+0x50/0x50 [ 2019.893173] ? vma_link+0x619/0x820 [ 2019.893591] mmap_region+0x3a6/0x1500 [ 2019.894033] do_mmap+0x868/0x1370 [ 2019.894431] vm_mmap_pgoff+0x198/0x1f0 [ 2019.894876] ? randomize_page+0xb0/0xb0 [ 2019.895337] ksys_mmap_pgoff+0x41c/0x560 [ 2019.895802] ? find_mergeable_anon_vma+0x250/0x250 [ 2019.896366] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2019.896971] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2019.897572] do_syscall_64+0x33/0x40 [ 2019.897996] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2019.898581] RIP: 0033:0x7fa2ae602b19 [ 2019.899008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2019.901102] RSP: 002b:00007fa2abb78188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2019.901969] RAX: ffffffffffffffda RBX: 00007fa2ae715f60 RCX: 00007fa2ae602b19 [ 2019.902777] RDX: 000000000100000d RSI: 0000000000c00000 RDI: 0000000020000000 [ 2019.903580] RBP: 00007fa2abb781d0 R08: 0000000000000003 R09: 0000000000000000 [ 2019.904390] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000002 [ 2019.905212] R13: 00007fff398c10ff R14: 00007fa2abb78300 R15: 0000000000022000 [ 2032.135874] FAULT_INJECTION: forcing a failure. [ 2032.135874] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2032.138653] CPU: 1 PID: 10259 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2032.140253] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2032.142191] Call Trace: [ 2032.142811] dump_stack+0x107/0x167 [ 2032.143665] should_fail.cold+0x5/0xa [ 2032.144558] __alloc_pages_nodemask+0x182/0x600 [ 2032.145656] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2032.146892] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 2032.148314] alloc_pages_current+0x187/0x280 [ 2032.149364] __get_free_pages+0xc/0xa0 [ 2032.150284] pgd_alloc+0x84/0x4e0 [ 2032.151100] ? pgd_page_get_mm+0x40/0x40 [ 2032.152061] ? lockdep_init_map_type+0x2c7/0x780 [ 2032.153180] ? lockdep_init_map_type+0x2c7/0x780 [ 2032.154325] mm_init+0x670/0xab0 [ 2032.155135] copy_process+0x257b/0x78b0 [ 2032.156081] ? __lock_acquire+0xbb1/0x5b00 [ 2032.157108] ? __cleanup_sighand+0xb0/0xb0 [ 2032.158143] ? lock_acquire+0x197/0x470 [ 2032.159109] ? find_held_lock+0x2c/0x110 [ 2032.160090] kernel_clone+0xe7/0x980 [ 2032.160984] ? lock_downgrade+0x6d0/0x6d0 [ 2032.161988] ? find_held_lock+0x2c/0x110 [ 2032.162957] ? create_io_thread+0xf0/0xf0 05:58:08 executing program 2: fork() (fail_nth: 29) 05:58:08 executing program 7: perf_event_open(&(0x7f0000000000)={0x1000000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:58:08 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0xff0fc053) 05:58:08 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = dup2(r1, r0) signalfd(r1, &(0x7f0000000080)={[0x7]}, 0x8) r3 = openat$incfs(r2, &(0x7f0000000100)='.pending_reads\x00', 0x100241, 0x0) ioctl$sock_inet_SIOCGIFADDR(r3, 0x8915, &(0x7f0000000140)={'team0\x00', {0x2, 0x0, @broadcast}}) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TCSETA(r4, 0x5406, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x400, 0x4, "0f596be6dba8a194"}) 05:58:08 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:58:08 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 13) [ 2032.163947] ? ksys_write+0x12d/0x260 [ 2032.165118] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2032.166111] __do_sys_fork+0x8a/0xc0 [ 2032.166855] ? kernel_thread+0xf0/0xf0 [ 2032.167645] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2032.168697] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2032.169726] ? trace_hardirqs_on+0x5b/0x180 [ 2032.170595] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2032.171629] do_syscall_64+0x33/0x40 05:58:08 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) (fail_nth: 12) 05:58:08 executing program 1: r0 = syz_io_uring_setup(0x2ec, &(0x7f00000001c0)={0x0, 0x7e6a}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) recvmsg$unix(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000080)=@abs, 0x6e, &(0x7f0000000580)=[{&(0x7f0000000140)=""/87, 0x57}, {&(0x7f0000000240)=""/129, 0x81}, {&(0x7f0000000300)=""/99, 0x63}, {&(0x7f0000000380)=""/158, 0x9e}, {&(0x7f0000000000)=""/59, 0x3b}, {&(0x7f0000000440)=""/125, 0x7d}, {&(0x7f00000004c0)=""/144, 0x90}], 0x7, &(0x7f0000000600)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xa0}, 0x10142) io_uring_enter(r1, 0x437c, 0xefb, 0x3, &(0x7f0000000700)={[0x6]}, 0x8) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x2e90, &(0x7f0000000740)={0x0, 0x1281, 0x8, 0x1, 0x295, 0x0, r2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000007c0), &(0x7f0000000800)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) [ 2032.172381] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2032.173616] RIP: 0033:0x7f22e1959b19 [ 2032.174375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2032.178075] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2032.179603] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2032.181033] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2032.182477] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2032.183896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2032.185341] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2032.195483] FAULT_INJECTION: forcing a failure. [ 2032.195483] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2032.197633] CPU: 1 PID: 10266 Comm: syz-executor.4 Not tainted 5.10.254 #1 [ 2032.198766] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2032.200134] Call Trace: [ 2032.200575] dump_stack+0x107/0x167 [ 2032.201173] should_fail.cold+0x5/0xa [ 2032.201818] __alloc_pages_nodemask+0x182/0x600 [ 2032.202567] ? lock_acquire+0x197/0x470 [ 2032.203234] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 2032.204204] ? find_held_lock+0x2c/0x110 [ 2032.204878] ? count_memcg_event_mm.part.0+0x10f/0x2f0 [ 2032.205751] ? lock_downgrade+0x6d0/0x6d0 [ 2032.206434] ? mark_held_locks+0x9e/0xe0 [ 2032.207093] alloc_pages_current+0x187/0x280 [ 2032.207809] ? count_memcg_event_mm.part.0+0x2df/0x2f0 [ 2032.208645] ? replace_page_cache_page+0x1200/0x1200 [ 2032.209471] pte_alloc_one+0x16/0x1a0 [ 2032.210088] ? replace_page_cache_page+0x1200/0x1200 [ 2032.210917] handle_mm_fault+0x2ab2/0x3500 [ 2032.211612] ? pud_huge+0x83/0xd0 [ 2032.212170] ? __pmd_alloc+0x630/0x630 [ 2032.212847] __get_user_pages+0x6ec/0x1620 [ 2032.213548] ? follow_page_mask+0x1900/0x1900 [ 2032.214258] ? memset+0x20/0x50 [ 2032.214804] populate_vma_page_range+0x24d/0x330 [ 2032.215604] __mm_populate+0x1ea/0x360 [ 2032.216227] ? populate_vma_page_range+0x330/0x330 [ 2032.217039] vm_mmap_pgoff+0x1d7/0x1f0 [ 2032.217688] ? randomize_page+0xb0/0xb0 [ 2032.218354] ksys_mmap_pgoff+0x41c/0x560 [ 2032.218988] ? find_mergeable_anon_vma+0x250/0x250 [ 2032.219809] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2032.220636] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2032.221505] do_syscall_64+0x33/0x40 [ 2032.222127] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2032.222954] RIP: 0033:0x7fa2ae602b19 [ 2032.223559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2032.226531] RSP: 002b:00007fa2abb78188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2032.227778] RAX: ffffffffffffffda RBX: 00007fa2ae715f60 RCX: 00007fa2ae602b19 [ 2032.228938] RDX: 000000000100000d RSI: 0000000000c00000 RDI: 0000000020000000 [ 2032.230108] RBP: 00007fa2abb781d0 R08: 0000000000000003 R09: 0000000000000000 [ 2032.231273] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000002 [ 2032.232416] R13: 00007fff398c10ff R14: 00007fa2abb78300 R15: 0000000000022000 [ 2032.250114] FAULT_INJECTION: forcing a failure. [ 2032.250114] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2032.252969] CPU: 0 PID: 10272 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2032.254625] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2032.256601] Call Trace: [ 2032.257248] dump_stack+0x107/0x167 [ 2032.258121] should_fail.cold+0x5/0xa [ 2032.259039] __alloc_pages_nodemask+0x182/0x600 [ 2032.260152] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 2032.261601] ? cap_capable+0x1cd/0x230 [ 2032.262531] alloc_pages_current+0x187/0x280 [ 2032.263578] __get_free_pages+0xc/0xa0 [ 2032.264504] io_uring_setup+0xf9a/0x2980 [ 2032.265483] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2032.266692] ? wait_for_completion_io+0x270/0x270 [ 2032.267862] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2032.269109] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2032.270350] do_syscall_64+0x33/0x40 [ 2032.271239] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2032.272455] RIP: 0033:0x7f530d0e5b19 [ 2032.273345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2032.277717] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2032.279513] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2032.281213] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2032.282900] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2032.284572] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2032.286262] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 05:58:20 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) (fail_nth: 13) 05:58:20 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0)={0x0, 0x0, 0x10}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x1000000, 0x13, r0, 0x8000000) [ 2044.139224] FAULT_INJECTION: forcing a failure. [ 2044.139224] name failslab, interval 1, probability 0, space 0, times 0 [ 2044.141090] CPU: 0 PID: 10283 Comm: syz-executor.4 Not tainted 5.10.254 #1 [ 2044.142168] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2044.143454] Call Trace: [ 2044.143874] dump_stack+0x107/0x167 [ 2044.144453] should_fail.cold+0x5/0xa [ 2044.145057] ? ptlock_alloc+0x1d/0x70 [ 2044.145671] should_failslab+0x5/0x20 [ 2044.146259] kmem_cache_alloc+0x5b/0x310 [ 2044.146927] ptlock_alloc+0x1d/0x70 [ 2044.147498] pte_alloc_one+0x68/0x1a0 [ 2044.148117] ? replace_page_cache_page+0x1200/0x1200 [ 2044.148904] handle_mm_fault+0x2ab2/0x3500 [ 2044.149599] ? pud_huge+0x83/0xd0 [ 2044.150150] ? __pmd_alloc+0x630/0x630 [ 2044.150772] __get_user_pages+0x6ec/0x1620 [ 2044.151434] ? follow_page_mask+0x1900/0x1900 [ 2044.152173] ? memset+0x20/0x50 [ 2044.152717] populate_vma_page_range+0x24d/0x330 [ 2044.153484] __mm_populate+0x1ea/0x360 [ 2044.154126] ? populate_vma_page_range+0x330/0x330 [ 2044.154912] vm_mmap_pgoff+0x1d7/0x1f0 [ 2044.155538] ? randomize_page+0xb0/0xb0 [ 2044.156189] ksys_mmap_pgoff+0x41c/0x560 [ 2044.156849] ? find_mergeable_anon_vma+0x250/0x250 [ 2044.157667] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2044.158526] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2044.159360] do_syscall_64+0x33/0x40 [ 2044.159943] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2044.160766] RIP: 0033:0x7fa2ae602b19 [ 2044.161367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2044.164336] RSP: 002b:00007fa2abb78188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2044.165585] RAX: ffffffffffffffda RBX: 00007fa2ae715f60 RCX: 00007fa2ae602b19 [ 2044.166736] RDX: 000000000100000d RSI: 0000000000c00000 RDI: 0000000020000000 [ 2044.167878] RBP: 00007fa2abb781d0 R08: 0000000000000003 R09: 0000000000000000 [ 2044.169030] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000002 [ 2044.170202] R13: 00007fff398c10ff R14: 00007fa2abb78300 R15: 0000000000022000 [ 2044.172161] FAULT_INJECTION: forcing a failure. [ 2044.172161] name failslab, interval 1, probability 0, space 0, times 0 [ 2044.174019] CPU: 0 PID: 10285 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2044.175148] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2044.176532] Call Trace: [ 2044.176629] dump_stack+0x107/0x167 [ 2044.176645] should_fail.cold+0x5/0xa [ 2044.176660] ? create_object.isra.0+0x3a/0xa30 [ 2044.176673] should_failslab+0x5/0x20 [ 2044.176687] kmem_cache_alloc+0x5b/0x310 [ 2044.176706] create_object.isra.0+0x3a/0xa30 [ 2044.176718] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2044.176737] kmem_cache_alloc+0x159/0x310 [ 2044.176756] vm_area_dup+0x78/0x290 [ 2044.176777] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 2044.176792] ? lock_downgrade+0x6d0/0x6d0 [ 2044.176805] ? copy_page_range+0x24e9/0x3800 [ 2044.176832] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 2044.176849] ? avc_has_extended_perms+0xf40/0xf40 [ 2044.176870] ? vm_area_alloc+0x110/0x110 [ 2044.176882] ? find_held_lock+0x2c/0x110 [ 2044.176901] ? selinux_vm_enough_memory+0x114/0x180 [ 2044.176914] ? selinux_sb_statfs+0x250/0x250 [ 2044.176932] ? percpu_counter_add_batch+0x8b/0x140 [ 2044.176949] ? __vm_enough_memory+0x184/0x360 [ 2044.176961] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 2044.176977] copy_process+0x298b/0x78b0 [ 2044.177017] ? __cleanup_sighand+0xb0/0xb0 [ 2044.177039] ? lock_acquire+0x197/0x470 [ 2044.177058] ? find_held_lock+0x2c/0x110 [ 2044.177076] kernel_clone+0xe7/0x980 [ 2044.177091] ? lock_downgrade+0x6d0/0x6d0 [ 2044.177111] ? find_held_lock+0x2c/0x110 [ 2044.177124] ? create_io_thread+0xf0/0xf0 [ 2044.177139] ? ksys_write+0x12d/0x260 [ 2044.177158] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2044.177178] __do_sys_fork+0x8a/0xc0 [ 2044.177192] ? kernel_thread+0xf0/0xf0 [ 2044.177219] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2044.177234] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2044.177246] ? trace_hardirqs_on+0x5b/0x180 [ 2044.177262] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2044.177275] do_syscall_64+0x33/0x40 [ 2044.177290] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2044.177299] RIP: 0033:0x7f22e1959b19 [ 2044.177326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2044.177342] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2044.177356] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2044.177364] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2044.177372] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2044.177379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2044.177388] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2044.186579] FAULT_INJECTION: forcing a failure. [ 2044.186579] name failslab, interval 1, probability 0, space 0, times 0 [ 2044.219300] CPU: 0 PID: 10288 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2044.219315] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2044.221481] Call Trace: [ 2044.221918] dump_stack+0x107/0x167 [ 2044.222506] should_fail.cold+0x5/0xa [ 2044.223147] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2044.224054] should_failslab+0x5/0x20 [ 2044.224678] kmem_cache_alloc_trace+0x55/0x320 [ 2044.225451] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2044.226351] io_uring_setup+0x14f6/0x2980 [ 2044.227033] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2044.227856] ? wait_for_completion_io+0x270/0x270 [ 2044.228657] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2044.229524] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2044.230366] do_syscall_64+0x33/0x40 [ 2044.230972] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2044.231811] RIP: 0033:0x7f530d0e5b19 [ 2044.232420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2044.235444] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2044.236687] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2044.237873] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2044.239038] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2044.240200] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2044.241334] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 05:58:20 executing program 2: fork() (fail_nth: 30) 05:58:20 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:58:20 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0xff3fc053) 05:58:20 executing program 7: perf_event_open(&(0x7f0000000000)={0x2000000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:58:20 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 14) 05:58:20 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x8, 0x8, 0x8, 0x52, 0x0, 0x3ff, 0x864c0, 0xc, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x9, 0xfffffffffffffbff}, 0x200, 0x3f, 0x4, 0x9, 0xbe6834e, 0x1, 0x1, 0x0, 0x7, 0x0, 0x8}, 0x0, 0x0, r0, 0xb) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) 05:58:20 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) r2 = open(&(0x7f0000000180)='./file0\x00', 0x280200, 0x11e) setsockopt$inet6_MRT6_ADD_MIF(r2, 0x29, 0xca, &(0x7f00000001c0)={0x7, 0x0, 0x66, 0x5}, 0xc) 05:58:20 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:58:20 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0xff3fe053) 05:58:20 executing program 7: perf_event_open(&(0x7f0000000000)={0x3000000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:58:20 executing program 1: sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="94060000", @ANYRES16=0x0, @ANYBLOB="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"], 0x694}, 0x1, 0x0, 0x0, 0x4000080}, 0x4014) r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) syz_genetlink_get_family_id$gtp(&(0x7f0000000140), r1) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) open_tree(r2, &(0x7f0000000040)='./file0\x00', 0x89801) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000002b00)={0x0, 0x2, &(0x7f0000002ac0)={&(0x7f00000029c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="09070000000000000000150000000c0029010000000000000000"], 0x20}}, 0x0) sendmsg$NL80211_CMD_DISASSOCIATE(r2, &(0x7f0000000980)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x30, r4, 0x4, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x9}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x8777}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x8004}, 0x4000000) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) open_tree(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x89801) fallocate(0xffffffffffffffff, 0x22, 0x8, 0xfff) 05:58:20 executing program 2: fork() (fail_nth: 31) 05:58:20 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:58:20 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11044, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) [ 2044.384914] FAULT_INJECTION: forcing a failure. [ 2044.384914] name failslab, interval 1, probability 0, space 0, times 0 [ 2044.386926] CPU: 0 PID: 10319 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2044.388088] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2044.389474] Call Trace: [ 2044.389911] dump_stack+0x107/0x167 [ 2044.390528] should_fail.cold+0x5/0xa [ 2044.391161] ? vm_area_dup+0x78/0x290 [ 2044.391783] should_failslab+0x5/0x20 [ 2044.392416] kmem_cache_alloc+0x5b/0x310 [ 2044.393086] vm_area_dup+0x78/0x290 [ 2044.393714] ? copy_page_range+0x24e9/0x3800 [ 2044.394470] ? vm_area_alloc+0x110/0x110 [ 2044.395143] ? find_held_lock+0x2c/0x110 [ 2044.395808] ? vm_iomap_memory+0x190/0x190 [ 2044.396516] ? __vma_link_rb+0x540/0x700 [ 2044.397208] copy_process+0x298b/0x78b0 [ 2044.397907] ? __cleanup_sighand+0xb0/0xb0 [ 2044.398619] ? lock_acquire+0x197/0x470 [ 2044.399275] ? find_held_lock+0x2c/0x110 [ 2044.399952] kernel_clone+0xe7/0x980 [ 2044.400564] ? lock_downgrade+0x6d0/0x6d0 [ 2044.401245] ? find_held_lock+0x2c/0x110 [ 2044.401924] ? create_io_thread+0xf0/0xf0 [ 2044.402619] ? ksys_write+0x12d/0x260 [ 2044.403251] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2044.404051] __do_sys_fork+0x8a/0xc0 [ 2044.404662] ? kernel_thread+0xf0/0xf0 [ 2044.405322] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2044.406185] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2044.407025] ? trace_hardirqs_on+0x5b/0x180 [ 2044.407740] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2044.408561] do_syscall_64+0x33/0x40 [ 2044.409176] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2044.410001] RIP: 0033:0x7f22e1959b19 [ 2044.410617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2044.413662] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2044.414917] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2044.416085] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2044.417255] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2044.418442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2044.419616] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:58:34 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0xffff8000) 05:58:34 executing program 2: fork() (fail_nth: 32) 05:58:34 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 15) 05:58:34 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x30, r0, 0x8000000) 05:58:34 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) (fail_nth: 14) 05:58:34 executing program 7: perf_event_open(&(0x7f0000000000)={0x4000000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:58:34 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:58:34 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = pidfd_open(0x0, 0x0) sendfile(0xffffffffffffffff, r1, &(0x7f0000000080)=0x10e2, 0x81) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = dup2(r2, r0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_PMK(r3, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x6c, r4, 0x800, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "c65b3cc2a510d9586725927e54c7f21a"}, @NL80211_ATTR_PMK={0x14, 0xfe, "875d7307b946a7327df5c1e543e7d2f9"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "cf520d7c3765840ca48560b97e0d546f"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "f124b7ff2ce2a71251bd0247a4ece7a5"}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40000}, 0x40045) [ 2057.828735] FAULT_INJECTION: forcing a failure. [ 2057.828735] name failslab, interval 1, probability 0, space 0, times 0 [ 2057.830628] CPU: 0 PID: 10337 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2057.831750] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2057.832409] FAULT_INJECTION: forcing a failure. [ 2057.832409] name failslab, interval 1, probability 0, space 0, times 0 [ 2057.833100] Call Trace: [ 2057.833123] dump_stack+0x107/0x167 [ 2057.833140] should_fail.cold+0x5/0xa [ 2057.833171] ? create_object.isra.0+0x3a/0xa30 [ 2057.838682] should_failslab+0x5/0x20 [ 2057.839295] kmem_cache_alloc+0x5b/0x310 [ 2057.839970] create_object.isra.0+0x3a/0xa30 [ 2057.840680] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2057.841522] kmem_cache_alloc+0x159/0x310 [ 2057.842218] vm_area_dup+0x78/0x290 [ 2057.842816] ? copy_page_range+0x24e9/0x3800 [ 2057.843552] ? vm_area_alloc+0x110/0x110 [ 2057.844206] ? find_held_lock+0x2c/0x110 [ 2057.844873] ? vm_iomap_memory+0x190/0x190 [ 2057.845579] ? __vma_link_rb+0x540/0x700 [ 2057.846244] copy_process+0x298b/0x78b0 [ 2057.846912] ? __cleanup_sighand+0xb0/0xb0 [ 2057.847615] ? lock_acquire+0x197/0x470 [ 2057.848262] ? find_held_lock+0x2c/0x110 [ 2057.848921] kernel_clone+0xe7/0x980 [ 2057.849532] ? lock_downgrade+0x6d0/0x6d0 [ 2057.850196] ? find_held_lock+0x2c/0x110 [ 2057.850854] ? create_io_thread+0xf0/0xf0 [ 2057.851531] ? ksys_write+0x12d/0x260 [ 2057.852152] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2057.852937] __do_sys_fork+0x8a/0xc0 [ 2057.853545] ? kernel_thread+0xf0/0xf0 [ 2057.854193] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2057.855035] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2057.855881] ? trace_hardirqs_on+0x5b/0x180 [ 2057.856580] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2057.857411] do_syscall_64+0x33/0x40 [ 2057.858027] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2057.858853] RIP: 0033:0x7f22e1959b19 [ 2057.859448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2057.862390] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2057.863602] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2057.864746] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2057.865895] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2057.867033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2057.868177] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2057.869356] CPU: 1 PID: 10330 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2057.871415] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2057.873723] Call Trace: [ 2057.874459] dump_stack+0x107/0x167 [ 2057.875329] should_fail.cold+0x5/0xa [ 2057.876251] ? create_object.isra.0+0x3a/0xa30 [ 2057.876271] should_failslab+0x5/0x20 [ 2057.876292] kmem_cache_alloc+0x5b/0x310 [ 2057.876313] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 2057.876337] create_object.isra.0+0x3a/0xa30 [ 2057.876354] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2057.876381] kmem_cache_alloc_trace+0x151/0x320 [ 2057.876410] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 2057.876432] io_uring_setup+0x14f6/0x2980 [ 2057.876461] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2057.876479] ? wait_for_completion_io+0x270/0x270 [ 2057.876523] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2057.876544] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2057.876568] do_syscall_64+0x33/0x40 [ 2057.876589] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2057.876602] RIP: 0033:0x7f530d0e5b19 [ 2057.876624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2057.876635] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2057.876657] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2057.876668] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2057.876679] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2057.876690] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2057.876702] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2057.895257] FAULT_INJECTION: forcing a failure. [ 2057.895257] name failslab, interval 1, probability 0, space 0, times 0 [ 2057.926268] CPU: 1 PID: 10342 Comm: syz-executor.4 Not tainted 5.10.254 #1 [ 2057.927850] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2057.929766] Call Trace: [ 2057.930386] dump_stack+0x107/0x167 [ 2057.931235] should_fail.cold+0x5/0xa [ 2057.932117] ? create_object.isra.0+0x3a/0xa30 [ 2057.933169] should_failslab+0x5/0x20 [ 2057.934069] kmem_cache_alloc+0x5b/0x310 [ 2057.935007] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 2057.936389] create_object.isra.0+0x3a/0xa30 [ 2057.937394] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2057.938580] kmem_cache_alloc+0x159/0x310 [ 2057.939548] ptlock_alloc+0x1d/0x70 [ 2057.940416] pte_alloc_one+0x68/0x1a0 [ 2057.941320] ? replace_page_cache_page+0x1200/0x1200 [ 2057.942542] handle_mm_fault+0x2ab2/0x3500 [ 2057.943551] ? pud_huge+0x83/0xd0 [ 2057.944374] ? __pmd_alloc+0x630/0x630 [ 2057.945323] __get_user_pages+0x6ec/0x1620 [ 2057.946359] ? follow_page_mask+0x1900/0x1900 [ 2057.947439] ? memset+0x20/0x50 [ 2057.948237] populate_vma_page_range+0x24d/0x330 [ 2057.949361] __mm_populate+0x1ea/0x360 [ 2057.950300] ? populate_vma_page_range+0x330/0x330 [ 2057.951479] vm_mmap_pgoff+0x1d7/0x1f0 [ 2057.952404] ? randomize_page+0xb0/0xb0 [ 2057.953365] ksys_mmap_pgoff+0x41c/0x560 [ 2057.954349] ? find_mergeable_anon_vma+0x250/0x250 [ 2057.955521] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2057.956763] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2057.958000] do_syscall_64+0x33/0x40 [ 2057.958886] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2057.960099] RIP: 0033:0x7fa2ae602b19 [ 2057.960990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2057.965294] RSP: 002b:00007fa2abb78188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 2057.967080] RAX: ffffffffffffffda RBX: 00007fa2ae715f60 RCX: 00007fa2ae602b19 [ 2057.968745] RDX: 000000000100000d RSI: 0000000000c00000 RDI: 0000000020000000 [ 2057.970436] RBP: 00007fa2abb781d0 R08: 0000000000000003 R09: 0000000000000000 [ 2057.972136] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000002 [ 2057.973840] R13: 00007fff398c10ff R14: 00007fa2abb78300 R15: 0000000000022000 05:58:34 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xfc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = syz_open_dev$vcsa(&(0x7f0000000180), 0x1000, 0x0) perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x0, 0x7, 0x0, 0x81, 0x0, 0x4, 0x10, 0xd, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x6, 0x4, @perf_bp={&(0x7f0000000080), 0x2}, 0xc48, 0x0, 0x81, 0x3, 0x8000, 0x800, 0xfff, 0x0, 0xfffffdf8, 0x0, 0x6}, 0x0, 0xe, r2, 0x8) dup2(r1, r0) 05:58:34 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x800000000) 05:58:34 executing program 7: perf_event_open(&(0x7f0000000000)={0xa000000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:58:34 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:58:34 executing program 2: fork() (fail_nth: 33) 05:58:34 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 16) [ 2058.042280] FAULT_INJECTION: forcing a failure. [ 2058.042280] name failslab, interval 1, probability 0, space 0, times 0 [ 2058.044870] CPU: 1 PID: 10357 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2058.046425] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2058.048284] Call Trace: [ 2058.048889] dump_stack+0x107/0x167 [ 2058.049946] should_fail.cold+0x5/0xa [ 2058.050929] ? create_object.isra.0+0x3a/0xa30 [ 2058.052085] should_failslab+0x5/0x20 [ 2058.053054] kmem_cache_alloc+0x5b/0x310 [ 2058.054112] create_object.isra.0+0x3a/0xa30 [ 2058.055057] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2058.056118] kmem_cache_alloc+0x159/0x310 [ 2058.056991] vm_area_dup+0x78/0x290 [ 2058.057786] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 2058.058764] ? lock_downgrade+0x6d0/0x6d0 [ 2058.059629] ? copy_page_range+0x24e9/0x3800 [ 2058.060561] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 2058.061543] ? avc_has_extended_perms+0xf40/0xf40 [ 2058.062559] ? vm_area_alloc+0x110/0x110 [ 2058.063403] ? find_held_lock+0x2c/0x110 [ 2058.064256] ? selinux_vm_enough_memory+0x114/0x180 [ 2058.065300] ? selinux_sb_statfs+0x250/0x250 [ 2058.066241] ? percpu_counter_add_batch+0x8b/0x140 [ 2058.067278] ? __vm_enough_memory+0x184/0x360 [ 2058.068219] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 2058.069301] copy_process+0x298b/0x78b0 [ 2058.070175] ? __cleanup_sighand+0xb0/0xb0 [ 2058.071074] ? lock_acquire+0x197/0x470 [ 2058.071916] ? find_held_lock+0x2c/0x110 [ 2058.072769] kernel_clone+0xe7/0x980 [ 2058.073571] ? lock_downgrade+0x6d0/0x6d0 [ 2058.074138] FAULT_INJECTION: forcing a failure. [ 2058.074138] name failslab, interval 1, probability 0, space 0, times 0 [ 2058.074435] ? find_held_lock+0x2c/0x110 [ 2058.074460] ? create_io_thread+0xf0/0xf0 [ 2058.077895] ? ksys_write+0x12d/0x260 [ 2058.078697] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2058.079710] __do_sys_fork+0x8a/0xc0 [ 2058.080492] ? kernel_thread+0xf0/0xf0 [ 2058.081324] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2058.082452] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2058.083540] ? trace_hardirqs_on+0x5b/0x180 [ 2058.084452] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2058.085543] do_syscall_64+0x33/0x40 [ 2058.086323] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2058.087411] RIP: 0033:0x7f22e1959b19 [ 2058.088205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2058.092085] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2058.093699] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2058.095202] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2058.096701] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2058.098215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2058.099731] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2058.101271] CPU: 0 PID: 10359 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2058.102361] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2058.103624] Call Trace: [ 2058.104035] dump_stack+0x107/0x167 [ 2058.104592] should_fail.cold+0x5/0xa [ 2058.105169] ? create_object.isra.0+0x3a/0xa30 [ 2058.105868] should_failslab+0x5/0x20 [ 2058.106445] kmem_cache_alloc+0x5b/0x310 [ 2058.107058] create_object.isra.0+0x3a/0xa30 [ 2058.107725] kmemleak_alloc_percpu+0xa0/0x100 [ 2058.108404] pcpu_alloc+0x4e2/0x1240 [ 2058.108979] ? io_async_queue_proc+0x80/0x80 [ 2058.109655] percpu_ref_init+0x31/0x3d0 [ 2058.110261] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2058.111076] io_uring_setup+0x14f6/0x2980 [ 2058.111709] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2058.112477] ? wait_for_completion_io+0x270/0x270 [ 2058.113228] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2058.114031] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2058.114809] do_syscall_64+0x33/0x40 [ 2058.115378] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2058.116151] RIP: 0033:0x7f530d0e5b19 [ 2058.116710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2058.119493] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2058.120648] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2058.121730] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2058.122801] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2058.123858] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2058.124917] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2074.774186] FAULT_INJECTION: forcing a failure. [ 2074.774186] name failslab, interval 1, probability 0, space 0, times 0 [ 2074.776666] CPU: 0 PID: 10370 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2074.778119] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2074.779861] Call Trace: [ 2074.780441] dump_stack+0x107/0x167 [ 2074.781357] should_fail.cold+0x5/0xa [ 2074.782371] ? create_object.isra.0+0x3a/0xa30 [ 2074.783529] should_failslab+0x5/0x20 [ 2074.783900] FAULT_INJECTION: forcing a failure. [ 2074.783900] name failslab, interval 1, probability 0, space 0, times 0 [ 2074.784535] kmem_cache_alloc+0x5b/0x310 [ 2074.784569] create_object.isra.0+0x3a/0xa30 [ 2074.789023] kmemleak_alloc_percpu+0xa0/0x100 [ 2074.790162] pcpu_alloc+0x4e2/0x1240 [ 2074.791121] ? io_async_queue_proc+0x80/0x80 [ 2074.792222] percpu_ref_init+0x31/0x3d0 [ 2074.793259] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2074.794638] io_uring_setup+0x14f6/0x2980 [ 2074.795727] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2074.796988] ? wait_for_completion_io+0x270/0x270 [ 2074.798271] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2074.799602] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2074.800924] do_syscall_64+0x33/0x40 [ 2074.801916] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2074.803024] RIP: 0033:0x7f530d0e5b19 [ 2074.803978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2074.807735] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2074.809723] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2074.811176] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2074.813028] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2074.814495] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2074.816358] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2074.817864] CPU: 1 PID: 10376 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2074.819699] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2074.821864] Call Trace: [ 2074.822550] dump_stack+0x107/0x167 [ 2074.823332] should_fail.cold+0x5/0xa [ 2074.824313] ? vm_area_dup+0x78/0x290 [ 2074.825290] should_failslab+0x5/0x20 [ 2074.826289] kmem_cache_alloc+0x5b/0x310 [ 2074.827356] vm_area_dup+0x78/0x290 [ 2074.828304] ? copy_page_range+0x24e9/0x3800 [ 2074.829266] ? vm_area_alloc+0x110/0x110 05:58:51 executing program 7: perf_event_open(&(0x7f0000000000)={0x18000000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:58:51 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 17) 05:58:51 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) r1 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) syz_io_uring_submit(r4, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r5 = syz_open_dev$vcsu(&(0x7f0000000000), 0x1, 0x80) syz_io_uring_submit(r4, 0x0, &(0x7f0000000080)=@IORING_OP_WRITE_FIXED={0x5, 0x4, 0x4007, @fd=r5, 0x7, 0x6, 0x9b56, 0x4, 0x1, {0x2}}, 0x2) 05:58:51 executing program 2: fork() (fail_nth: 34) 05:58:51 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x1000000000) 05:58:51 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:58:51 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) open_tree(r2, &(0x7f0000000040)='./file0\x00', 0x89801) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000440)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) r4 = open(&(0x7f0000000480)='./file1\x00', 0x204202, 0x24) r5 = eventfd(0x2000) dup2(r4, r5) pipe(&(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x5, 0x10, r6, 0x8000000) syz_io_uring_submit(0x0, 0x0, &(0x7f00000003c0)=@IORING_OP_WRITEV={0x2, 0x3, 0x0, @fd=r0, 0x2, &(0x7f0000000340)=[{&(0x7f0000000100)="95b11363896f9505016aa0ae292807afb89fb163ceb6253d9c9402cce4114c08220077c039325be20ccbf1e7fb061c5eb6d0ca6bf6756fe99ba9dc8063b79b17ae66134b6571ea6c63fd85c0", 0x4c}, {&(0x7f0000000180)="540b3c1ab5891ce75081efee4d2efda98e35e29a033fe4fc673928874a20de13c3675a2926f1c3ddf6e3675fcf9072944e7d83ef15fd5a8974c175ddace96120519647198ad2023db7f4f518c635a47a293b23f3903b56133f8062e4220b9c418ae6aafc87ada22244e096acead1a0ec26de930b4d3bee93feb75ec95ec298b06b660e1fff6485230c1ba0529640f456a0b6392d3eaa5397ce6cec38a89226bf28f7efea439d", 0xa6}, {&(0x7f0000000240)="1a5ed82c57d08a99ec408397244eb0ceaa1972db841a51897215867bbf68d27385d5c30396436c7d601872c9e73f41bc0020bbf52524f61db27ff4a1e14f6a25a0fd3009f4f4464b280614a415347a575805c12f5e8272d135fb484280a75849d8f7b7785e2c6e93700d2a7f66e690e49ae08636ed87d7576b4a", 0x7a}, {&(0x7f00000002c0)="d9a261d0742945cc6209c38a15137773116ee78e7005bb2ee57bea8870803b6dec69bf076602e5862392b235c474c36a693e8573c42e558b7ff289c9c66e24df537126f6787446ff6a7f8f0f873a06e695301aeb57f31bd4b90c7df03c9139f408", 0x61}, {&(0x7f0000000080)="61ff87922b89b04157a536ce6e1d00f48d550be0dd616d7c52cd9d3116db", 0x1e}], 0x5, 0x1, 0x0, {0x1, r3}}, 0x7f) dup2(r1, r0) 05:58:51 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) (fail_nth: 15) [ 2074.830325] ? find_held_lock+0x2c/0x110 [ 2074.831567] ? vm_iomap_memory+0x190/0x190 [ 2074.832519] ? __vma_link_rb+0x540/0x700 [ 2074.833371] copy_process+0x298b/0x78b0 [ 2074.834280] ? __cleanup_sighand+0xb0/0xb0 [ 2074.835196] ? lock_acquire+0x197/0x470 [ 2074.836049] ? find_held_lock+0x2c/0x110 [ 2074.836922] kernel_clone+0xe7/0x980 [ 2074.837732] ? lock_downgrade+0x6d0/0x6d0 [ 2074.838616] ? find_held_lock+0x2c/0x110 [ 2074.839478] ? create_io_thread+0xf0/0xf0 [ 2074.840360] ? ksys_write+0x12d/0x260 [ 2074.841174] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2074.842221] __do_sys_fork+0x8a/0xc0 [ 2074.843012] ? kernel_thread+0xf0/0xf0 [ 2074.843857] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2074.844971] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2074.846074] ? trace_hardirqs_on+0x5b/0x180 [ 2074.846995] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2074.848092] do_syscall_64+0x33/0x40 [ 2074.848888] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2074.849982] RIP: 0033:0x7f22e1959b19 [ 2074.850772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2074.854738] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2074.856362] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2074.857908] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2074.859426] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2074.860949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2074.862477] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2074.870769] FAULT_INJECTION: forcing a failure. [ 2074.870769] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2074.873328] CPU: 1 PID: 10380 Comm: syz-executor.4 Not tainted 5.10.254 #1 [ 2074.873338] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2074.873343] Call Trace: [ 2074.873365] dump_stack+0x107/0x167 [ 2074.873387] should_fail.cold+0x5/0xa [ 2074.873412] _copy_to_user+0x2e/0x180 [ 2074.873438] simple_read_from_buffer+0xcc/0x160 [ 2074.873462] proc_fail_nth_read+0x198/0x230 [ 2074.873484] ? proc_sessionid_read+0x230/0x230 05:58:51 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2074.873502] ? security_file_permission+0xb1/0xe0 05:58:51 executing program 7: perf_event_open(&(0x7f0000000000)={0xfeffffff, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2074.873528] ? proc_sessionid_read+0x230/0x230 [ 2074.873548] vfs_read+0x228/0x620 [ 2074.873569] ksys_read+0x12d/0x260 [ 2074.873584] ? vfs_write+0xb10/0xb10 05:58:51 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) [ 2074.873608] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2074.873637] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2074.873659] do_syscall_64+0x33/0x40 [ 2074.873678] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2074.873689] RIP: 0033:0x7fa2ae5b569c [ 2074.873706] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 2074.873716] RSP: 002b:00007fa2abb78170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2074.873734] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 00007fa2ae5b569c [ 2074.873745] RDX: 000000000000000f RSI: 00007fa2abb781e0 RDI: 0000000000000004 [ 2074.873754] RBP: 00007fa2abb781d0 R08: 0000000000000000 R09: 0000000000000000 05:58:51 executing program 7: perf_event_open(&(0x7f0000000000)={0xffff8000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:58:51 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2074.873764] R10: 000000000001f012 R11: 0000000000000246 R12: 0000000000000002 05:58:51 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x10000000000) [ 2074.873775] R13: 00007fff398c10ff R14: 00007fa2abb78300 R15: 0000000000022000 05:58:51 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00002, 0x100000d, 0x1f012, r0, 0x0) 05:58:51 executing program 2: fork() (fail_nth: 35) [ 2075.143842] FAULT_INJECTION: forcing a failure. [ 2075.143842] name failslab, interval 1, probability 0, space 0, times 0 [ 2075.146412] CPU: 1 PID: 10401 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2075.147880] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2075.149644] Call Trace: [ 2075.150204] dump_stack+0x107/0x167 [ 2075.150979] should_fail.cold+0x5/0xa [ 2075.151792] ? vm_area_dup+0x78/0x290 [ 2075.152601] should_failslab+0x5/0x20 [ 2075.153407] kmem_cache_alloc+0x5b/0x310 [ 2075.154293] vm_area_dup+0x78/0x290 [ 2075.155072] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 2075.156059] ? lock_downgrade+0x6d0/0x6d0 [ 2075.156935] ? copy_page_range+0x24e9/0x3800 [ 2075.157879] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2075.158989] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 2075.159975] ? avc_has_extended_perms+0xf40/0xf40 [ 2075.160984] ? lock_downgrade+0x6d0/0x6d0 [ 2075.161871] ? vm_area_alloc+0x110/0x110 [ 2075.162727] ? find_held_lock+0x2c/0x110 [ 2075.163593] ? selinux_vm_enough_memory+0x114/0x180 [ 2075.164647] ? selinux_sb_statfs+0x250/0x250 [ 2075.165578] ? up_write+0x191/0x550 [ 2075.166359] ? percpu_counter_add_batch+0x8b/0x140 [ 2075.167412] ? __vm_enough_memory+0x184/0x360 [ 2075.168357] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 2075.169433] copy_process+0x298b/0x78b0 [ 2075.170317] ? __cleanup_sighand+0xb0/0xb0 [ 2075.171210] ? lock_acquire+0x197/0x470 [ 2075.172058] ? find_held_lock+0x2c/0x110 [ 2075.172923] kernel_clone+0xe7/0x980 [ 2075.173719] ? lock_downgrade+0x6d0/0x6d0 05:58:51 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 18) [ 2075.174592] ? find_held_lock+0x2c/0x110 [ 2075.175705] ? create_io_thread+0xf0/0xf0 [ 2075.176584] ? ksys_write+0x12d/0x260 [ 2075.177399] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2075.178437] __do_sys_fork+0x8a/0xc0 [ 2075.179224] ? kernel_thread+0xf0/0xf0 [ 2075.180065] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2075.181158] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2075.182255] ? trace_hardirqs_on+0x5b/0x180 [ 2075.183169] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2075.184258] do_syscall_64+0x33/0x40 [ 2075.185047] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2075.186143] RIP: 0033:0x7f22e1959b19 [ 2075.186932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2075.190834] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2075.192442] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2075.193955] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2075.195462] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2075.196965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2075.198479] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:58:51 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0xffffffffffffb) 05:58:51 executing program 7: perf_event_open(&(0x7f0000000000)={0xfffffffe, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2075.254989] FAULT_INJECTION: forcing a failure. [ 2075.254989] name failslab, interval 1, probability 0, space 0, times 0 [ 2075.257483] CPU: 1 PID: 10407 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2075.258953] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2075.260705] Call Trace: [ 2075.261267] dump_stack+0x107/0x167 [ 2075.262047] should_fail.cold+0x5/0xa [ 2075.262863] ? percpu_ref_init+0xd8/0x3d0 [ 2075.263740] should_failslab+0x5/0x20 [ 2075.264547] kmem_cache_alloc_trace+0x55/0x320 [ 2075.265518] ? io_async_queue_proc+0x80/0x80 [ 2075.266457] percpu_ref_init+0xd8/0x3d0 [ 2075.267304] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2075.268433] io_uring_setup+0x14f6/0x2980 [ 2075.269317] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2075.270397] ? wait_for_completion_io+0x270/0x270 [ 2075.271439] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2075.272529] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2075.273620] do_syscall_64+0x33/0x40 [ 2075.274406] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2075.275491] RIP: 0033:0x7f530d0e5b19 [ 2075.276277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2075.280175] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2075.281790] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2075.283301] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2075.284810] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2075.286326] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2075.287834] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 05:58:51 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00004, 0x100000d, 0x1f012, r0, 0x0) 05:59:06 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:59:06 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00008, 0x100000d, 0x1f012, r0, 0x0) 05:59:06 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 19) 05:59:06 executing program 2: fork() (fail_nth: 36) 05:59:06 executing program 1: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) r2 = open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x5}}, './file1\x00'}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r3, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r3, 0x0) open_tree(r3, &(0x7f0000000040)='./file0\x00', 0x89801) mmap(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x1000000, 0x4010, r3, 0x28be000) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f0000000000)) io_uring_enter(r2, 0x6b44, 0xca45, 0x3, &(0x7f00000000c0)={[0x6a72]}, 0x8) 05:59:06 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:59:06 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = dup2(r1, r0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r3, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r3, 0x0) open_tree(r3, &(0x7f0000000040)='./file0\x00', 0x89801) r4 = open_tree(r1, &(0x7f00000001c0)='./file0/file0\x00', 0x9000) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r5, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r5, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r6, &(0x7f00000005c0)=ANY=[], 0xc1) r7 = syz_mount_image$nfs4(&(0x7f00000002c0), &(0x7f0000000300)='./file0/file0\x00', 0x9, 0x1, &(0x7f0000000440)=[{&(0x7f0000000340)="282816cc1aa36d98e8a305af1e11e37c2baa318e23489d6ffb05e8b3d9b18558e6da351b4f2765fbd2acc17066795fd903fe78a277d94ab247e3ddf41c0a773ed35fed07643b406d7adbc8a2deba55a436f5056d34f64cc46340f7010a3b8c2c92850588e54d219e125a35c9a203a44fa8250154b1297c7472a06dff0f00b9c6a0fdb8fa25f54ecfc920019c3d469b3088e0f499772e648d46585988cb7804b8435f24963ab86fc002f4a5eeb5f73d2cc86c0885ab4b89ee13c725dfb4c4264671b2c59744ffd1", 0xc7, 0x9}], 0x10, &(0x7f0000000480)={[{'/dev/vcs\x00'}, {'/dev/vcs\x00'}, {'{\x9e[*'}, {'/dev/vcs\x00'}, {}, {'/dev/vcs\x00'}, {'/dev/vcs\x00'}, {'-\xcd:%\'}'}, {'/dev/vcs\x00'}], [{@fowner_eq={'fowner', 0x3d, 0xee00}}, {@audit}]}) execveat(r7, &(0x7f0000000500)='./file1\x00', &(0x7f0000000640)=[&(0x7f0000000540)='/dev/vcs\x00', &(0x7f0000000580)='$%.{', &(0x7f00000005c0)='!-\xb3\xa0-(\xb4(\x00', &(0x7f0000000600)='/dev/vcs\x00'], &(0x7f0000000740)=[&(0x7f0000000680)='/dev/vcs\x00', &(0x7f00000006c0)='/dev/vcs\x00', &(0x7f0000000700)='#]}\\[j-:\'\x00'], 0x1000) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r6, 0x0) open_tree(r6, &(0x7f0000000040)='./file0\x00', 0x89801) ppoll(&(0x7f0000000200)=[{r4, 0x9000}, {r1, 0x40}, {r5, 0x104}, {r2, 0x4}, {r6, 0x90}], 0x5, &(0x7f0000000240)={0x77359400}, &(0x7f0000000280)={[0x1]}, 0x8) sendmsg$NFQNL_MSG_VERDICT_BATCH(r3, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x3c, 0x3, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0x5}, [@NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffe, 0xfff}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0xfffffff9}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffc, 0x80000001}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x801c}, 0x8085) ioctl$BTRFS_IOC_START_SYNC(r6, 0x80089418, &(0x7f0000000780)) 05:59:06 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x40000000000000) 05:59:06 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2089.959307] FAULT_INJECTION: forcing a failure. [ 2089.959307] name failslab, interval 1, probability 0, space 0, times 0 [ 2089.961707] CPU: 0 PID: 10429 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2089.963192] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2089.964943] Call Trace: [ 2089.965506] dump_stack+0x107/0x167 [ 2089.966283] should_fail.cold+0x5/0xa [ 2089.967095] ? create_object.isra.0+0x3a/0xa30 [ 2089.968063] should_failslab+0x5/0x20 [ 2089.968863] kmem_cache_alloc+0x5b/0x310 [ 2089.969725] create_object.isra.0+0x3a/0xa30 [ 2089.970663] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2089.971747] kmem_cache_alloc+0x159/0x310 [ 2089.972630] vm_area_dup+0x78/0x290 [ 2089.973408] ? copy_page_range+0x24e9/0x3800 [ 2089.974385] ? vm_area_alloc+0x110/0x110 [ 2089.975239] ? find_held_lock+0x2c/0x110 [ 2089.976101] ? vm_iomap_memory+0x190/0x190 [ 2089.977006] ? __vma_link_rb+0x540/0x700 [ 2089.977882] copy_process+0x298b/0x78b0 [ 2089.978755] ? __cleanup_sighand+0xb0/0xb0 [ 2089.979669] ? lock_acquire+0x197/0x470 [ 2089.979697] ? find_held_lock+0x2c/0x110 [ 2089.981098] kernel_clone+0xe7/0x980 [ 2089.981894] ? lock_downgrade+0x6d0/0x6d0 [ 2089.982776] ? find_held_lock+0x2c/0x110 [ 2089.983631] ? create_io_thread+0xf0/0xf0 [ 2089.984513] ? ksys_write+0x12d/0x260 [ 2089.985324] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2089.986355] __do_sys_fork+0x8a/0xc0 [ 2089.987145] ? kernel_thread+0xf0/0xf0 [ 2089.987982] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2089.989087] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2089.990210] ? trace_hardirqs_on+0x5b/0x180 [ 2089.991117] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2089.992200] do_syscall_64+0x33/0x40 [ 2089.992981] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2089.994075] RIP: 0033:0x7f22e1959b19 [ 2089.994859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2089.997969] FAULT_INJECTION: forcing a failure. [ 2089.997969] name failslab, interval 1, probability 0, space 0, times 0 [ 2089.998726] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2089.998748] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2089.998766] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2090.004711] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2090.006215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2090.007710] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2090.009230] CPU: 1 PID: 10426 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2090.010116] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2090.011144] Call Trace: [ 2090.011479] dump_stack+0x107/0x167 [ 2090.011944] should_fail.cold+0x5/0xa [ 2090.012418] ? create_object.isra.0+0x3a/0xa30 [ 2090.012980] should_failslab+0x5/0x20 [ 2090.013453] kmem_cache_alloc+0x5b/0x310 [ 2090.013975] create_object.isra.0+0x3a/0xa30 [ 2090.014515] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2090.015143] kmem_cache_alloc_trace+0x151/0x320 [ 2090.015733] ? io_async_queue_proc+0x80/0x80 [ 2090.016286] percpu_ref_init+0xd8/0x3d0 [ 2090.016786] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 2090.017462] io_uring_setup+0x14f6/0x2980 [ 2090.017986] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2090.018621] ? wait_for_completion_io+0x270/0x270 [ 2090.019247] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2090.019911] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2090.020556] do_syscall_64+0x33/0x40 [ 2090.021019] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2090.021654] RIP: 0033:0x7f530d0e5b19 [ 2090.022124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2090.024385] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2090.025338] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2090.026233] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2090.027127] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2090.028012] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2090.028894] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2104.390679] FAULT_INJECTION: forcing a failure. [ 2104.390679] name failslab, interval 1, probability 0, space 0, times 0 [ 2104.393554] CPU: 0 PID: 10450 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2104.395167] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2104.397144] Call Trace: [ 2104.397755] dump_stack+0x107/0x167 [ 2104.398637] should_fail.cold+0x5/0xa [ 2104.399529] ? anon_vma_clone+0xdc/0x590 [ 2104.400448] should_failslab+0x5/0x20 [ 2104.401327] kmem_cache_alloc+0x5b/0x310 [ 2104.402302] anon_vma_clone+0xdc/0x590 [ 2104.403213] anon_vma_fork+0x82/0x640 [ 2104.404086] ? __vm_enough_memory+0x184/0x360 [ 2104.405126] copy_process+0x72cd/0x78b0 [ 2104.406097] ? __cleanup_sighand+0xb0/0xb0 [ 2104.407103] ? lock_acquire+0x197/0x470 [ 2104.408052] ? find_held_lock+0x2c/0x110 [ 2104.408993] kernel_clone+0xe7/0x980 [ 2104.409868] ? lock_downgrade+0x6d0/0x6d0 [ 2104.410828] ? find_held_lock+0x2c/0x110 [ 2104.411763] ? create_io_thread+0xf0/0xf0 [ 2104.412718] ? ksys_write+0x12d/0x260 [ 2104.413622] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2104.414758] __do_sys_fork+0x8a/0xc0 [ 2104.415614] ? kernel_thread+0xf0/0xf0 [ 2104.416535] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2104.417784] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2104.418968] ? trace_hardirqs_on+0x5b/0x180 [ 2104.419999] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2104.421193] do_syscall_64+0x33/0x40 [ 2104.422097] entry_SYSCALL_64_after_hwframe+0x67/0xd1 05:59:20 executing program 2: fork() (fail_nth: 37) 05:59:20 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2104.423273] RIP: 0033:0x7f22e1959b19 [ 2104.424296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2104.428659] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2104.430487] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2104.432138] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2104.433798] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2104.435453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2104.437136] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:59:20 executing program 1: r0 = openat$vcs(0xffffffffffffff9c, 0xffffffffffffffff, 0x8040, 0x0) r1 = syz_io_uring_setup(0x3873, &(0x7f00000001c0)={0x0, 0x0, 0x8, 0x3, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r1, 0x8000000) perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0x3, 0x0, 0x3, 0xff, 0x0, 0x8, 0x10, 0x4, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x5, 0x1, @perf_config_ext={0x2, 0x400000}, 0x184, 0x81, 0x7ff, 0x1, 0x6, 0x8c, 0x1f, 0x0, 0x1f, 0x0, 0x2}, 0x0, 0xb, r2, 0x2) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r0, 0x0) 05:59:20 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:59:20 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc0000a, 0x100000d, 0x1f012, r0, 0x0) 05:59:20 executing program 6: clone3(&(0x7f0000001200)={0x40000000, &(0x7f0000000080)=0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140), {0x31}, &(0x7f0000000180)=""/11, 0xb, &(0x7f00000001c0)=""/4096, &(0x7f00000011c0)=[0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x4}, 0x58) r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r3, 0x10, r1, 0x8) r4 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, r3, 0x0, 0xffffffffffffffff, 0x0) r5 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r5, r4) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) ioctl$FS_IOC_FSSETXATTR(r4, 0x401c5820, &(0x7f0000001280)={0x0, 0x76, 0x1000, 0x101, 0x800}) ioctl$FAT_IOCTL_GET_VOLUME_ID(r0, 0x80047213, &(0x7f00000012c0)) write$binfmt_script(r6, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r6, 0x0) open_tree(r6, &(0x7f0000000040)='./file0\x00', 0x89801) writev(r6, &(0x7f0000001280), 0x0) 05:59:20 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x60000000000000) 05:59:20 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 20) 05:59:20 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000240)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) [ 2104.504063] FAULT_INJECTION: forcing a failure. [ 2104.504063] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2104.506376] CPU: 1 PID: 10464 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2104.507721] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2104.509324] Call Trace: [ 2104.509837] dump_stack+0x107/0x167 [ 2104.510558] should_fail.cold+0x5/0xa [ 2104.511300] _copy_to_user+0x2e/0x180 [ 2104.512048] io_uring_setup+0x11b5/0x2980 [ 2104.512862] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2104.513842] ? wait_for_completion_io+0x270/0x270 [ 2104.514814] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2104.515839] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2104.516837] do_syscall_64+0x33/0x40 [ 2104.517564] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2104.518560] RIP: 0033:0x7f530d0e5b19 [ 2104.519283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2104.522882] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2104.524354] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2104.525737] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2104.527123] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2104.528512] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2104.529872] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 05:59:20 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:59:20 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x80000000000000) 05:59:20 executing program 2: fork() (fail_nth: 38) 05:59:20 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:59:20 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc0000c, 0x100000d, 0x1f012, r0, 0x0) 05:59:21 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 21) [ 2104.683303] FAULT_INJECTION: forcing a failure. [ 2104.683303] name failslab, interval 1, probability 0, space 0, times 0 [ 2104.685457] CPU: 1 PID: 10479 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2104.686762] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2104.688301] Call Trace: [ 2104.688808] dump_stack+0x107/0x167 [ 2104.689491] should_fail.cold+0x5/0xa [ 2104.690228] ? vm_area_dup+0x78/0x290 [ 2104.690940] should_failslab+0x5/0x20 [ 2104.691638] kmem_cache_alloc+0x5b/0x310 [ 2104.692404] vm_area_dup+0x78/0x290 [ 2104.693092] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 2104.693989] ? lock_downgrade+0x6d0/0x6d0 [ 2104.694759] ? copy_page_range+0x24e9/0x3800 [ 2104.695584] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2104.696572] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 2104.697437] ? avc_has_extended_perms+0xf40/0xf40 [ 2104.698358] ? lock_downgrade+0x6d0/0x6d0 [ 2104.699128] ? vm_area_alloc+0x110/0x110 [ 2104.699879] ? find_held_lock+0x2c/0x110 [ 2104.700637] ? selinux_vm_enough_memory+0x114/0x180 [ 2104.701574] ? selinux_sb_statfs+0x250/0x250 [ 2104.702409] ? up_write+0x191/0x550 [ 2104.703090] ? percpu_counter_add_batch+0x8b/0x140 [ 2104.704005] ? __vm_enough_memory+0x184/0x360 [ 2104.704844] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 2104.705817] copy_process+0x298b/0x78b0 [ 2104.706641] ? __cleanup_sighand+0xb0/0xb0 [ 2104.707449] ? lock_acquire+0x197/0x470 [ 2104.708234] ? find_held_lock+0x2c/0x110 [ 2104.709008] kernel_clone+0xe7/0x980 [ 2104.709694] ? lock_downgrade+0x6d0/0x6d0 [ 2104.710469] ? find_held_lock+0x2c/0x110 [ 2104.711239] ? create_io_thread+0xf0/0xf0 [ 2104.711999] ? ksys_write+0x12d/0x260 [ 2104.712698] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2104.713594] __do_sys_fork+0x8a/0xc0 [ 2104.714298] ? kernel_thread+0xf0/0xf0 [ 2104.715031] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2104.715997] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2104.716956] ? trace_hardirqs_on+0x5b/0x180 [ 2104.717735] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2104.718689] do_syscall_64+0x33/0x40 [ 2104.719382] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2104.720316] RIP: 0033:0x7f22e1959b19 [ 2104.721024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2104.724380] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2104.725777] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2104.727115] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2104.728419] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2104.728669] FAULT_INJECTION: forcing a failure. 05:59:21 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2104.728669] name failslab, interval 1, probability 0, space 0, times 0 [ 2104.729723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2104.729734] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2104.736003] CPU: 0 PID: 10484 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2104.737539] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2104.739394] Call Trace: [ 2104.739993] dump_stack+0x107/0x167 [ 2104.740800] should_fail.cold+0x5/0xa [ 2104.741655] ? __d_alloc+0x2a/0x990 [ 2104.742467] should_failslab+0x5/0x20 [ 2104.743341] kmem_cache_alloc+0x5b/0x310 [ 2104.744260] __d_alloc+0x2a/0x990 [ 2104.745045] ? find_held_lock+0x2c/0x110 [ 2104.745986] d_alloc_pseudo+0x19/0x70 [ 2104.746851] alloc_file_pseudo+0xce/0x250 [ 2104.747800] ? trace_hardirqs_on+0x5b/0x180 [ 2104.748774] ? alloc_file+0x5a0/0x5a0 [ 2104.749649] anon_inode_getfile+0xc8/0x1f0 [ 2104.750624] io_uring_setup+0x138b/0x2980 [ 2104.751581] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2104.752732] ? wait_for_completion_io+0x270/0x270 [ 2104.754015] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2104.755473] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2104.756948] do_syscall_64+0x33/0x40 [ 2104.757877] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2104.759051] RIP: 0033:0x7f530d0e5b19 [ 2104.759899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2104.764013] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2104.765715] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2104.767320] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2104.768937] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2104.770542] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2104.772139] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 05:59:21 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:59:21 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x80ffff00000000) 05:59:21 executing program 1: write$sndseq(0xffffffffffffffff, &(0x7f0000000000)=[{0x81, 0x40, 0x9, 0xf7, @tick=0x200, {0x3, 0xd3}, {0x4, 0x7}, @note={0x6, 0x4, 0x7, 0x2, 0xba0e}}, {0x0, 0x7, 0x0, 0xff, @tick=0x10001, {0x4, 0x3f}, {0x1, 0x7}, @control={0x92, 0x2, 0x7}}], 0x38) r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) r1 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) syz_io_uring_submit(r4, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r5 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) syz_io_uring_submit(r8, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r7, &(0x7f0000000080)=@IORING_OP_FADVISE={0x18, 0x3, 0x0, @fd=r0, 0x2, 0x0, 0xe91e, 0x2, 0x1, {0x0, r9}}, 0x81) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x2000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 05:59:21 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc0000f, 0x100000d, 0x1f012, r0, 0x0) 05:59:21 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x100000000000000) 05:59:35 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00010, 0x100000d, 0x1f012, r0, 0x0) 05:59:35 executing program 2: fork() (fail_nth: 39) 05:59:35 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2119.342162] FAULT_INJECTION: forcing a failure. [ 2119.342162] name failslab, interval 1, probability 0, space 0, times 0 [ 2119.345257] CPU: 0 PID: 10515 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2119.346642] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2119.348331] Call Trace: [ 2119.348859] dump_stack+0x107/0x167 [ 2119.349589] should_fail.cold+0x5/0xa [ 2119.350366] ? down_write+0xe0/0x160 [ 2119.351114] ? anon_vma_clone+0xdc/0x590 [ 2119.351933] should_failslab+0x5/0x20 [ 2119.352706] kmem_cache_alloc+0x5b/0x310 [ 2119.353528] anon_vma_clone+0xdc/0x590 [ 2119.354330] anon_vma_fork+0x82/0x640 [ 2119.355079] ? __vm_enough_memory+0x184/0x360 [ 2119.355995] copy_process+0x72cd/0x78b0 [ 2119.356820] ? __cleanup_sighand+0xb0/0xb0 [ 2119.357666] ? lock_acquire+0x197/0x470 [ 2119.358480] ? find_held_lock+0x2c/0x110 [ 2119.359301] kernel_clone+0xe7/0x980 [ 2119.360051] ? lock_downgrade+0x6d0/0x6d0 [ 2119.360887] ? find_held_lock+0x2c/0x110 [ 2119.361692] ? create_io_thread+0xf0/0xf0 [ 2119.362535] ? ksys_write+0x12d/0x260 [ 2119.363309] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2119.364273] __do_sys_fork+0x8a/0xc0 [ 2119.365014] ? kernel_thread+0xf0/0xf0 [ 2119.365790] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2119.366852] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2119.367868] ? trace_hardirqs_on+0x5b/0x180 [ 2119.368729] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2119.369766] do_syscall_64+0x33/0x40 [ 2119.370519] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2119.371545] RIP: 0033:0x7f22e1959b19 [ 2119.372292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2119.375945] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2119.377462] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2119.378884] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2119.380309] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2119.381731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2119.383195] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 05:59:35 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x200000000000000) 05:59:35 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 22) 05:59:35 executing program 6: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x9, 0xffffffffffffffff, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x101) 05:59:35 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0xd4b}, 0x0, 0xfdffffffffffffff, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r4, 0x10, r2, 0x8) perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x2c, 0x7f, 0x3f, 0x1, 0x0, 0x1000, 0x8000, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x9, 0x1, @perf_config_ext={0x9, 0x2}, 0x4, 0x8, 0xab3, 0x4, 0x8, 0x9, 0x8, 0x0, 0x81e, 0x0, 0x401}, r4, 0xc, r1, 0x3) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000180), 0x40000, 0x0) perf_event_open(&(0x7f00000002c0)={0x7, 0x80, 0xff, 0x81, 0x1, 0x3f, 0x0, 0x0, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000140), 0x10}, 0x18805, 0x7, 0x80, 0x6, 0x4, 0x9, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x1, r5, 0x1) openat$sr(0xffffffffffffff9c, &(0x7f0000000240), 0x400802, 0x0) perf_event_open(&(0x7f00000003c0)={0x5, 0x80, 0x16, 0x1f, 0xde, 0xfa, 0x0, 0xc7f4, 0x30800, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x0, @perf_config_ext={0xbb}, 0x200, 0x80000001, 0x2, 0x7, 0x1, 0x2b89, 0xffff, 0x0, 0x3ff, 0x0, 0x401}, r4, 0xd, r5, 0x3) timer_gettime(0x0, &(0x7f0000000000)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 05:59:35 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2119.391066] FAULT_INJECTION: forcing a failure. [ 2119.391066] name failslab, interval 1, probability 0, space 0, times 0 [ 2119.393481] CPU: 1 PID: 10519 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2119.393492] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2119.393497] Call Trace: [ 2119.393523] dump_stack+0x107/0x167 [ 2119.393550] should_fail.cold+0x5/0xa [ 2119.393572] ? create_object.isra.0+0x3a/0xa30 [ 2119.393589] should_failslab+0x5/0x20 [ 2119.393608] kmem_cache_alloc+0x5b/0x310 [ 2119.393631] create_object.isra.0+0x3a/0xa30 [ 2119.393647] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2119.393670] kmem_cache_alloc+0x159/0x310 05:59:35 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2119.393695] __d_alloc+0x2a/0x990 05:59:35 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2119.393712] ? find_held_lock+0x2c/0x110 [ 2119.393732] d_alloc_pseudo+0x19/0x70 [ 2119.393749] alloc_file_pseudo+0xce/0x250 05:59:35 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00321, 0x100000d, 0x1f012, r0, 0x0) [ 2119.393764] ? trace_hardirqs_on+0x5b/0x180 [ 2119.393779] ? alloc_file+0x5a0/0x5a0 [ 2119.393812] anon_inode_getfile+0xc8/0x1f0 [ 2119.393835] io_uring_setup+0x138b/0x2980 05:59:35 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x300000000000000) [ 2119.393862] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2119.393878] ? wait_for_completion_io+0x270/0x270 [ 2119.393917] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 05:59:35 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 23) [ 2119.393936] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2119.393957] do_syscall_64+0x33/0x40 [ 2119.393976] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2119.393988] RIP: 0033:0x7f530d0e5b19 [ 2119.394005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2119.394015] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2119.394035] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2119.394046] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2119.394056] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2119.394066] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2119.394076] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 05:59:35 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2119.552871] FAULT_INJECTION: forcing a failure. [ 2119.552871] name failslab, interval 1, probability 0, space 0, times 0 [ 2119.555360] CPU: 1 PID: 10535 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2119.556836] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2119.558597] Call Trace: [ 2119.559163] dump_stack+0x107/0x167 [ 2119.559941] should_fail.cold+0x5/0xa [ 2119.560764] ? __alloc_file+0x21/0x320 [ 2119.561584] should_failslab+0x5/0x20 [ 2119.562393] kmem_cache_alloc+0x5b/0x310 [ 2119.563269] __alloc_file+0x21/0x320 [ 2119.564054] alloc_empty_file+0x6d/0x170 [ 2119.564910] alloc_file+0x5e/0x5a0 [ 2119.565660] alloc_file_pseudo+0x16a/0x250 [ 2119.566565] ? alloc_file+0x5a0/0x5a0 [ 2119.567388] anon_inode_getfile+0xc8/0x1f0 [ 2119.568296] io_uring_setup+0x138b/0x2980 [ 2119.569186] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2119.570265] ? wait_for_completion_io+0x270/0x270 [ 2119.571311] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2119.572414] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2119.573496] do_syscall_64+0x33/0x40 [ 2119.574293] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2119.575370] RIP: 0033:0x7f530d0e5b19 [ 2119.576152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2119.580053] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2119.581662] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2119.583178] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2119.584688] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2119.586203] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2119.587709] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 05:59:35 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r0, r0) 05:59:35 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:59:50 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00a00, 0x100000d, 0x1f012, r0, 0x0) 05:59:50 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 24) 05:59:50 executing program 6: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x3f, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2031, 0x800, 0x0, 0x6, 0x8000}, 0x0, 0x0, 0xffffffffffffffff, 0x9) openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) 05:59:50 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0xa5}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)=0x0) r2 = syz_io_uring_setup(0x2ea, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x4}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x3, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=@in6={0xa, 0x0, 0x0, @empty}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000600)=""/137, 0x89}], 0x1, &(0x7f00000006c0)=""/163, 0xa3}, 0x0, 0x2, 0x1, {0x3}}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x1, 0x20010, r0, 0x8000000) r7 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x200000d, 0x10, r0, 0x10000000) r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r9 = openat$null(0xffffffffffffff9c, &(0x7f00000003c0), 0x4100, 0x0) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, 0x0, &(0x7f0000000440)=@IORING_OP_STATX={0x15, 0x5, 0x0, r9, &(0x7f0000000500), &(0x7f0000000400)='./file0/file0\x00', 0x2, 0x400, 0x1, {0x0, r10}}, 0x100) write$binfmt_script(r8, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000c, 0x1f012, r8, 0x0) open_tree(r8, &(0x7f0000000040)='./file0\x00', 0x89801) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x1, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1, {0x0, r11}}, 0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x1, 0x0, @fd=r8, 0x1a43fa8d, 0x0, 0x41, 0x4, 0x1, {0x0, r11}}, 0x2) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r5, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000080)=@l2={0x1f, 0x0, @none, 0x1, 0x2}}, 0x800) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 05:59:50 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:59:50 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x400000000000000) 05:59:50 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 05:59:50 executing program 2: fork() (fail_nth: 40) [ 2133.997480] FAULT_INJECTION: forcing a failure. [ 2133.997480] name failslab, interval 1, probability 0, space 0, times 0 [ 2133.999901] CPU: 1 PID: 10552 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2134.001356] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2134.003109] Call Trace: [ 2134.003669] dump_stack+0x107/0x167 [ 2134.004440] should_fail.cold+0x5/0xa [ 2134.005245] ? create_object.isra.0+0x3a/0xa30 [ 2134.006207] should_failslab+0x5/0x20 [ 2134.007018] kmem_cache_alloc+0x5b/0x310 [ 2134.007886] create_object.isra.0+0x3a/0xa30 05:59:50 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00c00, 0x100000d, 0x1f012, r0, 0x0) [ 2134.008809] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2134.009982] kmem_cache_alloc+0x159/0x310 [ 2134.010883] anon_vma_clone+0xdc/0x590 [ 2134.011715] anon_vma_fork+0x82/0x640 [ 2134.012517] ? __vm_enough_memory+0x184/0x360 [ 2134.013468] copy_process+0x72cd/0x78b0 [ 2134.014352] ? __cleanup_sighand+0xb0/0xb0 [ 2134.015257] ? lock_acquire+0x197/0x470 [ 2134.016105] ? find_held_lock+0x2c/0x110 [ 2134.016962] kernel_clone+0xe7/0x980 [ 2134.017746] ? lock_downgrade+0x6d0/0x6d0 [ 2134.018621] ? find_held_lock+0x2c/0x110 [ 2134.019475] ? create_io_thread+0xf0/0xf0 [ 2134.020344] ? ksys_write+0x12d/0x260 [ 2134.021143] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2134.022153] __do_sys_fork+0x8a/0xc0 [ 2134.022941] ? kernel_thread+0xf0/0xf0 [ 2134.023766] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2134.024864] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2134.025938] ? trace_hardirqs_on+0x5b/0x180 [ 2134.026852] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2134.027929] do_syscall_64+0x33/0x40 [ 2134.028704] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2134.029770] RIP: 0033:0x7f22e1959b19 [ 2134.030557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2134.034402] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2134.035046] FAULT_INJECTION: forcing a failure. [ 2134.035046] name failslab, interval 1, probability 0, space 0, times 0 [ 2134.035977] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2134.039045] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2134.040527] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2134.042011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2134.043502] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2134.045172] CPU: 0 PID: 10558 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2134.046129] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2134.046132] Call Trace: [ 2134.046147] dump_stack+0x107/0x167 [ 2134.046161] should_fail.cold+0x5/0xa 05:59:50 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00f00, 0x100000d, 0x1f012, r0, 0x0) [ 2134.046174] ? create_object.isra.0+0x3a/0xa30 [ 2134.046185] should_failslab+0x5/0x20 [ 2134.046197] kmem_cache_alloc+0x5b/0x310 [ 2134.046212] create_object.isra.0+0x3a/0xa30 [ 2134.046222] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2134.046248] kmem_cache_alloc+0x159/0x310 [ 2134.046262] __alloc_file+0x21/0x320 [ 2134.046274] alloc_empty_file+0x6d/0x170 [ 2134.046285] alloc_file+0x5e/0x5a0 05:59:50 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2134.046299] alloc_file_pseudo+0x16a/0x250 [ 2134.046310] ? alloc_file+0x5a0/0x5a0 [ 2134.046332] anon_inode_getfile+0xc8/0x1f0 [ 2134.046348] io_uring_setup+0x138b/0x2980 [ 2134.046365] ? __do_sys_io_uring_enter+0x1890/0x1890 05:59:50 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2134.046375] ? wait_for_completion_io+0x270/0x270 [ 2134.046401] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2134.046414] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2134.046428] do_syscall_64+0x33/0x40 [ 2134.046440] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2134.046448] RIP: 0033:0x7f530d0e5b19 05:59:50 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 25) [ 2134.046459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 05:59:50 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) io_uring_enter(r0, 0x53d8, 0xa9e9, 0x3, &(0x7f0000000000)={[0x8]}, 0x8) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) r2 = openat$cgroup_procs(r1, &(0x7f0000000240)='cgroup.threads\x00', 0x2, 0x0) close(r2) write$P9_RREADLINK(r1, &(0x7f0000000340)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10) r3 = accept4$inet6(r1, &(0x7f0000000280)={0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @dev}}, &(0x7f00000002c0)=0x1c, 0x800) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000300), 0x410081, 0x0) close(r3) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) sendfile(r0, r1, &(0x7f0000000080)=0x8, 0x6) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)) [ 2134.046465] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2134.046478] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2134.046485] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2134.046492] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2134.046498] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2134.046505] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2134.251929] FAULT_INJECTION: forcing a failure. [ 2134.251929] name failslab, interval 1, probability 0, space 0, times 0 [ 2134.253425] CPU: 0 PID: 10581 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2134.254343] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2134.255430] Call Trace: [ 2134.255781] dump_stack+0x107/0x167 [ 2134.256261] should_fail.cold+0x5/0xa [ 2134.256769] ? security_file_alloc+0x34/0x170 [ 2134.257361] should_failslab+0x5/0x20 [ 2134.257862] kmem_cache_alloc+0x5b/0x310 [ 2134.258410] security_file_alloc+0x34/0x170 [ 2134.258975] __alloc_file+0xb7/0x320 [ 2134.259468] alloc_empty_file+0x6d/0x170 [ 2134.260005] alloc_file+0x5e/0x5a0 [ 2134.260474] alloc_file_pseudo+0x16a/0x250 [ 2134.261031] ? alloc_file+0x5a0/0x5a0 [ 2134.261557] anon_inode_getfile+0xc8/0x1f0 [ 2134.262118] io_uring_setup+0x138b/0x2980 [ 2134.262681] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2134.263352] ? wait_for_completion_io+0x270/0x270 [ 2134.264001] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2134.264688] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2134.265367] do_syscall_64+0x33/0x40 [ 2134.265855] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2134.266543] RIP: 0033:0x7f530d0e5b19 [ 2134.267030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2134.269448] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2134.270441] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2134.271366] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2134.272293] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2134.273221] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2134.274144] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:00:03 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:03 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 26) 06:00:03 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = dup2(r1, r0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_WRITE={0x17, 0x3, 0x1d0f57df40d6c6aa, @fd=r2, 0xfffffffffffffffa, &(0x7f0000000080)="87260000d7820dfc55b0235f5bbd5baa80ab91011ff93610a02abdfe12", 0x1d, 0x2}, 0x8001) [ 2146.759015] FAULT_INJECTION: forcing a failure. [ 2146.759015] name failslab, interval 1, probability 0, space 0, times 0 [ 2146.761593] CPU: 1 PID: 10593 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2146.763087] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2146.764844] Call Trace: [ 2146.765408] dump_stack+0x107/0x167 [ 2146.766187] should_fail.cold+0x5/0xa [ 2146.767010] ? down_write+0xe0/0x160 [ 2146.767800] ? anon_vma_clone+0xdc/0x590 [ 2146.768659] should_failslab+0x5/0x20 [ 2146.769465] kmem_cache_alloc+0x5b/0x310 [ 2146.770328] anon_vma_clone+0xdc/0x590 [ 2146.771172] anon_vma_fork+0x82/0x640 [ 2146.771976] ? __vm_enough_memory+0x184/0x360 [ 2146.772928] copy_process+0x72cd/0x78b0 [ 2146.773807] ? __cleanup_sighand+0xb0/0xb0 [ 2146.774725] ? lock_acquire+0x197/0x470 [ 2146.775574] ? find_held_lock+0x2c/0x110 [ 2146.776436] kernel_clone+0xe7/0x980 [ 2146.777226] ? lock_downgrade+0x6d0/0x6d0 [ 2146.778105] ? find_held_lock+0x2c/0x110 [ 2146.778980] ? create_io_thread+0xf0/0xf0 [ 2146.779867] ? ksys_write+0x12d/0x260 [ 2146.780684] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2146.781719] __do_sys_fork+0x8a/0xc0 [ 2146.782520] ? kernel_thread+0xf0/0xf0 [ 2146.783357] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2146.784447] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2146.785524] ? trace_hardirqs_on+0x5b/0x180 [ 2146.786452] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2146.786905] FAULT_INJECTION: forcing a failure. [ 2146.786905] name failslab, interval 1, probability 0, space 0, times 0 [ 2146.787558] do_syscall_64+0x33/0x40 [ 2146.787583] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2146.790908] RIP: 0033:0x7f22e1959b19 [ 2146.791705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2146.795650] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2146.797278] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2146.798819] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2146.800353] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2146.801878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2146.803415] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2146.804967] CPU: 0 PID: 10596 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2146.805869] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2146.806913] Call Trace: [ 2146.807248] dump_stack+0x107/0x167 [ 2146.807707] should_fail.cold+0x5/0xa [ 2146.808205] ? create_object.isra.0+0x3a/0xa30 [ 2146.808780] should_failslab+0x5/0x20 [ 2146.809256] kmem_cache_alloc+0x5b/0x310 [ 2146.809773] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 2146.810474] create_object.isra.0+0x3a/0xa30 [ 2146.811019] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2146.811647] kmem_cache_alloc+0x159/0x310 [ 2146.812165] security_file_alloc+0x34/0x170 [ 2146.812707] __alloc_file+0xb7/0x320 [ 2146.813171] alloc_empty_file+0x6d/0x170 [ 2146.813681] alloc_file+0x5e/0x5a0 [ 2146.814123] alloc_file_pseudo+0x16a/0x250 [ 2146.814680] ? alloc_file+0x5a0/0x5a0 [ 2146.815172] anon_inode_getfile+0xc8/0x1f0 [ 2146.815703] io_uring_setup+0x138b/0x2980 [ 2146.816220] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2146.816848] ? wait_for_completion_io+0x270/0x270 [ 2146.817464] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2146.818128] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2146.818778] do_syscall_64+0x33/0x40 [ 2146.819245] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2146.819876] RIP: 0033:0x7f530d0e5b19 [ 2146.820579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2146.822858] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2146.823809] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2146.824691] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2146.825574] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2146.826466] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2146.827364] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:00:03 executing program 2: fork() (fail_nth: 41) 06:00:03 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc02103, 0x100000d, 0x1f012, r0, 0x0) 06:00:03 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x500000000000000) 06:00:03 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:03 executing program 1: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000340), 0x202000, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000a00)={0x53, 0xfffffffffffffffd, 0x39, 0x6, @scatter={0x6, 0x0, &(0x7f0000000800)=[{&(0x7f0000000380)=""/211, 0xd3}, {&(0x7f0000000500)=""/103, 0x67}, {&(0x7f0000000480)=""/22, 0x16}, {&(0x7f0000000580)=""/243, 0xf3}, {&(0x7f0000000680)=""/218, 0xda}, {&(0x7f0000000780)=""/127, 0x7f}]}, &(0x7f0000000880)="c941deb639f75ad5ac5a699905ffe93657ab5e9b577a93866cb72051b310678ed446e232a63a6cb1c467be001956597c9542635f7dbcc9276c", &(0x7f00000008c0)=""/195, 0x0, 0x10004, 0xffffffffffffffff, &(0x7f00000009c0)}) r1 = syz_io_uring_setup(0x3872, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x2f1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) r2 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r6, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r7 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0) syz_io_uring_submit(r10, r9, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r11 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x27) r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, r9, &(0x7f0000000a80)=@IORING_OP_SPLICE={0x1e, 0x2, 0x0, @fd_index=0x2, 0x7, {0x0, r11}, 0x2, 0x0, 0x0, {0x0, r12, r1}}, 0x8000) syz_io_uring_setup(0x6e85, &(0x7f0000000080)={0x0, 0xae16, 0x10, 0x0, 0x5, 0x0, r1}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r5, r13, &(0x7f0000000180)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x1, 0x0, 0xff, 0x1, &(0x7f0000000240)="71818968f65a4082b6d092f34eee4b2d9b5fedd179c020ee64c2a6585686a217f2867822318297ffc5e904eef837b15e5a13d103e0b70c6bb2d20a48fa2897e2d57ad74e348e93ba283827321a164bd85ba404dc6ac52223c6a903daf628fcbf5136d85300d924fa36bb66303bf0e94e3cc67f9a5f08b94c1443d9c63c2face5f5a8b4a76dc81d88f234ef5b03232eca48948bec87aa33262ef82e42d6cfa2fe08f37461d993ad819a8bec96dd8d6b5bd1ce1d994c35c646ce5867aa457cb9fc2039a170a4", 0x0, 0x0, 0x0, {0x2}}, 0x1) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r1, 0x8000000) 06:00:03 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:03 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:03 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x600000000000000) 06:00:03 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:03 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc04000, 0x100000d, 0x1f012, r0, 0x0) 06:00:03 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = fsopen(&(0x7f0000000080)='cramfs\x00', 0x1) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r4, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r5, 0x10, r3, 0x8) r6 = openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x80a00, 0x0) clone3(&(0x7f0000000400)={0x4000800, &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200), {0x6}, &(0x7f0000000240)=""/212, 0xd4, &(0x7f0000000340)=""/62, &(0x7f0000000380)=[0x0, r5], 0x2, {r6}}, 0x58) r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r7, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r7, 0x0) r8 = open_tree(r7, &(0x7f0000000040)='./file0\x00', 0x89801) dup3(r0, r7, 0x80000) dup2(r2, r0) openat(r8, &(0x7f0000000140)='./file1\x00', 0x22a381, 0x22) 06:00:03 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 27) 06:00:03 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:03 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r3, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r3, 0x0) r4 = open_tree(r3, &(0x7f0000000040)='./file0\x00', 0x89801) sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x40, 0x3, 0x6, 0x201, 0x0, 0x0, {0xc, 0x0, 0x4}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x4040}, 0x20000004) syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_FILES_UPDATE={0x14, 0x6, 0x0, 0x0, 0x2, &(0x7f0000000000)=[r0, r0, r3], 0x3}, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r5, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r5, 0x0) open_tree(r5, &(0x7f0000000040)='./file0\x00', 0x89801) clock_gettime(0x0, &(0x7f00000002c0)={0x0, 0x0}) utimensat(r5, &(0x7f0000000280)='./file0\x00', &(0x7f0000000300)={{r6, r7/1000+10000}, {0x0, 0xea60}}, 0x100) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 06:00:03 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x700000000000000) 06:00:03 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2147.013283] FAULT_INJECTION: forcing a failure. [ 2147.013283] name failslab, interval 1, probability 0, space 0, times 0 [ 2147.014689] CPU: 0 PID: 10626 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2147.015492] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2147.016459] Call Trace: [ 2147.016773] dump_stack+0x107/0x167 [ 2147.017201] should_fail.cold+0x5/0xa [ 2147.017651] ? io_uring_alloc_task_context+0x99/0x6a0 [ 2147.018250] should_failslab+0x5/0x20 [ 2147.018705] kmem_cache_alloc_trace+0x55/0x320 [ 2147.019239] io_uring_alloc_task_context+0x99/0x6a0 [ 2147.019820] ? io_import_iovec+0x1120/0x1120 [ 2147.020336] ? lock_downgrade+0x6d0/0x6d0 [ 2147.020819] ? do_raw_spin_lock+0x121/0x260 [ 2147.021317] ? rwlock_bug.part.0+0x90/0x90 [ 2147.021814] __io_uring_add_tctx_node+0x2c6/0x520 [ 2147.022370] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2147.023009] ? alloc_fd+0x2e7/0x670 [ 2147.023027] io_uring_setup+0x1fbb/0x2980 [ 2147.023043] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2147.023053] ? wait_for_completion_io+0x270/0x270 [ 2147.023076] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2147.023088] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2147.023100] do_syscall_64+0x33/0x40 [ 2147.023112] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2147.023119] RIP: 0033:0x7f530d0e5b19 [ 2147.023129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2147.023135] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2147.023147] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2147.023153] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2147.023159] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2147.023165] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2147.023183] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:00:19 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0x7fffdffff000, 0x100000d, 0x1f012, r0, 0x0) 06:00:19 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:19 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x4000000000000000) [ 2163.508251] FAULT_INJECTION: forcing a failure. [ 2163.508251] name failslab, interval 1, probability 0, space 0, times 0 [ 2163.510889] CPU: 1 PID: 10660 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2163.512343] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2163.514081] Call Trace: [ 2163.514673] dump_stack+0x107/0x167 06:00:19 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 28) 06:00:19 executing program 2: fork() (fail_nth: 42) 06:00:19 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) r2 = syz_open_dev$mouse(&(0x7f0000000080), 0x8000, 0x10001) stat(&(0x7f0000001440)='.\x00', &(0x7f0000001480)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(0xffffffffffffffff, r3) sendmsg$nl_generic(r2, &(0x7f0000001600)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000015c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="441400004000020029bd7000fedbdf250b00000008008b000900000041c8bda89705f7e3513a5b825d46d7d40ff7a3d97bb75e64a22e23a3b241382711ab9193a6c9095a98c0d573791009800d0075002f6465762f766373000000000f8e72ca5f30deb38251a09b86f0299bf80db3b8384a5f69be6b518858a8369e0e27709cd9ea2add834cab510c07c818ce53843b056b712382375a03313699082177808a2fa259d321a301261c8a091ffe26dc5f25f38a3137a8f193a593831970a48ef0ef5cc99236084f04b21d60457d3b8cd794080b5d5fd81b9ecba5b3cea101eac0c5dbe2fe3c32ed4d61c58fb0e6a1ab5b1101113dd86a3006edc964024b892303f4b4183ef6debc2d955dce83f6668614a83459decd6616e603308984e7640125883c5235a35fa4317779140de3fae8f50557f72fd7d50945e35decb11989dcd9e01054c1f0cf5614b3de35e25fec960718ae833d27525b898d68dfc61552dc8d62cb461704a78c8b71a29ab272fc965d6d0c90db5aa32b630597bd0ffa2962d9a7ba19b19075deb1b3defdfa7524b82cc7bd55d52247d9bbe4d19c9bbb7fec88c75f4a498e9faab00e7f3162737bca325f4fcff9b08d6ad8cfcf558fc2920770436aa448981ccae7171329d1790234edf4a2a71a4d256b9d61668f646ac0f34fe75fbd9cdcb85595a62ce5740360d6071339058fb37ad6b69c8a1bc992f938399b3024d882148e013b3fbc42d47ac3a2e584025cfbd92bda0ff2a145f65d0c020a1a92dd67dad21dec2265e27985bbd334ff6fa07a3eb9ae6cd4ea4b2cb7d101b33f80221e432b2cf8ff8a96a48778b46f8e99160a344f1ef63c2b36c73734803c56c379fc9d91050852463d75f6c0c64555149a43456f4a3409a79296c436f2dfca5267af699bce3c814f1c749c58857d59fc51d9a1216f4459a707550ee48d9f89d4718a659cd57bd67b29cb74d2c505fa39889185a3eb32145a40f0e64629623d03524b5128f1c9f96a4d9c764b40baa3d462b4eaa523904db138f8e99f0dd71e802b67f97778a4297f5eb8eefbf8ba598340d436bb86cb403406ec83eb06aa6d0d2732b5a0f341a5a91aef6e585e2d25615c8174a83494bf582de7636bb2ffae1638654bdedef870381f818235a10a1578f1b582789dc29ff107e3634580ae17feabd3678b1a73fc84d0ecd812e203c57d598c4e4919f55d01d61fc78b6d6888cd90f4c761e57bc4bf229c4e4bdcb4963590e01384953592d62ea2771b4802988ab8f9e877e6c348168b8c7eb93c49d7f92a3db9ae7f2c283269a551763996d21bec202fb6d54e7a3c07f3ec15fc3c23c7fbc4e5ee2a3e5b9d907ba70135914c123d2f1e11158dcdc7cd3d8743b436f2185df676b42e8986096477fe50f3fad35464d8929b58018e48275cb11567ca2cf3a37340b45b4940c53bdda576c25704a212df7ee6ca05fda2a882b7b64a557966beb49d8d70c296356cadf7df9cc8d26efa784b5cbf47bd90d1301b505f55a7c9645ed1e83f4587d5a2df74d11c00c8b254a90b181ecaa714f567ba6a58bab4a6b125a91e28a48fc616ca2412ad13279eff6d1b4f8558b29fd651e26a70f16be5c86920a171d81c0ab67fa95056f647739c6ab23070b79b7450b35e4a5048713805f6b296e4baae9343425d806d7ccaf9186d68e6a77eb7bfd6f01e05e6c72fe92520704eac117ab0033e276c5253ff9dc49955eaf77d859912873c6d468aa5e655839f68451e355f5d917479237f885ac8c79145f0afd9a37e01cf84ce4df6252e06fa02e0b2a9959e36413fb5f09f9e7e080f163032c56a90afb06a7cbd918d3398836a19de603d928ec9e0198858cbb20fdd8e56692ce4d1e2f83799409c3522e41e6fed0df9f589bbcf28287dd5d2305dd54a8c69c5e68d91da6d8c768408868b6491e35ffeae017853c014c5c7dcd966c69c5fcd4ea9b685238340d375841f741550e445b0df8739bc95691f07a34b1448ff99e1103b8b38b44a5a6b6e38291fe34ff310a9a258b3f8def967461d0c6d82cd09e13f7f7f1c543f8333f9238667b782db04808dde9e7c8b6e6e94c0ddec8256c970d19c4d51890321e8888f7dd81deb208953b33c8aa38570df145ee03dfb852c8e35c0ebdc4bb0c3fa78b3988275117119e14248cf77081aa068e3465dbdcf505aeeb0898a4c3e7bd9b89b6263f73a558ccf56e638b1e5fbc9cfcfbd52a998f7e6a52e7b1ad17d160ca0b6c228c30b17dd72915bd032ec326d94010db48076707b5521523ad136f35571784571123194cd2e00c333079dc5901996e805722e97e001a730b82f9d168e2c859076f4365ef603ba56ae64c04b12416ffc6bd1d497a2d58210a38a1cea11e86b021cfc874421b7b21bff0ad14b221ec3e23537021a9a249e0a131e5198ae0df743b68baa7299a75549a42e0252abd1f991a1b73cda8ea456dec108ec7cd9545d2afe8ef42ee67a871bf6a1dffa685c25f92f098da3bbfe48669ad4f3cde118195593d4e040da227803495cb92c8df3912000681d9028d8b83367d55dd04a898e04b7ab69e1ca0af2efb0f79e917a767c34b84eeeb7da25e2dd22a5f86fa1b025535cbaeeb62d4603bfef93f4fc9f66697d536eb4baf181f0922a5400392892c30808b660291911f4579379862793f3ef81558843645937bfb0749d845a571e4d2e6b6f8b0df81e9435fa9848256f5ade956d054b9f8bdad49c4fe6fe00e84763541adabee191985e3ddfccb29ac0e319c9d86689f109074543f66d9748cf2ba44e47c71b61194925175dd43217608ae75e0a52eb78c0425dda6c276ed5c72ff16da6f19b818a6d2b8f9b57720b847d9f7172fd28d53f2206c0d041fc4b69a18644dd7ffc9d4c5e57575f78ce5b14ff2486d760ddc17f59a2955888e0ec26b179f8d782442110b6b756aff244cc640a677b860d75dab266584378b418871a09f35552a46e780b8e626c80a716d784ff90624ee2e67debee32df0ba057ef7553ffecf365e0ce9c33cac00a326fa1a10cd921c5d707ba17ca9b7fa3d1f45fdf2e5653788fddcf33b01df76259994e2a26dc9fd7046672b3269aae0777af54c6251c0759791d29121c35a5cf3b186c95ea5518d4914b3a37b2ea990e16bf070b38298adb09fb571f0acb784b933228616513a9c0765efb62c07ade46fbebc144e61b5d5340b1e17b7a990b3f2c738116372c5c3e7b893d570d7dce1ab74183f4f07fbb6ef9424a8df13d05cba28c1f692c84bb7cdf9997c2ea686b75b0117c690c43db1282d27769d5a346c35adb8bbe1f421baf145dd2c56695795f9c6f1e20c234650a7a3c5b553a824ee558ae81e43f03225ee0472977aff5fc417475f8ef9e5424362f23c19f64f17b3cc5cde4e30673005410f508a6556731966802b92a301090cd2fb8d2c50ab94b7642636fd65c630fa26746b8f5168d3f9d5ac93afe4f7a3859c6ba94b9b6e68942fc744fbb30a370750e340eaa03af5ffacf7441ff58f25dcf35ba644c2c0a7e13953d53fbfbba7e131e6e558edebb4015d0ee8a46ae937f184c83571af7f574778f205a1c227b89629ee03dbc5017e8f13d2d5cc8798c4737fd5d1ad5b64b5d9acc5201670db95822f8ea4b51d235337362ea5b4a0e7bcb829740b2e0e801c63fa8c87207506a4d2dfdfb93b9c7b00f6e322fa3bbb08ce90d4a96e840f0f630d0d1a7f39bbf34a66332507b7d5bfa528fe2a418236a84e0a15b7e9388ce0654750fd089f714242c8514f1a21a41f949041cb2f3965dff4b83993105bf5eab1723da3467c391ab979d420a6b391d4e32008fc97e79c9b1b5b310df524757820ee7b3324d398fb1c91b4043a682eb96f22a99ebe9a2ba1c96d555dcd14274c3b9926971164dd879b835d6f0d22fe7abae5008f51d81524f330ef1eea205acd61d99ae1e18b0224d6b837fbe377db4a6fcec26e4e780382ad40280c8f35af1f6e6230aa9c2461e9260d9823795cdc04f5a745ad45d3a909894611e500a561d4a81c7a68a4bc15eb73b42e192a3725bc648c12a6a0c5822aebe8edfdf770d53d2ef3ce2b345dae70ccb659788edf5bebf11e811559be31b7ba2a0a57cdd6cbb61c5f51c020d44a72600c03af2407ef03a7c05868c39953aef37af578c5a78bd88bda3dfa87012d978ae5fe06cf76c54d70ab392f95529f8f7b511d99e5fa5bb6c348aaf11adbd7deb0f95fa3a56013c54c3835dab22eb8eb3e8f83e01e30b7367d2b7f77ecef016ba71a6cb5e8326a9a65a2194229b475d6846e7eda9b5dde83222f0b477cb79e461f19a54a9e4b892ec737763e81d672b5ba7323e1378ed643de8f860769f1723a99fe3368e73f60951f0b6984ba81a397b619594e783c1d73e63efb1add059f40fabb3d073dee9115d6051b530d0fa55ded087c638ac9b67cf3dd7e285862fd4ab115c6e1d9bc8253bc42d693e7bbf662f43c8c3b25ea4411c5add3a13bca99c739e9b8bf0ceafa2efd428df784c1cbf73a99701ecd32980b67924cdf9938900881d35aaeb452128cdf6efd28263209fc385f9f6c8ade86385a7dc5b8695155d9f5ae862551bbb9f0efc162fc73418415e8d6b138ec2250890c9d353e6a23610ba38fde9e01c2405bd6bee69ea152bf0613d0bd8d11de1d1c1ca3456fce62df3f40689f258e2d32b1a33b1ba32f0942a9a14027aa6f13c3ba1d426aab022ac19f476e775e4966383566882e34a185a34ba7ff5bf07d0e8b9c2e35a27af998094f2b0388567166a6c858f6be5cf2f22a9271d9ca272788bbf2ff70e70cee1f347c0615046fdb6604164bb64bcc906bf59a9ae912561778cbe0b5fcfd62c859a51c708c500587f1ef49b90b5b2984d4d4131d5bceb9647ecfa23b67bb22b39abd4fbb58b29a55f2eefc978a48eda51b538be16fd1421f899f4180ad9a2185d4a2d6a281d82e3be6ba7746db931f769b091003fff6440c2d71c650318183c0bdc3f421ec75d540db35f8495505f8c7cdd26476a90894358d9acc2614b96d9fdeea49ec11e77cf3e71b8dc745d2eab25de25a806df2751fe9e405fa5e2c368ef6e803a300e3cd0a82d90ff2431d1cc9cb06001ecb4e859ef09ca560d5f01b23a2e15a5604a54422d7a8e13e3787cc3f6f7e9dbda9ee13b44fe9d8e7643e2b04814839ac27246862a0b7732a75bf78d350c4eeef39f64bfeb1a9e295c1bda5be12968f98ce41f985880deafc2f71a7f46bf15b25d9cad831a575d578b426283f2425cece4a52fca7f594a5a756cab83258e89a4837bc3d640c6fe2da15a2a15092661491b851aafea1ed4b94574181ed7c47a7133ebcfe187ff880252a8cceda006242f9bcbf033f064c6f18de3906559cb4fe8d91fb4317d8e6ad9a96349f2167d66447c147bcf6481a7a3b134cefafa9cb12a98b7e624b8a1f760b8d0e3c3c1837e7f916935430c9dac3c76d4a9f88031cc0da5439dfff6b0bd5ad278187403ad6b99ffd595057df4c73645764a16dd2a9053b1391b7123ff3b58483a7463f1e9ebef64ccf7c40f6f19d0403075d34573ae989c3c1937c366ac4b59510c1a3a4e00c5d66984fa226f7106ac4065f3b615e3e7ee4becf0801143c109eaa6b400dab2c6ebe203c3ee86ddecc2701192a69b6a79888718a7553f884269e63a8d776d4febf5ca797a37812ab9915d2330d462cf0fda40e7913ca82933881ca09eb8288c823733444eff7c9a18b705411a3be137faeb8761381fea887d6c400eca112dc7057303c413606d57e27e373d9ba84e3b7c42913674685999b27c534c2b452807da471b9ba4905f166419e9c74c745283bd7ff6a9f71a2903b0558e11b5d4bf73ead50398aab2563453ab3104955229f4d5298819eede2ab72881dc50470581c95171280959e3dcdbb0b576e59a421692f2cf8b1ef5634fcebfb342c6addea7d90dc1645465d17c2b1da8cb9a50ed7abfc27403edc57e66adf2a021ccbb4432428e1a6a0e25263a85ad9dabe9b68c65cc1e47c28b155330a5215aa62a352cecce0e42b3cc71309d61747099c65c428b59896494d6ab87d56cb9045a3c5b5bf4000000d2001700dbe91fe4b75ea55dd3255a1a89335d97cd1ca01b51e1916a45fee918c434599bd24a8137d905da5e9af83ca94d46c1099756025c4120923c12df26957224f0bf993bc616fc23a41862680de6d7675299811f897029995be01b9193e5f46a8024a84c0a8a3516381c30deb7f4241b12b86e71eaa5587e7086cd685d4fd64be4b7ab6208584dc1fbda3c9480993aa71dc096235b04cf2a93108b44945cfc19970ed4532244d8047122af3749959f205537334fc310c43f69cb230af5b0c4d0cbb11f6c7e4db4b21aa5676e61aee89e000014000d0000000000000000000000ffff64010100050014002b0000000c005080080017007f00000156017480c71156a3b8c3a6201aacaee524a53ba1a886c714fab1118605182c555fd921a990197297e9ee7ec9bc709afbc7332a4d7c42d06e0b64fc9f3e31196e4e0013488a936da6eba84983e45e88d1a1b0059847291b50cf9e958390feae16f48fcc6a4d35b003211ac0d709384abca97b1b73ec91f27da3fddd21113f567e47e6aef9a17e161a04fbe95496c0e0d3a611d1d90af8aa56bbef8b5aa6755a684e2af24a4a0c5dd7dcffa36920f4a5e646f8c9529402919587a7988ef6561de546482bb51989a8a67751f47c869b0f5b1d0a04000f004a0e8706f26e84579999844304badb803cd683568c35fb5468777c16e6836f0285789df993ea6b6931fbd67a3bb8c6535904f4fe25b1fb7673924a491059943e01fdeb11209e5f8dee980f64335d04ec0d6c7029019921a99b3e97ae91f8286561b4266a0a5a72648b34f7825daa15a63389f7cc39b3c9e308008300", @ANYRES32=0x0, @ANYBLOB="00008000708008003700", @ANYRES32=r3, @ANYBLOB="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"], 0x1444}, 0x1, 0x0, 0x0, 0x4}, 0x0) 06:00:19 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:19 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) io_uring_enter(r2, 0x155a, 0x9c29, 0x2, &(0x7f00000000c0), 0x8) write$binfmt_script(r2, &(0x7f00000005c0)=ANY=[], 0xc1) connect$unix(r2, &(0x7f0000001b00)=@file={0x0, './file1/file0\x00'}, 0x6e) lstat(&(0x7f0000000140)='./file0\x00', &(0x7f0000001a80)) r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x4001, 0x0) [ 2163.515609] should_fail.cold+0x5/0xa [ 2163.516560] ? create_object.isra.0+0x3a/0xa30 [ 2163.517658] should_failslab+0x5/0x20 [ 2163.518464] kmem_cache_alloc+0x5b/0x310 [ 2163.519358] create_object.isra.0+0x3a/0xa30 [ 2163.520284] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2163.521352] kmem_cache_alloc+0x159/0x310 [ 2163.522230] anon_vma_clone+0xdc/0x590 [ 2163.523101] anon_vma_fork+0x82/0x640 [ 2163.523901] ? __vm_enough_memory+0x184/0x360 [ 2163.524861] copy_process+0x72cd/0x78b0 [ 2163.525732] ? __cleanup_sighand+0xb0/0xb0 [ 2163.526675] ? lock_acquire+0x197/0x470 [ 2163.527527] ? find_held_lock+0x2c/0x110 [ 2163.528382] kernel_clone+0xe7/0x980 [ 2163.529160] ? lock_downgrade+0x6d0/0x6d0 [ 2163.530030] ? find_held_lock+0x2c/0x110 [ 2163.530925] ? create_io_thread+0xf0/0xf0 [ 2163.531805] ? ksys_write+0x12d/0x260 [ 2163.532626] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2163.533659] __do_sys_fork+0x8a/0xc0 [ 2163.534448] ? kernel_thread+0xf0/0xf0 [ 2163.535322] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2163.536445] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2163.537542] ? trace_hardirqs_on+0x5b/0x180 [ 2163.538467] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2163.539593] do_syscall_64+0x33/0x40 [ 2163.540387] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2163.541472] RIP: 0033:0x7f22e1959b19 write(r3, &(0x7f0000000a80)="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", 0x1000) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) open_tree(r2, &(0x7f0000000040)='./file0\x00', 0x89801) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r4, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r1, 0x0, &(0x7f0000000180)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x7) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001e00)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) ioctl$BTRFS_IOC_GET_DEV_STATS(r2, 0xc4089434, &(0x7f0000000640)={r5, 0x1000, 0x1, [0xfff, 0x1, 0x3, 0x20], [0x0, 0x1, 0x2, 0x7, 0x1, 0x0, 0x6, 0x0, 0x7, 0x1, 0x3, 0x100000000, 0x4, 0x3f, 0xffff, 0x400, 0x0, 0x1f, 0x4, 0x6, 0x7, 0x200, 0x72, 0x8, 0xbcf6, 0x8000, 0x9, 0x2, 0x6, 0x8, 0x2, 0x1, 0x7, 0x7ff, 0x1, 0x4579, 0x80000000, 0x1, 0xa4, 0x6d80e18a, 0x8001, 0x2, 0x7, 0x8, 0x5, 0x7, 0xffffffffffffff9b, 0x6, 0x5, 0x8, 0xfffffffffffffffc, 0x5, 0x0, 0x0, 0x0, 0x9b, 0x8, 0x81, 0x9fa, 0x7, 0x5, 0x4, 0x66, 0x100000001, 0x6, 0x1, 0x80000000, 0x2, 0x3, 0x0, 0x101, 0xc5, 0x3, 0x9, 0x2, 0x92e, 0x0, 0x8, 0x8d, 0x3, 0x9, 0xd965, 0x0, 0x9, 0xffff, 0x2, 0x6, 0x400, 0x6, 0x7ff, 0x6d3, 0x0, 0xff, 0x6, 0x3, 0xff, 0x3, 0x3, 0x10000, 0x1, 0x0, 0x80000001, 0xff, 0xfffffffffffffeff, 0xe29d, 0x3946, 0x7ff, 0x0, 0x80, 0x5, 0x3, 0xed, 0x1, 0x7, 0x9, 0xffffffff, 0x927, 0x7, 0x6, 0x2, 0xffffffff7fffffff]}) r6 = gettid() pidfd_open(r6, 0x0) [ 2163.542257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2163.546367] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2163.547999] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2163.549501] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2163.551026] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2163.552538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2163.554038] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2163.559301] FAULT_INJECTION: forcing a failure. [ 2163.559301] name failslab, interval 1, probability 0, space 0, times 0 [ 2163.563381] CPU: 1 PID: 10659 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2163.564872] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2163.566671] Call Trace: [ 2163.567233] dump_stack+0x107/0x167 [ 2163.568011] should_fail.cold+0x5/0xa 06:00:19 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2163.568827] ? create_object.isra.0+0x3a/0xa30 [ 2163.569899] should_failslab+0x5/0x20 [ 2163.570721] kmem_cache_alloc+0x5b/0x310 [ 2163.571578] create_object.isra.0+0x3a/0xa30 [ 2163.572502] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2163.573579] kmem_cache_alloc_trace+0x151/0x320 [ 2163.574587] io_uring_alloc_task_context+0x99/0x6a0 [ 2163.574614] ? io_import_iovec+0x1120/0x1120 [ 2163.574640] ? lock_downgrade+0x6d0/0x6d0 [ 2163.574661] ? do_raw_spin_lock+0x121/0x260 06:00:19 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0x7ffffffff000, 0x100000d, 0x1f012, r0, 0x0) [ 2163.574679] ? rwlock_bug.part.0+0x90/0x90 [ 2163.574702] __io_uring_add_tctx_node+0x2c6/0x520 [ 2163.574721] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2163.574739] ? alloc_fd+0x2e7/0x670 [ 2163.574768] io_uring_setup+0x1fbb/0x2980 [ 2163.574794] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2163.574809] ? wait_for_completion_io+0x270/0x270 06:00:19 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2163.574849] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2163.574868] ? syscall_enter_from_user_mode+0x1d/0x50 06:00:20 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0xfbffffffffff0f00) [ 2163.574889] do_syscall_64+0x33/0x40 [ 2163.574908] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2163.574919] RIP: 0033:0x7f530d0e5b19 [ 2163.574936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 06:00:20 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 29) [ 2163.574945] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2163.574964] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2163.574974] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2163.574984] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2163.574995] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2163.575006] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2163.773708] FAULT_INJECTION: forcing a failure. [ 2163.773708] name failslab, interval 1, probability 0, space 0, times 0 [ 2163.776425] CPU: 0 PID: 10677 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2163.778001] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2163.779898] Call Trace: [ 2163.780517] dump_stack+0x107/0x167 [ 2163.781350] should_fail.cold+0x5/0xa [ 2163.782222] ? create_object.isra.0+0x3a/0xa30 [ 2163.783278] should_failslab+0x5/0x20 [ 2163.784138] kmem_cache_alloc+0x5b/0x310 [ 2163.785065] create_object.isra.0+0x3a/0xa30 [ 2163.786069] kmemleak_alloc_percpu+0xa0/0x100 [ 2163.787120] pcpu_alloc+0x4e2/0x1240 [ 2163.787991] __percpu_counter_init+0x10d/0x2d0 [ 2163.789015] io_uring_alloc_task_context+0xcc/0x6a0 [ 2163.790150] ? io_import_iovec+0x1120/0x1120 [ 2163.791159] ? lock_downgrade+0x6d0/0x6d0 [ 2163.792090] ? do_raw_spin_lock+0x121/0x260 [ 2163.793054] ? rwlock_bug.part.0+0x90/0x90 [ 2163.794008] __io_uring_add_tctx_node+0x2c6/0x520 [ 2163.795105] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2163.796267] ? alloc_fd+0x2e7/0x670 [ 2163.797102] io_uring_setup+0x1fbb/0x2980 [ 2163.798031] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2163.799164] ? wait_for_completion_io+0x270/0x270 [ 2163.800256] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2163.801438] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2163.802612] do_syscall_64+0x33/0x40 [ 2163.803440] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2163.804580] RIP: 0033:0x7f530d0e5b19 [ 2163.805408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2163.809513] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2163.811466] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2163.813373] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2163.815308] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2163.817217] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2163.819149] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2177.289287] FAULT_INJECTION: forcing a failure. 06:00:33 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 30) 06:00:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x4, 0x1f012, r0, 0x0) 06:00:33 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0xff0fc05300000000) 06:00:33 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x8000, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x1) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 06:00:33 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:33 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:33 executing program 2: fork() (fail_nth: 43) 06:00:33 executing program 6: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r2, 0x10, r0, 0x8) process_vm_readv(r2, &(0x7f0000000080)=[{&(0x7f0000000100)=""/4096, 0x1000}, {&(0x7f0000001100)=""/93, 0x5d}, {&(0x7f0000001180)=""/219, 0xdb}], 0x3, &(0x7f0000002500)=[{&(0x7f0000001280)=""/17, 0x11}, {&(0x7f00000012c0)=""/224, 0xe0}, {&(0x7f00000013c0)=""/165, 0xa5}, {&(0x7f0000001480)=""/4096, 0x1000}, {&(0x7f0000002480)=""/105, 0x69}], 0x5, 0x0) r3 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x28}, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r4, r3) [ 2177.289287] name failslab, interval 1, probability 0, space 0, times 0 06:00:33 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2177.290939] CPU: 1 PID: 10702 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2177.291926] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2177.292978] Call Trace: [ 2177.293319] dump_stack+0x107/0x167 [ 2177.293787] should_fail.cold+0x5/0xa [ 2177.294269] ? anon_vma_clone+0xdc/0x590 [ 2177.294790] should_failslab+0x5/0x20 [ 2177.295270] kmem_cache_alloc+0x5b/0x310 [ 2177.295788] anon_vma_clone+0xdc/0x590 [ 2177.296296] anon_vma_fork+0x82/0x640 [ 2177.296776] ? __vm_enough_memory+0x184/0x360 [ 2177.297359] copy_process+0x72cd/0x78b0 [ 2177.297885] ? __cleanup_sighand+0xb0/0xb0 [ 2177.298434] ? lock_acquire+0x197/0x470 [ 2177.298950] ? find_held_lock+0x2c/0x110 [ 2177.299467] kernel_clone+0xe7/0x980 [ 2177.299942] ? lock_downgrade+0x6d0/0x6d0 [ 2177.300468] ? find_held_lock+0x2c/0x110 [ 2177.300982] ? create_io_thread+0xf0/0xf0 [ 2177.301506] ? ksys_write+0x12d/0x260 [ 2177.301994] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2177.302615] __do_sys_fork+0x8a/0xc0 [ 2177.303094] ? kernel_thread+0xf0/0xf0 [ 2177.303604] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2177.304267] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2177.304929] ? trace_hardirqs_on+0x5b/0x180 [ 2177.305476] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2177.306147] do_syscall_64+0x33/0x40 [ 2177.306617] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2177.307265] RIP: 0033:0x7f22e1959b19 [ 2177.307731] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2177.310076] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2177.311051] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2177.311944] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2177.312852] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2177.313752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2177.314665] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:00:33 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2177.318467] FAULT_INJECTION: forcing a failure. [ 2177.318467] name failslab, interval 1, probability 0, space 0, times 0 [ 2177.320063] CPU: 1 PID: 10700 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2177.320939] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2177.321987] Call Trace: [ 2177.322316] dump_stack+0x107/0x167 [ 2177.322817] should_fail.cold+0x5/0xa [ 2177.323294] ? create_object.isra.0+0x3a/0xa30 [ 2177.323869] should_failslab+0x5/0x20 [ 2177.324355] kmem_cache_alloc+0x5b/0x310 [ 2177.324868] create_object.isra.0+0x3a/0xa30 [ 2177.325437] kmemleak_alloc_percpu+0xa0/0x100 [ 2177.326014] pcpu_alloc+0x4e2/0x1240 [ 2177.326496] __percpu_counter_init+0x10d/0x2d0 [ 2177.327078] io_uring_alloc_task_context+0xcc/0x6a0 [ 2177.327714] ? io_import_iovec+0x1120/0x1120 [ 2177.328258] ? lock_downgrade+0x6d0/0x6d0 [ 2177.328777] ? do_raw_spin_lock+0x121/0x260 [ 2177.329316] ? rwlock_bug.part.0+0x90/0x90 [ 2177.329868] __io_uring_add_tctx_node+0x2c6/0x520 [ 2177.330483] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2177.331153] ? alloc_fd+0x2e7/0x670 [ 2177.331619] io_uring_setup+0x1fbb/0x2980 [ 2177.332155] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2177.332783] ? wait_for_completion_io+0x270/0x270 [ 2177.333399] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2177.334058] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2177.334722] do_syscall_64+0x33/0x40 [ 2177.335190] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2177.335824] RIP: 0033:0x7f530d0e5b19 [ 2177.336290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2177.338623] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2177.339574] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2177.340476] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2177.341359] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2177.342252] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2177.343153] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:00:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000f, 0x1f012, r0, 0x0) 06:00:33 executing program 6: ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @in_args={0x1}}, './file0\x00'}) r1 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffe}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, r0, 0x0) pread64(r0, &(0x7f0000000140)=""/34, 0x22, 0x179c) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r2, r1) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/power/sync_on_suspend', 0x101000, 0x16) ioctl$KIOCSOUND(r3, 0x4b2f, 0x20) 06:00:33 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0xff3fc05300000000) 06:00:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x2) 06:00:33 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f0000000080), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) dup(r1) 06:00:33 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:33 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 31) 06:00:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x4) 06:00:33 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x8) 06:00:33 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) [ 2177.549430] FAULT_INJECTION: forcing a failure. [ 2177.549430] name failslab, interval 1, probability 0, space 0, times 0 [ 2177.551311] CPU: 1 PID: 10728 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2177.552129] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2177.553109] Call Trace: [ 2177.553429] dump_stack+0x107/0x167 [ 2177.553863] should_fail.cold+0x5/0xa [ 2177.554317] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 2177.554943] should_failslab+0x5/0x20 [ 2177.555394] kmem_cache_alloc_trace+0x55/0x320 [ 2177.555940] io_uring_alloc_task_context+0x4a3/0x6a0 [ 2177.556541] ? io_import_iovec+0x1120/0x1120 [ 2177.557064] ? lock_downgrade+0x6d0/0x6d0 [ 2177.557554] ? do_raw_spin_lock+0x121/0x260 [ 2177.558069] ? rwlock_bug.part.0+0x90/0x90 [ 2177.558573] __io_uring_add_tctx_node+0x2c6/0x520 [ 2177.559159] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2177.559781] ? alloc_fd+0x2e7/0x670 [ 2177.560218] io_uring_setup+0x1fbb/0x2980 [ 2177.560714] ? __do_sys_io_uring_enter+0x1890/0x1890 06:00:33 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) open_tree(r2, &(0x7f0000000040)='./file0\x00', 0x89801) openat(r2, &(0x7f0000000080)='./file0\x00', 0x400000, 0x20) [ 2177.561318] ? wait_for_completion_io+0x270/0x270 [ 2177.562090] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2177.562719] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2177.563338] do_syscall_64+0x33/0x40 [ 2177.563784] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2177.564384] RIP: 0033:0x7f530d0e5b19 [ 2177.564828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2177.567006] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2177.567905] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2177.568746] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2177.569587] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2177.570430] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2177.571278] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:00:33 executing program 2: fork() (fail_nth: 44) 06:00:33 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xa) 06:00:33 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2177.644961] FAULT_INJECTION: forcing a failure. [ 2177.644961] name failslab, interval 1, probability 0, space 0, times 0 [ 2177.646319] CPU: 1 PID: 10740 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2177.647118] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2177.648062] Call Trace: [ 2177.648373] dump_stack+0x107/0x167 [ 2177.648789] should_fail.cold+0x5/0xa [ 2177.649227] ? create_object.isra.0+0x3a/0xa30 [ 2177.649745] should_failslab+0x5/0x20 [ 2177.650179] kmem_cache_alloc+0x5b/0x310 [ 2177.650644] create_object.isra.0+0x3a/0xa30 [ 2177.651146] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2177.651725] kmem_cache_alloc+0x159/0x310 [ 2177.652210] anon_vma_fork+0xf1/0x640 [ 2177.652643] ? __vm_enough_memory+0x184/0x360 [ 2177.653163] copy_process+0x72cd/0x78b0 [ 2177.653643] ? __cleanup_sighand+0xb0/0xb0 [ 2177.653663] ? lock_acquire+0x197/0x470 06:00:34 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) r1 = fsmount(0xffffffffffffffff, 0x0, 0x1) syz_io_uring_setup(0x62a, &(0x7f0000000240)={0x0, 0x5155, 0x10, 0x1, 0x1ff, 0x0, r1}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000140)) [ 2177.653679] ? find_held_lock+0x2c/0x110 [ 2177.653692] kernel_clone+0xe7/0x980 [ 2177.653703] ? lock_downgrade+0x6d0/0x6d0 [ 2177.653712] ? find_held_lock+0x2c/0x110 [ 2177.653723] ? create_io_thread+0xf0/0xf0 [ 2177.653734] ? ksys_write+0x12d/0x260 [ 2177.653749] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2177.653765] __do_sys_fork+0x8a/0xc0 [ 2177.653776] ? kernel_thread+0xf0/0xf0 [ 2177.653795] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2177.653808] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2177.653817] ? trace_hardirqs_on+0x5b/0x180 [ 2177.653830] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2177.653840] do_syscall_64+0x33/0x40 [ 2177.653852] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2177.653859] RIP: 0033:0x7f22e1959b19 [ 2177.653869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2177.653874] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2177.653886] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2177.653892] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2177.653898] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2177.653904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2177.653910] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:00:46 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0xff3fe05300000000) 06:00:46 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xc) 06:00:46 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 32) 06:00:46 executing program 2: fork() (fail_nth: 45) 06:00:46 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x8000000) write$binfmt_elf64(r1, &(0x7f0000000240)={{0x7f, 0x45, 0x4c, 0x46, 0x5, 0x7, 0x40, 0x0, 0x1, 0x2, 0x6, 0xf004, 0x212, 0x40, 0x8e, 0x47, 0x7, 0x38, 0x2, 0x81, 0x37, 0x6}, [{0x6, 0xfffffff8, 0xfffffffffffffffb, 0x800, 0x7, 0xfff, 0x80, 0x9}], "423fdc482c778ad436a751da34b9e0c4a3461db435af00da7f9c9702f97dd190a97dc70d0c0e70c7846ed7f26ba9f07df8", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xaa9) 06:00:46 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:46 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:46 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r4, &(0x7f0000000080)=@IORING_OP_ASYNC_CANCEL={0xe, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, {0x0, r6}}, 0x200) dup2(r1, r0) [ 2190.385215] FAULT_INJECTION: forcing a failure. [ 2190.385215] name failslab, interval 1, probability 0, space 0, times 0 [ 2190.387870] CPU: 1 PID: 10771 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2190.389427] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2190.390279] FAULT_INJECTION: forcing a failure. [ 2190.390279] name failslab, interval 1, probability 0, space 0, times 0 [ 2190.391296] Call Trace: [ 2190.393449] dump_stack+0x107/0x167 [ 2190.394284] should_fail.cold+0x5/0xa [ 2190.395163] ? create_object.isra.0+0x3a/0xa30 [ 2190.396189] should_failslab+0x5/0x20 [ 2190.397052] kmem_cache_alloc+0x5b/0x310 [ 2190.398142] create_object.isra.0+0x3a/0xa30 [ 2190.399347] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2190.400737] kmem_cache_alloc_trace+0x151/0x320 [ 2190.402007] io_uring_alloc_task_context+0x4a3/0x6a0 [ 2190.403392] ? io_import_iovec+0x1120/0x1120 [ 2190.404587] ? lock_downgrade+0x6d0/0x6d0 [ 2190.405715] ? do_raw_spin_lock+0x121/0x260 [ 2190.406892] ? rwlock_bug.part.0+0x90/0x90 [ 2190.408042] __io_uring_add_tctx_node+0x2c6/0x520 [ 2190.409354] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2190.410785] ? alloc_fd+0x2e7/0x670 [ 2190.411796] io_uring_setup+0x1fbb/0x2980 [ 2190.412929] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2190.414318] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2190.415795] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2190.417184] do_syscall_64+0x33/0x40 [ 2190.418185] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2190.419571] RIP: 0033:0x7f530d0e5b19 [ 2190.420560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2190.425475] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2190.427527] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2190.429408] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2190.431174] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2190.432920] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2190.434662] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2190.436447] CPU: 0 PID: 10769 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2190.437389] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2190.438502] Call Trace: [ 2190.438884] dump_stack+0x107/0x167 [ 2190.439404] should_fail.cold+0x5/0xa [ 2190.440025] ? anon_vma_fork+0xf1/0x640 [ 2190.440670] should_failslab+0x5/0x20 [ 2190.441180] kmem_cache_alloc+0x5b/0x310 [ 2190.441725] anon_vma_fork+0xf1/0x640 [ 2190.442235] ? __vm_enough_memory+0x184/0x360 [ 2190.442848] copy_process+0x72cd/0x78b0 [ 2190.443401] ? __cleanup_sighand+0xb0/0xb0 [ 2190.443976] ? lock_acquire+0x197/0x470 [ 2190.444517] ? find_held_lock+0x2c/0x110 [ 2190.445063] kernel_clone+0xe7/0x980 [ 2190.445566] ? lock_downgrade+0x6d0/0x6d0 [ 2190.446130] ? find_held_lock+0x2c/0x110 [ 2190.446674] ? create_io_thread+0xf0/0xf0 [ 2190.447236] ? ksys_write+0x12d/0x260 [ 2190.447751] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2190.448403] __do_sys_fork+0x8a/0xc0 [ 2190.448897] ? kernel_thread+0xf0/0xf0 [ 2190.449428] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2190.450124] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2190.450809] ? trace_hardirqs_on+0x5b/0x180 [ 2190.451392] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2190.452078] do_syscall_64+0x33/0x40 [ 2190.452578] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2190.453265] RIP: 0033:0x7f22e1959b19 [ 2190.453762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2190.456204] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2190.457226] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2190.458171] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2190.459131] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2190.460087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2190.461046] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:00:46 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:58 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xf) 06:00:58 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:58 executing program 2: fork() (fail_nth: 46) 06:00:58 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2202.583520] FAULT_INJECTION: forcing a failure. [ 2202.583520] name failslab, interval 1, probability 0, space 0, times 0 [ 2202.586265] CPU: 0 PID: 10793 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2202.588061] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2202.590190] Call Trace: 06:00:58 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8040c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xb, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 06:00:58 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0xffffffff00000000) 06:00:58 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 33) 06:00:58 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r1, 0x0, 0x41, &(0x7f0000000080)={'security\x00', 0x8, "0141efbed5954e2b"}, &(0x7f0000000100)=0x2c) dup2(r1, r0) [ 2202.590885] dump_stack+0x107/0x167 [ 2202.591912] should_fail.cold+0x5/0xa [ 2202.592704] ? create_object.isra.0+0x3a/0xa30 [ 2202.593668] should_failslab+0x5/0x20 [ 2202.594476] kmem_cache_alloc+0x5b/0x310 [ 2202.595362] create_object.isra.0+0x3a/0xa30 [ 2202.596288] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2202.597356] kmem_cache_alloc+0x159/0x310 [ 2202.598225] anon_vma_fork+0xf1/0x640 [ 2202.599046] ? __vm_enough_memory+0x184/0x360 [ 2202.600006] copy_process+0x72cd/0x78b0 [ 2202.600881] ? __cleanup_sighand+0xb0/0xb0 [ 2202.601794] ? lock_acquire+0x197/0x470 [ 2202.602634] ? find_held_lock+0x2c/0x110 [ 2202.603513] kernel_clone+0xe7/0x980 [ 2202.604306] ? lock_downgrade+0x6d0/0x6d0 [ 2202.605193] ? find_held_lock+0x2c/0x110 [ 2202.606048] ? create_io_thread+0xf0/0xf0 [ 2202.606905] ? ksys_write+0x12d/0x260 [ 2202.607714] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2202.608715] __do_sys_fork+0x8a/0xc0 [ 2202.609491] ? kernel_thread+0xf0/0xf0 [ 2202.610311] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2202.611416] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2202.612508] ? trace_hardirqs_on+0x5b/0x180 [ 2202.613406] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2202.614468] do_syscall_64+0x33/0x40 [ 2202.615264] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2202.616342] RIP: 0033:0x7f22e1959b19 [ 2202.617121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2202.621015] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2202.622625] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2202.624147] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2202.625650] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2202.627141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2202.628639] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:00:59 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:59 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:00:59 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x10) [ 2202.675495] FAULT_INJECTION: forcing a failure. [ 2202.675495] name failslab, interval 1, probability 0, space 0, times 0 [ 2202.679528] CPU: 1 PID: 10801 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2202.680949] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2202.682637] Call Trace: [ 2202.683201] dump_stack+0x107/0x167 [ 2202.683941] should_fail.cold+0x5/0xa [ 2202.684732] ? io_wq_create+0xeb/0xc00 [ 2202.685524] should_failslab+0x5/0x20 [ 2202.686302] __kmalloc+0x72/0x390 [ 2202.687028] io_wq_create+0xeb/0xc00 [ 2202.687794] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2202.688823] ? io_import_iovec+0x1120/0x1120 [ 2202.689717] ? io_apoll_task_func+0x2d0/0x2d0 [ 2202.690634] ? __io_req_find_next+0x300/0x300 [ 2202.691558] ? do_raw_spin_lock+0x121/0x260 [ 2202.692434] ? rwlock_bug.part.0+0x90/0x90 [ 2202.693300] __io_uring_add_tctx_node+0x2c6/0x520 [ 2202.694279] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2202.695361] ? alloc_fd+0x2e7/0x670 [ 2202.696117] io_uring_setup+0x1fbb/0x2980 [ 2202.696962] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2202.697998] ? wait_for_completion_io+0x270/0x270 [ 2202.699036] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2202.700118] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2202.701185] do_syscall_64+0x33/0x40 [ 2202.701941] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2202.702994] RIP: 0033:0x7f530d0e5b19 [ 2202.703753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2202.707504] RSP: 002b:00007f530a63a108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2202.709044] RAX: ffffffffffffffda RBX: 00007f530d1f9020 RCX: 00007f530d0e5b19 [ 2202.710521] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2202.712340] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2202.714153] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2202.715977] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:00:59 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r0, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0) open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x89801) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4200000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x44, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xffffffff}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x9}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x40}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x20004801) r1 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r1, 0x8000000) 06:01:11 executing program 2: fork() (fail_nth: 47) 06:01:11 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2215.531830] FAULT_INJECTION: forcing a failure. [ 2215.531830] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2215.533505] CPU: 0 PID: 10820 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2215.534425] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2215.535527] Call Trace: [ 2215.535886] dump_stack+0x107/0x167 [ 2215.536376] should_fail.cold+0x5/0xa [ 2215.536892] __alloc_pages_nodemask+0x182/0x600 [ 2215.537506] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 2215.538303] ? copy_page_range+0x28d9/0x3800 [ 2215.538886] alloc_pages_current+0x187/0x280 [ 2215.539483] get_zeroed_page+0x14/0xb0 [ 2215.540010] __pud_alloc+0x33/0x270 [ 2215.540501] copy_page_range+0x2c99/0x3800 [ 2215.541068] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2215.541770] ? lock_chain_count+0x20/0x20 [ 2215.542330] ? find_held_lock+0x2c/0x110 [ 2215.542873] ? anon_vma_fork+0x462/0x640 [ 2215.543428] ? lock_downgrade+0x6d0/0x6d0 [ 2215.543981] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 2215.544717] ? up_write+0x191/0x550 [ 2215.545196] ? vm_iomap_memory+0x190/0x190 [ 2215.545752] ? downgrade_write+0x3a0/0x3a0 [ 2215.546314] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2215.547034] ? __vma_link_rb+0x540/0x700 [ 2215.547596] copy_process+0x7658/0x78b0 [ 2215.548161] ? __cleanup_sighand+0xb0/0xb0 [ 2215.548738] ? lock_acquire+0x197/0x470 06:01:11 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x300000c, 0x110, r1, 0xe2ada000) 06:01:11 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x800}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) 06:01:11 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:01:11 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r0, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0) open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x89801) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r0, 0x8010671f, &(0x7f0000000180)={&(0x7f0000000080)=""/158, 0x9e}) r1 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f0000000200), 0x10080, 0x0) open_tree(r2, &(0x7f0000000040)='./file0\x00', 0x89801) ioctl$SNAPSHOT_GET_IMAGE_SIZE(r2, 0x8008330e, &(0x7f00000001c0)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) 06:01:11 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x321) [ 2215.549273] ? find_held_lock+0x2c/0x110 [ 2215.549959] kernel_clone+0xe7/0x980 [ 2215.550457] ? lock_downgrade+0x6d0/0x6d0 [ 2215.551008] ? find_held_lock+0x2c/0x110 [ 2215.551571] ? create_io_thread+0xf0/0xf0 [ 2215.552126] ? ksys_write+0x12d/0x260 [ 2215.552646] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2215.553302] __do_sys_fork+0x8a/0xc0 [ 2215.553798] ? kernel_thread+0xf0/0xf0 [ 2215.554325] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2215.554934] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2215.555496] ? trace_hardirqs_on+0x5b/0x180 [ 2215.555966] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2215.556515] do_syscall_64+0x33/0x40 [ 2215.556915] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2215.557461] RIP: 0033:0x7f22e1959b19 [ 2215.557861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2215.559836] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2215.560649] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2215.561412] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2215.562171] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2215.562929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2215.563696] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:01:11 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 34) [ 2215.592369] FAULT_INJECTION: forcing a failure. [ 2215.592369] name failslab, interval 1, probability 0, space 0, times 0 [ 2215.594023] CPU: 1 PID: 10831 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2215.594931] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2215.596022] Call Trace: [ 2215.596379] dump_stack+0x107/0x167 [ 2215.596864] should_fail.cold+0x5/0xa [ 2215.597368] ? create_object.isra.0+0x3a/0xa30 [ 2215.597982] should_failslab+0x5/0x20 [ 2215.598487] kmem_cache_alloc+0x5b/0x310 [ 2215.599038] create_object.isra.0+0x3a/0xa30 [ 2215.599624] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2215.600302] __kmalloc+0x16e/0x390 [ 2215.600783] io_wq_create+0xeb/0xc00 [ 2215.601293] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2215.601965] ? io_import_iovec+0x1120/0x1120 [ 2215.602556] ? io_apoll_task_func+0x2d0/0x2d0 [ 2215.603155] ? __io_req_find_next+0x300/0x300 [ 2215.603750] ? do_raw_spin_lock+0x121/0x260 [ 2215.604311] ? rwlock_bug.part.0+0x90/0x90 [ 2215.604880] __io_uring_add_tctx_node+0x2c6/0x520 [ 2215.605515] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2215.606201] ? alloc_fd+0x2e7/0x670 [ 2215.606691] io_uring_setup+0x1fbb/0x2980 [ 2215.607449] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2215.608759] ? wait_for_completion_io+0x270/0x270 [ 2215.610023] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2215.611390] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2215.612617] do_syscall_64+0x33/0x40 [ 2215.613491] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2215.614693] RIP: 0033:0x7f530d0e5b19 [ 2215.615576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2215.619789] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2215.621520] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2215.623171] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2215.624784] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2215.626390] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2215.628005] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:01:11 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xa00) 06:01:11 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x55010}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) 06:01:11 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:01:12 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:01:12 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xc00) 06:01:12 executing program 5: ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffff}}, './file0\x00'}) ioctl$CDROMEJECT(r0, 0x5309) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) 06:01:12 executing program 2: fork() (fail_nth: 48) 06:01:12 executing program 1: sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000), 0x6) r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) [ 2215.751265] FAULT_INJECTION: forcing a failure. [ 2215.751265] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2215.752605] CPU: 0 PID: 10851 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2215.753344] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2215.754233] Call Trace: [ 2215.754521] dump_stack+0x107/0x167 [ 2215.754914] should_fail.cold+0x5/0xa [ 2215.755339] __alloc_pages_nodemask+0x182/0x600 [ 2215.755839] ? lock_acquire+0x197/0x470 [ 2215.756269] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 2215.756918] ? lock_downgrade+0x6d0/0x6d0 [ 2215.757361] ? do_raw_spin_lock+0x121/0x260 [ 2215.757828] alloc_pages_current+0x187/0x280 [ 2215.758303] __pmd_alloc+0x37/0x630 [ 2215.758695] copy_page_range+0x2bd0/0x3800 [ 2215.759158] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2215.759719] ? lock_chain_count+0x20/0x20 [ 2215.760164] ? find_held_lock+0x2c/0x110 [ 2215.760602] ? anon_vma_fork+0x462/0x640 [ 2215.761055] ? up_write+0x191/0x550 [ 2215.761450] ? vm_iomap_memory+0x190/0x190 [ 2215.761901] ? downgrade_write+0x3a0/0x3a0 [ 2215.762358] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2215.762936] ? __vma_link_rb+0x540/0x700 [ 2215.763382] copy_process+0x7658/0x78b0 [ 2215.763828] ? __cleanup_sighand+0xb0/0xb0 [ 2215.764286] ? lock_acquire+0x197/0x470 [ 2215.764715] ? find_held_lock+0x2c/0x110 [ 2215.765152] kernel_clone+0xe7/0x980 [ 2215.765551] ? lock_downgrade+0x6d0/0x6d0 [ 2215.765992] ? find_held_lock+0x2c/0x110 [ 2215.766425] ? create_io_thread+0xf0/0xf0 [ 2215.766869] ? ksys_write+0x12d/0x260 [ 2215.767288] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2215.767808] __do_sys_fork+0x8a/0xc0 [ 2215.768205] ? kernel_thread+0xf0/0xf0 [ 2215.768632] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2215.769194] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2215.769742] ? trace_hardirqs_on+0x5b/0x180 [ 2215.770206] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2215.770757] do_syscall_64+0x33/0x40 [ 2215.771163] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2215.771710] RIP: 0033:0x7f22e1959b19 [ 2215.772110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2215.774073] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2215.774885] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2215.775657] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2215.776415] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2215.777172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2215.777932] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:01:23 executing program 1: set_robust_list(&(0x7f0000000140)={&(0x7f0000000000), 0xe2a6, &(0x7f00000000c0)={&(0x7f0000000080)}}, 0x18) r0 = syz_io_uring_setup(0x3872, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) r1 = dup3(r0, r0, 0x80000) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x40d08, 0x0, 0xfffffffd, 0x0, 0x8}, 0x0, 0x2, r1, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 06:01:23 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xf00) [ 2227.665420] FAULT_INJECTION: forcing a failure. [ 2227.665420] name failslab, interval 1, probability 0, space 0, times 0 [ 2227.667164] CPU: 0 PID: 10869 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2227.667172] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2227.667176] Call Trace: [ 2227.667196] dump_stack+0x107/0x167 [ 2227.667221] should_fail.cold+0x5/0xa 06:01:23 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 35) 06:01:23 executing program 6: r0 = perf_event_open(&(0x7f0000001300)={0x0, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x2048, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x80, 0x0, 0x200, 0x4, 0xffffdffffffffffc, 0xc, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = accept4$unix(r1, &(0x7f0000000100), &(0x7f0000000080)=0x6e, 0xc0800) ioctl$BTRFS_IOC_SUBVOL_CREATE(r2, 0x5000940e, &(0x7f0000000180)={{r0}, "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"}) dup2(r1, r0) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r3, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r3, 0x0) open_tree(r3, &(0x7f0000000040)='./file0\x00', 0x89801) mmap(&(0x7f0000980000/0x1000)=nil, 0x1000, 0x4, 0x140152, r3, 0x1ef52000) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) open_tree(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x89801) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r3, &(0x7f0000001380)={0xe0002007}) write$binfmt_script(r4, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r4, 0x0) open_tree(r4, &(0x7f0000000040)='./file0\x00', 0x89801) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r4, &(0x7f00000012c0)={&(0x7f0000001180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001280)={&(0x7f00000011c0)={0x94, 0x0, 0x4, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_REKEY_DATA={0x78, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="5724c1a784e62061cae524a77e46b14eb4c7a8611f2b84d3"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="a02816a60d77c6d377ec68086eeeeb82089fb0b474e902630a813ba0585d107a"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="c65371e129a9c60926ce2cdffdce6ba3"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "897cc1da13fd5cb7"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="1b86a0c58521968a3521f43a067c8931"}]}]}, 0x94}}, 0x4008080) 06:01:23 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb4, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) 06:01:23 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:01:23 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:01:23 executing program 2: fork() (fail_nth: 49) [ 2227.667238] ? __pmd_alloc+0x94/0x630 [ 2227.667250] should_failslab+0x5/0x20 [ 2227.667264] kmem_cache_alloc+0x5b/0x310 [ 2227.667282] __pmd_alloc+0x94/0x630 [ 2227.667299] copy_page_range+0x2bd0/0x3800 06:01:24 executing program 2: fork() (fail_nth: 50) 06:01:24 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2227.667314] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 06:01:24 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 36) 06:01:24 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x2103) [ 2227.667328] ? lock_chain_count+0x20/0x20 06:01:24 executing program 1: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1, {0x0, r0}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x5, 0x0, 0x2, 0x3, &(0x7f0000000000)="a9e4c57bdd8c863c5f3510b9427ff1253cd8512f3479380ad07ae0689a1890597f251d5c26bce879a382ec3114931fe59df64a80cfb31fe8d2e29013d61ff82d6545d389c148bd1b2be76e71be5bf023cdca30c7b502f82fe22b7954b84ebeb6b5fe2ae7a411e9eb5d433d38ed63385c81efa0", 0x9, 0x0, 0x1, {0x3, r0}}, 0x8) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x80010, 0xffffffffffffffff, 0x10000000) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) [ 2227.667346] ? find_held_lock+0x2c/0x110 06:01:24 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$getflags(r0, 0x408) r1 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000005, 0x100010, r1, 0x8000000) r3 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r7 = openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x201, 0x0) syz_io_uring_submit(r2, r5, &(0x7f00000000c0)=@IORING_OP_FADVISE={0x18, 0x5, 0x0, @fd=r7, 0x8, 0x0, 0x200, 0x1, 0x1}, 0x3df) [ 2227.667363] ? anon_vma_fork+0x462/0x640 [ 2227.667391] ? up_write+0x191/0x550 [ 2227.667404] ? vm_iomap_memory+0x190/0x190 [ 2227.667417] ? downgrade_write+0x3a0/0x3a0 [ 2227.667433] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2227.667449] ? __vma_link_rb+0x540/0x700 [ 2227.667468] copy_process+0x7658/0x78b0 [ 2227.667506] ? __cleanup_sighand+0xb0/0xb0 [ 2227.667531] ? lock_acquire+0x197/0x470 [ 2227.667550] ? find_held_lock+0x2c/0x110 [ 2227.667567] kernel_clone+0xe7/0x980 [ 2227.667581] ? lock_downgrade+0x6d0/0x6d0 [ 2227.667592] ? find_held_lock+0x2c/0x110 [ 2227.667605] ? create_io_thread+0xf0/0xf0 [ 2227.667620] ? ksys_write+0x12d/0x260 [ 2227.667639] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2227.667659] __do_sys_fork+0x8a/0xc0 [ 2227.667672] ? kernel_thread+0xf0/0xf0 [ 2227.667697] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2227.667713] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2227.667724] ? trace_hardirqs_on+0x5b/0x180 [ 2227.667740] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2227.667753] do_syscall_64+0x33/0x40 [ 2227.667767] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2227.667776] RIP: 0033:0x7f22e1959b19 [ 2227.667789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2227.667796] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2227.667811] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2227.667819] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2227.667826] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2227.667833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2227.667840] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2227.677290] FAULT_INJECTION: forcing a failure. [ 2227.677290] name failslab, interval 1, probability 0, space 0, times 0 [ 2227.677311] CPU: 1 PID: 10865 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2227.677322] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2227.677328] Call Trace: [ 2227.677353] dump_stack+0x107/0x167 [ 2227.677375] should_fail.cold+0x5/0xa [ 2227.677398] ? io_wq_create+0x6ef/0xc00 [ 2227.677417] should_failslab+0x5/0x20 [ 2227.677438] kmem_cache_alloc_node_trace+0x59/0x340 [ 2227.677464] io_wq_create+0x6ef/0xc00 [ 2227.677490] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2227.677511] ? io_import_iovec+0x1120/0x1120 [ 2227.677538] ? io_apoll_task_func+0x2d0/0x2d0 [ 2227.677555] ? __io_req_find_next+0x300/0x300 [ 2227.677571] ? do_raw_spin_lock+0x121/0x260 [ 2227.677587] ? rwlock_bug.part.0+0x90/0x90 [ 2227.677611] __io_uring_add_tctx_node+0x2c6/0x520 [ 2227.677631] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2227.677648] ? alloc_fd+0x2e7/0x670 [ 2227.677677] io_uring_setup+0x1fbb/0x2980 [ 2227.677704] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2227.677721] ? wait_for_completion_io+0x270/0x270 [ 2227.677761] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2227.677781] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2227.677803] do_syscall_64+0x33/0x40 [ 2227.677823] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2227.677834] RIP: 0033:0x7f530d0e5b19 [ 2227.677852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2227.677862] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2227.677882] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2227.677892] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2227.677902] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2227.677912] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2227.677922] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2227.778643] FAULT_INJECTION: forcing a failure. [ 2227.778643] name failslab, interval 1, probability 0, space 0, times 0 [ 2227.778658] CPU: 0 PID: 10882 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2227.778666] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2227.778671] Call Trace: [ 2227.778691] dump_stack+0x107/0x167 [ 2227.778708] should_fail.cold+0x5/0xa [ 2227.778724] ? create_object.isra.0+0x3a/0xa30 [ 2227.778737] should_failslab+0x5/0x20 [ 2227.778751] kmem_cache_alloc+0x5b/0x310 [ 2227.778770] create_object.isra.0+0x3a/0xa30 [ 2227.778782] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2227.778800] kmem_cache_alloc+0x159/0x310 [ 2227.778819] __pmd_alloc+0x94/0x630 [ 2227.778837] copy_page_range+0x2bd0/0x3800 [ 2227.778851] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2227.778866] ? lock_chain_count+0x20/0x20 [ 2227.778884] ? find_held_lock+0x2c/0x110 [ 2227.778901] ? anon_vma_fork+0x462/0x640 [ 2227.778935] ? up_write+0x191/0x550 [ 2227.778949] ? vm_iomap_memory+0x190/0x190 [ 2227.778962] ? downgrade_write+0x3a0/0x3a0 [ 2227.778978] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2227.778994] ? __vma_link_rb+0x540/0x700 [ 2227.779014] copy_process+0x7658/0x78b0 [ 2227.779056] ? __cleanup_sighand+0xb0/0xb0 [ 2227.779078] ? lock_acquire+0x197/0x470 [ 2227.779097] ? find_held_lock+0x2c/0x110 [ 2227.779115] kernel_clone+0xe7/0x980 [ 2227.779129] ? lock_downgrade+0x6d0/0x6d0 [ 2227.779140] ? find_held_lock+0x2c/0x110 [ 2227.779154] ? create_io_thread+0xf0/0xf0 [ 2227.779168] ? ksys_write+0x12d/0x260 [ 2227.779187] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2227.779216] __do_sys_fork+0x8a/0xc0 [ 2227.779229] ? kernel_thread+0xf0/0xf0 [ 2227.779255] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2227.779270] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2227.779282] ? trace_hardirqs_on+0x5b/0x180 [ 2227.779298] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2227.779311] do_syscall_64+0x33/0x40 [ 2227.779324] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2227.779334] RIP: 0033:0x7f22e1959b19 [ 2227.779346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2227.779354] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2227.779369] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2227.779377] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2227.779384] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2227.779392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2227.779399] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2227.816840] FAULT_INJECTION: forcing a failure. [ 2227.816840] name failslab, interval 1, probability 0, space 0, times 0 [ 2227.816857] CPU: 0 PID: 10887 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2227.816864] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2227.816868] Call Trace: [ 2227.816888] dump_stack+0x107/0x167 [ 2227.816904] should_fail.cold+0x5/0xa [ 2227.816920] ? create_object.isra.0+0x3a/0xa30 [ 2227.816933] should_failslab+0x5/0x20 [ 2227.816946] kmem_cache_alloc+0x5b/0x310 [ 2227.816967] ? io_wq_create+0x114/0xc00 [ 2227.816983] create_object.isra.0+0x3a/0xa30 [ 2227.816994] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2227.817012] kmem_cache_alloc_node_trace+0x16d/0x340 [ 2227.817031] io_wq_create+0x6ef/0xc00 [ 2227.817051] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2227.817065] ? io_import_iovec+0x1120/0x1120 [ 2227.817079] ? io_apoll_task_func+0x2d0/0x2d0 [ 2227.817091] ? __io_req_find_next+0x300/0x300 [ 2227.817102] ? do_raw_spin_lock+0x121/0x260 [ 2227.817114] ? rwlock_bug.part.0+0x90/0x90 [ 2227.817131] __io_uring_add_tctx_node+0x2c6/0x520 [ 2227.817145] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2227.817157] ? alloc_fd+0x2e7/0x670 [ 2227.817178] io_uring_setup+0x1fbb/0x2980 [ 2227.817197] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2227.817209] ? wait_for_completion_io+0x270/0x270 [ 2227.817238] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2227.817252] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2227.817268] do_syscall_64+0x33/0x40 [ 2227.817282] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2227.817291] RIP: 0033:0x7f530d0e5b19 [ 2227.817303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2227.817320] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2227.931653] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2227.932664] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2227.933670] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2227.934681] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2227.935698] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:01:24 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x4000) 06:01:24 executing program 5: perf_event_open(&(0x7f0000000000)={0xa, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$netlink(0x10, 0x3, 0xe) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_POLL_ADD={0x6, 0x5, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, {0x2010}, 0x1}, 0x684) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) 06:01:38 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:01:38 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_complete(0x0) clone3(&(0x7f0000000240)={0x22000000, &(0x7f0000000080), &(0x7f00000000c0)=0x0, &(0x7f0000000100), {0x3b}, &(0x7f0000000180)=""/88, 0x58, &(0x7f0000000340)=""/222, &(0x7f0000000200)=[0x0], 0x1, {r0}}, 0x58) r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x6, 0x10001}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r4, 0x10, r2, 0x8) r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r6, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r7, 0x10, r5, 0x8) r8 = fork() r9 = gettid() ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000600)=0x0) r11 = getpid() clone3(&(0x7f0000000680)={0xc00, &(0x7f0000000440), &(0x7f0000000480), &(0x7f0000000500), {0x34}, &(0x7f0000000540)=""/60, 0x3c, &(0x7f0000000740)=""/96, &(0x7f0000000640)=[r4, r7, r8, r9, r10, r11, r1], 0x7, {r0}}, 0x58) r12 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r12, 0x0) open_tree(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x89801) ioctl$BINDER_FREEZE(0xffffffffffffffff, 0x400c620e, &(0x7f0000000700)={r1, 0x1, 0x401}) 06:01:38 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) io_uring_enter(r1, 0x4ce1, 0x34d2, 0x2, &(0x7f00000000c0)={[0x7f]}, 0x8) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x20100, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f000005c000/0x2000)=nil, 0x2000, 0x8, 0x1010, r0, 0x0) io_uring_enter(r2, 0x527, 0x9437, 0x1, &(0x7f0000000080)={[0x3]}, 0x8) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r3, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r3, 0x0) open_tree(r3, &(0x7f0000000040)='./file0\x00', 0x89801) read(r3, &(0x7f0000000240)=""/160, 0xa0) io_uring_register$IORING_UNREGISTER_EVENTFD(r0, 0x5, 0x0, 0x0) 06:01:38 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 37) 06:01:38 executing program 2: fork() (fail_nth: 51) 06:01:38 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x80000) 06:01:38 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) open_tree(r2, &(0x7f0000000040)='./file0\x00', 0x89801) dup3(r1, r2, 0x0) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r3, r0) 06:01:38 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2242.098160] FAULT_INJECTION: forcing a failure. [ 2242.098160] name failslab, interval 1, probability 0, space 0, times 0 [ 2242.103312] CPU: 1 PID: 10917 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2242.105140] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2242.107287] Call Trace: [ 2242.108010] dump_stack+0x107/0x167 [ 2242.108960] should_fail.cold+0x5/0xa [ 2242.109944] ? create_object.isra.0+0x3a/0xa30 [ 2242.111121] should_failslab+0x5/0x20 [ 2242.112117] kmem_cache_alloc+0x5b/0x310 [ 2242.113165] ? io_wq_create+0x114/0xc00 [ 2242.114194] create_object.isra.0+0x3a/0xa30 [ 2242.115329] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2242.116667] kmem_cache_alloc_node_trace+0x16d/0x340 [ 2242.117998] io_wq_create+0x6ef/0xc00 [ 2242.118997] io_uring_alloc_task_context+0x1f1/0x6a0 [ 2242.120329] ? io_import_iovec+0x1120/0x1120 [ 2242.121622] ? io_apoll_task_func+0x2d0/0x2d0 [ 2242.123057] ? __io_req_find_next+0x300/0x300 [ 2242.124509] ? do_raw_spin_lock+0x121/0x260 [ 2242.125904] ? rwlock_bug.part.0+0x90/0x90 [ 2242.127276] __io_uring_add_tctx_node+0x2c6/0x520 [ 2242.128847] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2242.130229] ? alloc_fd+0x2e7/0x670 [ 2242.131179] io_uring_setup+0x1fbb/0x2980 [ 2242.132199] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2242.133276] ? wait_for_completion_io+0x270/0x270 [ 2242.134324] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2242.135455] ? syscall_enter_from_user_mode+0x1d/0x50 06:01:38 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xc0000) [ 2242.136562] do_syscall_64+0x33/0x40 [ 2242.137593] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2242.138694] RIP: 0033:0x7f530d0e5b19 [ 2242.139505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2242.143435] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2242.145084] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2242.146612] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2242.148164] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2242.149672] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2242.151194] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2242.172295] FAULT_INJECTION: forcing a failure. [ 2242.172295] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2242.173850] CPU: 0 PID: 10930 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2242.174735] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2242.175806] Call Trace: [ 2242.176156] dump_stack+0x107/0x167 [ 2242.176617] should_fail.cold+0x5/0xa [ 2242.177113] __alloc_pages_nodemask+0x182/0x600 [ 2242.177702] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 2242.178467] ? find_held_lock+0x2c/0x110 [ 2242.178986] ? __pmd_alloc+0x31d/0x630 [ 2242.179494] ? lock_downgrade+0x6d0/0x6d0 [ 2242.180023] ? do_raw_spin_lock+0x121/0x260 [ 2242.180576] alloc_pages_current+0x187/0x280 [ 2242.181140] pte_alloc_one+0x16/0x1a0 [ 2242.181634] __pte_alloc+0x1d/0x330 [ 2242.182108] copy_page_range+0x1b62/0x3800 [ 2242.182650] ? find_held_lock+0x2c/0x110 [ 2242.183170] ? anon_vma_fork+0x462/0x640 [ 2242.183776] ? up_write+0x191/0x550 [ 2242.184244] ? vm_iomap_memory+0x190/0x190 [ 2242.184781] ? downgrade_write+0x3a0/0x3a0 [ 2242.185323] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2242.186022] ? __vma_link_rb+0x540/0x700 [ 2242.186545] copy_process+0x7658/0x78b0 [ 2242.187076] ? __cleanup_sighand+0xb0/0xb0 [ 2242.187628] ? lock_acquire+0x197/0x470 [ 2242.188141] ? find_held_lock+0x2c/0x110 [ 2242.188661] kernel_clone+0xe7/0x980 [ 2242.189138] ? lock_downgrade+0x6d0/0x6d0 [ 2242.189665] ? find_held_lock+0x2c/0x110 [ 2242.190183] ? create_io_thread+0xf0/0xf0 [ 2242.190705] ? ksys_write+0x12d/0x260 [ 2242.191205] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2242.191840] __do_sys_fork+0x8a/0xc0 [ 2242.192315] ? kernel_thread+0xf0/0xf0 [ 2242.192828] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2242.193506] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2242.194164] ? trace_hardirqs_on+0x5b/0x180 [ 2242.194724] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2242.195388] do_syscall_64+0x33/0x40 [ 2242.195871] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2242.196519] RIP: 0033:0x7f22e1959b19 [ 2242.196993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2242.199327] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2242.200286] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2242.201185] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2242.202082] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2242.202981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2242.203893] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:01:38 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:01:38 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:01:38 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffe}, 0x11000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) 06:01:38 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x1000000) 06:01:38 executing program 2: fork() (fail_nth: 52) 06:01:38 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:01:38 executing program 6: r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$CDROMREADAUDIO(r0, 0x530e, &(0x7f0000000200)={@msf={0x1f, 0x1, 0x20}, 0x0, 0x12, &(0x7f00000001c0)=""/18}) r1 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000280)={{0x1, 0x1, 0x18, r2, {0x8, 0x9a}}, './file0\x00'}) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f00000002c0)='/dev/vcs\x00') r4 = dup2(r2, r1) r5 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000080), 0x20002, 0x0) ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r4, 0x8983, &(0x7f0000000240)={0x2, 'ip6gre0\x00', {0x2}, 0x5}) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r5, 0x4008240b, &(0x7f0000000140)={0x1, 0x80, 0x9, 0x5, 0x9, 0x2, 0x0, 0x3ff, 0x30e1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x7fff, 0x4, @perf_bp={&(0x7f0000000100)}, 0x1220e, 0x6, 0xd4db, 0x8, 0x5, 0x5, 0x9, 0x0, 0x7, 0x0, 0x8}) 06:01:38 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 38) [ 2242.354298] FAULT_INJECTION: forcing a failure. [ 2242.354298] name failslab, interval 1, probability 0, space 0, times 0 [ 2242.357007] CPU: 1 PID: 10948 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2242.358571] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2242.358578] Call Trace: [ 2242.358605] dump_stack+0x107/0x167 [ 2242.358634] should_fail.cold+0x5/0xa [ 2242.361986] ? ptlock_alloc+0x1d/0x70 [ 2242.362794] should_failslab+0x5/0x20 [ 2242.363634] kmem_cache_alloc+0x5b/0x310 [ 2242.364518] ptlock_alloc+0x1d/0x70 [ 2242.365307] pte_alloc_one+0x68/0x1a0 [ 2242.366122] __pte_alloc+0x1d/0x330 [ 2242.366921] copy_page_range+0x1b62/0x3800 [ 2242.367853] ? find_held_lock+0x2c/0x110 [ 2242.368736] ? anon_vma_fork+0x462/0x640 [ 2242.369643] ? up_write+0x191/0x550 [ 2242.370421] ? vm_iomap_memory+0x190/0x190 [ 2242.370869] FAULT_INJECTION: forcing a failure. [ 2242.370869] name failslab, interval 1, probability 0, space 0, times 0 [ 2242.371327] ? downgrade_write+0x3a0/0x3a0 [ 2242.373567] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2242.374717] ? __vma_link_rb+0x540/0x700 [ 2242.375601] copy_process+0x7658/0x78b0 [ 2242.376494] ? __cleanup_sighand+0xb0/0xb0 [ 2242.377406] ? lock_acquire+0x197/0x470 [ 2242.378271] ? find_held_lock+0x2c/0x110 [ 2242.379168] kernel_clone+0xe7/0x980 [ 2242.379975] ? lock_downgrade+0x6d0/0x6d0 [ 2242.380869] ? find_held_lock+0x2c/0x110 [ 2242.381741] ? create_io_thread+0xf0/0xf0 [ 2242.382631] ? ksys_write+0x12d/0x260 [ 2242.383445] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2242.384460] __do_sys_fork+0x8a/0xc0 [ 2242.385236] ? kernel_thread+0xf0/0xf0 [ 2242.386067] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2242.387160] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2242.388257] ? trace_hardirqs_on+0x5b/0x180 [ 2242.389167] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2242.390265] do_syscall_64+0x33/0x40 [ 2242.391065] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2242.392160] RIP: 0033:0x7f22e1959b19 [ 2242.392931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2242.396818] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2242.398436] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2242.399959] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2242.401446] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2242.402974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2242.404475] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2242.406009] CPU: 0 PID: 10952 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2242.406858] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2242.407851] Call Trace: [ 2242.408177] dump_stack+0x107/0x167 [ 2242.408610] should_fail.cold+0x5/0xa [ 2242.409068] ? create_object.isra.0+0x3a/0xa30 [ 2242.409619] should_failslab+0x5/0x20 [ 2242.410078] kmem_cache_alloc+0x5b/0x310 [ 2242.410569] create_object.isra.0+0x3a/0xa30 [ 2242.411081] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2242.411671] kmem_cache_alloc_trace+0x151/0x320 [ 2242.412329] __io_uring_add_tctx_node+0x15c/0x520 [ 2242.413047] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2242.413822] ? alloc_fd+0x2e7/0x670 [ 2242.414356] io_uring_setup+0x1fbb/0x2980 [ 2242.414972] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2242.415740] ? wait_for_completion_io+0x270/0x270 [ 2242.416465] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2242.417223] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2242.417881] do_syscall_64+0x33/0x40 [ 2242.418326] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2242.418922] RIP: 0033:0x7f530d0e5b19 [ 2242.419380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2242.421406] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2242.422304] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2242.423089] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2242.423890] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2242.424677] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2242.425471] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:01:53 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x2000000) 06:01:53 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r0, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0) open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x89801) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000180)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x13080}, 0x0, {0x0, r3}}, 0x2fa) fstatfs(r0, &(0x7f0000000080)=""/132) r4 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) fsetxattr$security_selinux(r0, &(0x7f00000001c0), &(0x7f0000000200)='system_u:object_r:devicekit_exec_t:s0\x00', 0x26, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) 06:01:53 executing program 2: fork() (fail_nth: 53) 06:01:53 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:01:53 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x6) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) 06:01:53 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 39) 06:01:53 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r0, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0) open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x89801) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) r1 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r1, 0x8000000) 06:01:53 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2257.551220] FAULT_INJECTION: forcing a failure. [ 2257.551220] name failslab, interval 1, probability 0, space 0, times 0 [ 2257.554638] CPU: 1 PID: 10971 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2257.556381] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2257.558543] Call Trace: [ 2257.559208] dump_stack+0x107/0x167 [ 2257.560137] should_fail.cold+0x5/0xa [ 2257.561096] ? xas_alloc+0x336/0x440 [ 2257.562023] should_failslab+0x5/0x20 [ 2257.562983] kmem_cache_alloc+0x5b/0x310 [ 2257.564006] ? stack_trace_consume_entry+0x160/0x160 [ 2257.565291] xas_alloc+0x336/0x440 [ 2257.566185] xas_create+0x34a/0x10d0 [ 2257.567136] ? kernel_text_address+0xf2/0x120 [ 2257.568273] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2257.569610] xas_store+0x8c/0x1c40 [ 2257.570515] __xa_store+0x164/0x2d0 [ 2257.571423] ? xa_delete_node+0x280/0x280 [ 2257.572497] ? trace_hardirqs_on+0x5b/0x180 [ 2257.573594] xa_store+0x31/0x50 [ 2257.574439] __io_uring_add_tctx_node+0x1cf/0x520 [ 2257.575682] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2257.577019] ? alloc_fd+0x2e7/0x670 [ 2257.577956] io_uring_setup+0x1fbb/0x2980 [ 2257.579017] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2257.580289] ? wait_for_completion_io+0x270/0x270 [ 2257.581500] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2257.582817] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2257.584105] do_syscall_64+0x33/0x40 [ 2257.585021] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2257.586310] RIP: 0033:0x7f530d0e5b19 [ 2257.587234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2257.591860] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2257.593745] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2257.595502] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2257.597270] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2257.599023] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2257.600816] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:01:53 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2257.614075] FAULT_INJECTION: forcing a failure. [ 2257.614075] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2257.617043] CPU: 1 PID: 10973 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2257.618732] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2257.620801] Call Trace: [ 2257.621462] dump_stack+0x107/0x167 [ 2257.622369] should_fail.cold+0x5/0xa [ 2257.623323] __alloc_pages_nodemask+0x182/0x600 [ 2257.624491] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 2257.625981] ? find_held_lock+0x2c/0x110 [ 2257.626997] ? __pmd_alloc+0x31d/0x630 [ 2257.627968] ? lock_downgrade+0x6d0/0x6d0 [ 2257.628994] ? do_raw_spin_lock+0x121/0x260 [ 2257.630073] alloc_pages_current+0x187/0x280 [ 2257.631167] pte_alloc_one+0x16/0x1a0 [ 2257.632120] __pte_alloc+0x1d/0x330 [ 2257.633015] copy_page_range+0x1b62/0x3800 [ 2257.634059] ? find_held_lock+0x2c/0x110 [ 2257.635074] ? anon_vma_fork+0x462/0x640 [ 2257.636111] ? up_write+0x191/0x550 [ 2257.637024] ? vm_iomap_memory+0x190/0x190 [ 2257.638076] ? downgrade_write+0x3a0/0x3a0 [ 2257.639137] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2257.640504] ? __vma_link_rb+0x540/0x700 [ 2257.641531] copy_process+0x7658/0x78b0 [ 2257.642565] ? __cleanup_sighand+0xb0/0xb0 [ 2257.643621] ? lock_acquire+0x197/0x470 [ 2257.644624] ? find_held_lock+0x2c/0x110 [ 2257.645639] kernel_clone+0xe7/0x980 [ 2257.646562] ? lock_downgrade+0x6d0/0x6d0 [ 2257.647592] ? find_held_lock+0x2c/0x110 [ 2257.648610] ? create_io_thread+0xf0/0xf0 [ 2257.648633] ? ksys_write+0x12d/0x260 [ 2257.648663] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2257.648694] __do_sys_fork+0x8a/0xc0 [ 2257.648714] ? kernel_thread+0xf0/0xf0 [ 2257.648755] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2257.648778] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2257.648795] ? trace_hardirqs_on+0x5b/0x180 [ 2257.648820] ? syscall_enter_from_user_mode+0x1d/0x50 06:01:53 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x4000000) 06:01:53 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x100, 0x101}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r6 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) syz_io_uring_submit(r9, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) socketpair(0x28, 0x2, 0x4, &(0x7f00000001c0)={0xffffffffffffffff}) syz_io_uring_submit(r5, r8, &(0x7f0000000180)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r10, &(0x7f0000000080)=0x80, &(0x7f0000000100)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @multicast2}}}, 0x2) dup2(r1, r0) [ 2257.648841] do_syscall_64+0x33/0x40 [ 2257.648863] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2257.648877] RIP: 0033:0x7f22e1959b19 [ 2257.648897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 06:01:54 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2257.648909] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2257.648932] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 06:01:54 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:01:54 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xa000000) [ 2257.648944] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2257.648956] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2257.648967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 06:01:54 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x20}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000080), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) [ 2257.648979] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:01:54 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x5, 0x102072, r0, 0x8000000) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) io_uring_enter(r0, 0x622e, 0xe351, 0x2, &(0x7f0000000140)={[0x6]}, 0x8) perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x3f, 0x2, 0x7, 0x5, 0x0, 0x5, 0x44000, 0xf, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x3bc4a5ac23272864, @perf_bp={&(0x7f0000000000), 0x1}, 0x20, 0xfffffffffffffffa, 0x2, 0x6, 0x8001, 0x5, 0x101, 0x0, 0x20, 0x0, 0x8ef}, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, 0xa) 06:01:54 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:01:54 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000280)={&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, &(0x7f0000000180)=""/206, 0xce, 0x1, &(0x7f0000000080)=""/153, 0x99}, &(0x7f0000000340)=0x40) 06:01:54 executing program 2: fork() (fail_nth: 54) 06:01:54 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 40) [ 2257.897263] FAULT_INJECTION: forcing a failure. [ 2257.897263] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2257.900066] CPU: 1 PID: 11009 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2257.901628] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2257.902992] FAULT_INJECTION: forcing a failure. [ 2257.902992] name failslab, interval 1, probability 0, space 0, times 0 [ 2257.903499] Call Trace: [ 2257.903537] dump_stack+0x107/0x167 [ 2257.903562] should_fail.cold+0x5/0xa [ 2257.907283] __alloc_pages_nodemask+0x182/0x600 [ 2257.908342] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 2257.909690] ? find_held_lock+0x2c/0x110 [ 2257.910611] ? __pmd_alloc+0x31d/0x630 [ 2257.911484] ? lock_downgrade+0x6d0/0x6d0 [ 2257.912422] ? do_raw_spin_lock+0x121/0x260 [ 2257.913397] alloc_pages_current+0x187/0x280 [ 2257.914387] pte_alloc_one+0x16/0x1a0 [ 2257.915241] __pte_alloc+0x1d/0x330 [ 2257.916072] copy_page_range+0x1b62/0x3800 [ 2257.917023] ? find_held_lock+0x2c/0x110 [ 2257.917925] ? anon_vma_fork+0x462/0x640 [ 2257.918843] ? up_write+0x191/0x550 [ 2257.919658] ? vm_iomap_memory+0x190/0x190 [ 2257.920594] ? downgrade_write+0x3a0/0x3a0 [ 2257.921519] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2257.922720] ? __vma_link_rb+0x540/0x700 [ 2257.923624] copy_process+0x7658/0x78b0 [ 2257.924521] ? __cleanup_sighand+0xb0/0xb0 [ 2257.925445] ? lock_acquire+0x197/0x470 [ 2257.926312] ? find_held_lock+0x2c/0x110 [ 2257.927200] kernel_clone+0xe7/0x980 [ 2257.928024] ? lock_downgrade+0x6d0/0x6d0 [ 2257.928920] ? find_held_lock+0x2c/0x110 [ 2257.929826] ? create_io_thread+0xf0/0xf0 [ 2257.930747] ? ksys_write+0x12d/0x260 [ 2257.931611] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2257.932660] __do_sys_fork+0x8a/0xc0 [ 2257.933467] ? kernel_thread+0xf0/0xf0 [ 2257.934324] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2257.935451] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2257.936580] ? trace_hardirqs_on+0x5b/0x180 [ 2257.937508] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2257.938605] do_syscall_64+0x33/0x40 [ 2257.939405] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2257.940509] RIP: 0033:0x7f22e1959b19 [ 2257.941325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2257.945369] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2257.947042] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2257.948614] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2257.950184] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2257.951759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2257.953312] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2257.954895] CPU: 0 PID: 11010 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2257.955865] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2257.956932] Call Trace: [ 2257.957289] dump_stack+0x107/0x167 [ 2257.957762] should_fail.cold+0x5/0xa [ 2257.958235] ? xas_alloc+0x336/0x440 [ 2257.958712] should_failslab+0x5/0x20 [ 2257.959198] kmem_cache_alloc+0x5b/0x310 [ 2257.959751] ? stack_trace_consume_entry+0x160/0x160 [ 2257.960412] xas_alloc+0x336/0x440 [ 2257.960881] xas_create+0x34a/0x10d0 [ 2257.961368] ? kernel_text_address+0xf2/0x120 [ 2257.961928] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2257.962578] xas_store+0x8c/0x1c40 [ 2257.963029] __xa_store+0x164/0x2d0 [ 2257.963496] ? xa_delete_node+0x280/0x280 [ 2257.964049] ? trace_hardirqs_on+0x5b/0x180 [ 2257.964604] xa_store+0x31/0x50 [ 2257.965030] __io_uring_add_tctx_node+0x1cf/0x520 [ 2257.965643] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2257.966289] ? alloc_fd+0x2e7/0x670 [ 2257.966742] io_uring_setup+0x1fbb/0x2980 [ 2257.967254] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2257.967882] ? wait_for_completion_io+0x270/0x270 [ 2257.968482] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2257.969127] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2257.969768] do_syscall_64+0x33/0x40 [ 2257.970223] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2257.970846] RIP: 0033:0x7f530d0e5b19 [ 2257.971304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2257.973638] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2257.974606] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2257.975514] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2257.976429] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2257.977334] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2257.978245] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:02:09 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 41) 06:02:09 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000280)=0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000000)=0x2) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0x4ae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x1000, 0x0, 0x8, 0x0, 0x8}, r3, 0x10, r1, 0x5) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, @perf_bp={0x0}}, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe2(&(0x7f0000000080), 0x80000) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 06:02:09 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:09 executing program 2: fork() (fail_nth: 55) 06:02:09 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xf000000) 06:02:09 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = dup2(r1, r0) r3 = openat$cgroup_subtree(r2, &(0x7f0000000100), 0x2, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000140)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000080)="75611d9d97a1c0d24a82e3a07552a8ebc84d02abdf349f78e3c9ee537ece41586769aaaf58d4af4b27e159773c6bf5246feb7f16be6683", 0x37, r3}, 0x68) 06:02:09 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:09 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x400, 0x3de}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x30, r1, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) r3 = open_tree(r2, &(0x7f0000000480)='./file1\x00', 0x8101) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x100010, r3, 0x0) close(r0) open_tree(r2, &(0x7f0000000040)='./file0\x00', 0x89801) openat(r2, &(0x7f0000000100)='./file0\x00', 0x4000, 0x11d) r4 = io_uring_setup(0x3b01, &(0x7f0000000600)) io_uring_register$IORING_REGISTER_FILES_UPDATE(r4, 0x6, 0x0, 0x0) readv(r1, &(0x7f00000005c0)=[{&(0x7f0000000080)=""/19, 0x13}, {&(0x7f00000000c0)=""/20, 0x14}, {&(0x7f0000000180)=""/146, 0x92}, {&(0x7f0000000240)=""/106, 0x6a}, {&(0x7f0000000340)=""/178, 0xb2}, {&(0x7f0000000400)=""/123, 0x7b}, {&(0x7f0000000500)=""/132, 0x84}], 0x7) [ 2273.335286] FAULT_INJECTION: forcing a failure. [ 2273.335286] name failslab, interval 1, probability 0, space 0, times 0 [ 2273.338672] CPU: 0 PID: 11028 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2273.340623] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2273.342947] Call Trace: [ 2273.343719] dump_stack+0x107/0x167 [ 2273.344677] should_fail.cold+0x5/0xa [ 2273.345675] ? xas_alloc+0x336/0x440 [ 2273.346648] should_failslab+0x5/0x20 [ 2273.347650] kmem_cache_alloc+0x5b/0x310 [ 2273.348728] xas_alloc+0x336/0x440 [ 2273.349662] xas_create+0x34a/0x10d0 [ 2273.350641] ? queued_spin_lock_slowpath+0xcc/0x8c0 [ 2273.351959] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2273.353327] xas_store+0x8c/0x1c40 [ 2273.354270] __xa_store+0x164/0x2d0 [ 2273.355224] ? xa_delete_node+0x280/0x280 [ 2273.356334] ? trace_hardirqs_on+0x5b/0x180 [ 2273.357477] xa_store+0x31/0x50 [ 2273.358347] __io_uring_add_tctx_node+0x1cf/0x520 [ 2273.359600] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2273.360935] ? alloc_fd+0x2e7/0x670 [ 2273.361788] io_uring_setup+0x1fbb/0x2980 [ 2273.362756] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2273.363924] ? wait_for_completion_io+0x270/0x270 [ 2273.365058] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2273.366252] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2273.367434] do_syscall_64+0x33/0x40 [ 2273.368305] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2273.369480] RIP: 0033:0x7f530d0e5b19 [ 2273.370340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2273.374520] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2273.376261] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2273.377890] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2273.379512] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2273.381146] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2273.382773] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2273.399352] FAULT_INJECTION: forcing a failure. [ 2273.399352] name failslab, interval 1, probability 0, space 0, times 0 [ 2273.402344] CPU: 0 PID: 11035 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2273.403943] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2273.405831] Call Trace: [ 2273.406452] dump_stack+0x107/0x167 06:02:09 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/drivers\x00', 0x0, 0x0) r2 = dup2(r1, r0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_SEND={0x1a, 0x6, 0x0, r2, 0x0, &(0x7f0000000100)="2b236c7a7045c5cacdd70664d752ebea7e099f740b1b2c2caeed3ccf1580ad3814fc56ad785ab39f3b9e4f72fb0143094cbb8c915310e5d0c24d6a134bf27348d61b1e56d592e2b79a429effb4971bb3bcd050ebc9b5d8d8f8ae5c82ff1653d12e8a168de87fe77e5379cdefaf39767a77acdeeb0ed6f2c91c217532e50142d7f601d71bb640d7d83709157de3971dddee89d5a37e5240aead14cbeedd3e59d597071b266c2cb7c7", 0xa8, 0x40040}, 0x7) [ 2273.407294] should_fail.cold+0x5/0xa [ 2273.408467] ? create_object.isra.0+0x3a/0xa30 [ 2273.409518] should_failslab+0x5/0x20 [ 2273.410394] kmem_cache_alloc+0x5b/0x310 [ 2273.411356] create_object.isra.0+0x3a/0xa30 [ 2273.412390] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2273.413583] kmem_cache_alloc+0x159/0x310 [ 2273.414549] vm_area_dup+0x78/0x290 [ 2273.415407] ? _cond_resched+0x10/0x30 [ 2273.416332] ? copy_page_range+0x24e9/0x3800 [ 2273.417391] ? vm_area_alloc+0x110/0x110 [ 2273.418333] ? up_write+0x191/0x550 [ 2273.419182] ? vm_iomap_memory+0x190/0x190 [ 2273.420175] ? downgrade_write+0x3a0/0x3a0 [ 2273.421163] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2273.422423] ? __vma_link_rb+0x540/0x700 [ 2273.423379] copy_process+0x298b/0x78b0 [ 2273.424351] ? __cleanup_sighand+0xb0/0xb0 [ 2273.425339] ? lock_acquire+0x197/0x470 [ 2273.426281] ? find_held_lock+0x2c/0x110 [ 2273.427234] kernel_clone+0xe7/0x980 [ 2273.428116] ? lock_downgrade+0x6d0/0x6d0 [ 2273.429074] ? find_held_lock+0x2c/0x110 [ 2273.430021] ? create_io_thread+0xf0/0xf0 [ 2273.430988] ? ksys_write+0x12d/0x260 [ 2273.431897] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2273.433025] __do_sys_fork+0x8a/0xc0 [ 2273.433894] ? kernel_thread+0xf0/0xf0 [ 2273.434821] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2273.436056] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2273.437248] ? trace_hardirqs_on+0x5b/0x180 [ 2273.438257] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2273.439463] do_syscall_64+0x33/0x40 [ 2273.440350] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2273.441545] RIP: 0033:0x7f22e1959b19 [ 2273.442424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2273.446711] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2273.448491] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2273.450158] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2273.451837] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2273.453527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2273.455209] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:02:09 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80ffff, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:09 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:09 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x10000000) 06:02:24 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 42) 06:02:24 executing program 2: fork() (fail_nth: 56) 06:02:24 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f00000000c0), 0x2, 0x10a000) ioctl$F2FS_IOC_RESIZE_FS(r0, 0x4008f510, &(0x7f0000000100)=0x1) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/wireless\x00') r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x6, 0x0, 0x9, 0x0, 0x0, 0xffffc00000000000, 0x400, 0x4, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1, @perf_config_ext={0xc022}, 0x14010, 0x4, 0x80000001, 0x1, 0x9, 0x0, 0x5, 0x0, 0x2, 0x0, 0x400}, 0x0, 0xf, r1, 0x1) r2 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) 06:02:24 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0)={0x0, 0x9256}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r3, r2, &(0x7f0000000380)=@IORING_OP_WRITE={0x17, 0x3, 0x2007, @fd_index=0x6, 0xaf, &(0x7f0000000340)="372a5039d08e72c5453aad5e96a37fe701da8a66c1", 0x15, 0x3}, 0x20) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x50, r0, 0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000000)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x4, 0x0, 0x7, 0x3, &(0x7f00000002c0)="bd42634fef7689a3bb663c8b7d7cbebb27f9c95c29295aacc4cb4c56e7535437b16cf121492c84617a5d77d60af9303c3b623564e0f4b0111a56c638311a77cb6e07a1e5f0c8d853817cf3765c26c1f07485f69c5f58430ace77bb25ae8177e72b13bf78594f118eb7248076192cb1ff835fcc20b1cb1bc9cb7760e9e3", 0x7ffffffc, 0x0, 0x0, {0x0, r5}}, 0x81) r6 = syz_io_uring_setup(0x4a43, &(0x7f0000000140)={0x0, 0xb18e, 0x0, 0x1, 0xd}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f00000000c0), &(0x7f00000004c0)=0x0) r8 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000240), 0x4000, 0x0) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1, {0x0, r9}}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd=r8, 0x356, 0x0, 0x762, 0x13, 0x0, {0x1, r9}}, 0x5) io_uring_enter(r6, 0xc06, 0xcfd8, 0x2, &(0x7f0000000080)={[0x80]}, 0x8) syz_io_uring_submit(r4, r7, &(0x7f0000000600)=@IORING_OP_WRITE={0x17, 0x0, 0x2007, @fd_index=0xa, 0x2, &(0x7f0000000500)="e57537c64d97df93df442e99846d0e3f643364bbce808923cb118bc569ecd5ee9c24f032499cb99850eb1c5e77eed77f6c222fb2c40e258e3399bc62e677005a7e6d1169fea060581f5ce652728de98e000e35dd98e50ebecdbb8c012ea025326d9d6ea00dfc1c74415c7f941b8294ca6aaf307eca4e566faec719a30c8e41c568b8994aeb60edac35ed80163a4174203d53dd161c761b2e02229a701cf73d523f80c24ac8290dae675b6bd7e24bb5238d7f862a4b064992a063a24d70310ba44015f71c87441bf4e03fed4d04ca86ef591ac645e856db443e0fdbb787b4d726b1cc1061", 0xe4, 0xd, 0x1}, 0xb06) 06:02:24 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:24 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:24 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x20000000) 06:02:24 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = dup2(r1, r0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r3, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r3, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r4, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r4, 0x0) open_tree(r4, &(0x7f0000000040)='./file0\x00', 0x89801) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x880c2, 0x0) write$binfmt_script(r5, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r5, 0x0) open_tree(r5, &(0x7f0000000040)='./file0\x00', 0x89801) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1, {0x0, r6}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_FILES_UPDATE={0x14, 0x3, 0x0, 0x0, 0x8c, &(0x7f0000000240)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2, r0, r1, r4, r5, r2], 0x9, 0x0, 0x1, {0x0, r6}}, 0xffffffff) open_tree(r3, &(0x7f0000000040)='./file0\x00', 0x89801) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) fsconfig$FSCONFIG_SET_FD(r3, 0x5, &(0x7f0000000080)=',:\x00', 0x0, r7) [ 2288.473630] FAULT_INJECTION: forcing a failure. [ 2288.473630] name failslab, interval 1, probability 0, space 0, times 0 [ 2288.476245] CPU: 1 PID: 11112 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2288.477816] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2288.479705] Call Trace: [ 2288.480330] dump_stack+0x107/0x167 [ 2288.481171] should_fail.cold+0x5/0xa [ 2288.482050] ? create_object.isra.0+0x3a/0xa30 [ 2288.483109] should_failslab+0x5/0x20 [ 2288.483991] kmem_cache_alloc+0x5b/0x310 [ 2288.484930] ? mark_held_locks+0x9e/0xe0 [ 2288.485865] create_object.isra.0+0x3a/0xa30 [ 2288.486878] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2288.488060] kmem_cache_alloc+0x159/0x310 [ 2288.489027] xas_alloc+0x336/0x440 [ 2288.489852] xas_create+0x34a/0x10d0 [ 2288.490715] ? kernel_text_address+0xf2/0x120 [ 2288.491748] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2288.493026] xas_store+0x8c/0x1c40 [ 2288.493073] __xa_store+0x164/0x2d0 [ 2288.494492] ? xa_delete_node+0x280/0x280 [ 2288.495453] ? trace_hardirqs_on+0x5b/0x180 [ 2288.496469] xa_store+0x31/0x50 06:02:24 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2288.497232] __io_uring_add_tctx_node+0x1cf/0x520 [ 2288.498497] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2288.499688] ? alloc_fd+0x2e7/0x670 [ 2288.500548] io_uring_setup+0x1fbb/0x2980 [ 2288.501503] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2288.502665] ? wait_for_completion_io+0x270/0x270 [ 2288.503791] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2288.504996] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2288.506189] do_syscall_64+0x33/0x40 [ 2288.507046] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2288.508226] RIP: 0033:0x7f530d0e5b19 [ 2288.509081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2288.513318] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2288.515069] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2288.516726] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2288.518359] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2288.520014] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2288.521657] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2288.529831] FAULT_INJECTION: forcing a failure. [ 2288.529831] name failslab, interval 1, probability 0, space 0, times 0 [ 2288.531637] CPU: 0 PID: 11119 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2288.532724] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2288.534022] Call Trace: [ 2288.534450] dump_stack+0x107/0x167 [ 2288.535042] should_fail.cold+0x5/0xa [ 2288.535656] ? vm_area_dup+0x78/0x290 [ 2288.536279] should_failslab+0x5/0x20 [ 2288.536885] kmem_cache_alloc+0x5b/0x310 [ 2288.537549] vm_area_dup+0x78/0x290 [ 2288.538125] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 2288.538832] ? lock_downgrade+0x6d0/0x6d0 [ 2288.539486] ? copy_page_range+0x24e9/0x3800 [ 2288.540199] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 2288.540940] ? avc_has_extended_perms+0xf40/0xf40 [ 2288.541726] ? vm_area_alloc+0x110/0x110 [ 2288.542384] ? selinux_vm_enough_memory+0x114/0x180 [ 2288.543136] ? selinux_sb_statfs+0x250/0x250 [ 2288.543832] ? percpu_counter_add_batch+0x8b/0x140 [ 2288.544616] ? __vm_enough_memory+0x184/0x360 [ 2288.545327] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 2288.546105] copy_process+0x298b/0x78b0 [ 2288.546787] ? __cleanup_sighand+0xb0/0xb0 [ 2288.547436] ? lock_acquire+0x197/0x470 [ 2288.548102] ? find_held_lock+0x2c/0x110 [ 2288.548720] kernel_clone+0xe7/0x980 [ 2288.549312] ? lock_downgrade+0x6d0/0x6d0 [ 2288.549937] ? find_held_lock+0x2c/0x110 [ 2288.550580] ? create_io_thread+0xf0/0xf0 [ 2288.551207] ? ksys_write+0x12d/0x260 [ 2288.551809] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2288.552554] __do_sys_fork+0x8a/0xc0 [ 2288.553118] ? kernel_thread+0xf0/0xf0 [ 2288.553719] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2288.554513] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2288.555292] ? trace_hardirqs_on+0x5b/0x180 [ 2288.555952] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2288.556731] do_syscall_64+0x33/0x40 [ 2288.557292] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2288.558068] RIP: 0033:0x7f22e1959b19 [ 2288.558634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2288.561387] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2288.562521] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2288.563578] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2288.564843] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2288.565906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2288.566966] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:02:24 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:24 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x21030000) 06:02:24 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 43) 06:02:25 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x1, 0x1000, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 06:02:25 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:25 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x2, "77004a6efdff0000000008002600"}) r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000007280)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) ioctl$TUNSETQUEUE(r2, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r3 = socket$inet(0x2, 0xa, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xffffffffffffffff}, 0x840, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup3(r3, r2, 0x0) dup2(r1, r0) [ 2288.671754] FAULT_INJECTION: forcing a failure. [ 2288.671754] name failslab, interval 1, probability 0, space 0, times 0 [ 2288.673458] CPU: 0 PID: 11132 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2288.674463] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2288.675670] Call Trace: [ 2288.676072] dump_stack+0x107/0x167 [ 2288.676614] should_fail.cold+0x5/0xa [ 2288.677173] ? xas_alloc+0x336/0x440 [ 2288.677732] should_failslab+0x5/0x20 [ 2288.678303] kmem_cache_alloc+0x5b/0x310 [ 2288.678911] xas_alloc+0x336/0x440 [ 2288.679439] xas_create+0x34a/0x10d0 [ 2288.680029] ? kernel_text_address+0xf2/0x120 [ 2288.680683] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2288.681444] xas_store+0x8c/0x1c40 [ 2288.681989] __xa_store+0x164/0x2d0 [ 2288.682525] ? xa_delete_node+0x280/0x280 [ 2288.683154] ? trace_hardirqs_on+0x5b/0x180 [ 2288.683815] xa_store+0x31/0x50 [ 2288.684315] __io_uring_add_tctx_node+0x1cf/0x520 [ 2288.685009] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2288.685767] ? alloc_fd+0x2e7/0x670 [ 2288.686306] io_uring_setup+0x1fbb/0x2980 [ 2288.686923] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2288.687654] ? wait_for_completion_io+0x270/0x270 [ 2288.688417] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2288.689171] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2288.689951] do_syscall_64+0x33/0x40 [ 2288.690500] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2288.691233] RIP: 0033:0x7f530d0e5b19 [ 2288.691764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2288.694538] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2288.695635] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2288.696673] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2288.697699] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2288.698728] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2288.699759] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:02:25 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x40000000) 06:02:25 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:25 executing program 2: fork() (fail_nth: 57) 06:02:25 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000500)={0x0, "935bf6c634ed789fb7c77148d7771e00"}) r1 = socket$nl_audit(0x10, 0x3, 0x9) fgetxattr(r1, &(0x7f0000000080)=@known='security.selinux\x00', &(0x7f0000000180)=""/152, 0x98) r2 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x3000000, 0x50, r2, 0x10000000) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r4, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r4, 0x0) open_tree(r4, &(0x7f0000000040)='./file0\x00', 0x89801) syz_io_uring_submit(0x0, r3, &(0x7f0000000400)=@IORING_OP_SENDMSG={0x9, 0x1, 0x0, r4, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@caif=@rfm={0x25, 0x3f, "e134693608df64f6358f0794753cd226"}, 0x80, &(0x7f0000000240)=[{&(0x7f0000001500)="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", 0x1000}, {&(0x7f0000000340)="930eddbe95c05974485d6b24eef7b9fb0538f2fe77de6f8e0362eac7114b42aa4bd4e646837ebd2fbc2a51dc449653895c9b8fd8fff7026545a493cd5243e08fd345b7146bb9ea018722fc8a916c6ad1a91835d0f6c67e1867f398522fda10376013b450844ab1853ec39b50c70158af34ea0b21642206b0d250b848f5ae4c884849c674db008549309894ea3e1b29d19ce4c4002ddfd29c9c8959e40436fc86cfb35b504269c21587e1ec4ce4c8201bd787b42a1633233709", 0xb9}, {&(0x7f0000002500)="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", 0x1000}], 0x3, &(0x7f0000003500)=[{0x58, 0x88, 0x5, "5f0e692c1c18520b32a7e1c02154ef0d2707871cabbfcc06b1f5d3b04e42f7ef87699abfd177fe26a92bc425f62b4939bfbe2832e559bb137af5d7b66017f29ffe62c043025ea769"}, {0xe8, 0x103, 0x9, "8ee2739b402558d3f5251d4e143aa88143ffc3c5338f34bf05180ef177dfbaaa2bc72e416a73d24cd04d7e3db5e7e3bd08edc0bb8571635ff6f8d799818bd31c37274b74dcafeb27b1f1ab15abeb1bbe42e062f29055b15cd4b7a7468d3d4d78cfe1d81b2d63130c119be3e6b561ef23eb64e7b4cdb6d72f81652822851608b8da4b4188197f44a08122f1e49397dce6978b46815b6520a729932b80010f1c3d9644d7592e1c3b677f5a38bf82882aefd63909b38e7c092f2a7078fc893c6be8d89f3ce815a3111d070696467fcfe2afec9dacc5b6"}, {0xa0, 0x29, 0x0, "4e9d9035842d51900c778db145c69588aea559ee2e1a826681e6959bbb891906bcf2348c5de725768d4fc480c371b08a4a2b1d48a4dbebd3e084b6cfbe71136dcf276a26b0dcc954ff5e570f9588b996bbfb1e6eaf80d499e28f0d9323c60267758148a6e2f20404083916364a88ef1a8aee2bda639fc653507df086250f1309ef031f4d2be3fa5caafa087225"}, {0x1010, 0x119, 0x84, "8770482f0674d61c679e6cb6916f2a655ae1dd16dc3796376efd573f2015f5bc196c031fceb6cb44da450d04a4fea20741775729136fe6ec75a3f57dcce47fdb8aa2e50aa68b1ae7f4612dd698e4cce28e7ca86f361202dfcffe9be919e242cee2ca557b6802df0d49110ab0288162d06135ee0cd4c7eff7243c246974e92d9cdb8fb479392ef77c49f2be754c290d0c6d4b7b3c03e82770e80f4cde691acc584e71186fd199b81167d7dc14ab8de0a791d2f8c6aef87c088ef9e124d786f41925548258ce4778beeee1772ac2fbc97198ef2486c3c56528b884a74e4b4808bd0625042704a4c5a96c61c61b89f79948759b3f9a5fb7944defc7e480ba17ba61c208fae904e87d1ef993476cab7598f7a506aefd17ea32de092759f227f4ce205d327a5ea2af54cd5eb97133ee0c3da6aec481ae0aea740d243c379e5a555b77bee8bde56761e8b5ce4dbe22e0e0f190766e889a6b95ae064bdb16fa8d70134d48b69e2d863fcbdc2b1187b5685d82c4f0d3aee91244e976998f93651649288b638db5f01cf104863bfb955285af50adf7134f3701631dcdb653a64df15658377de54704796fd1000f25f861817a38d35ee4b7983fb448a4af139d9330d3ec62d2c8cf780f3b471a98c47d0e7568926ca7d69a49ee56f51d18dd0f91ad287cb00634abad9fc981585c44e18f73c2d6588187e876d78eeff1c6b406a2065dd81efe4559b0aecd87bbb71678c14a0f1718b9d19e82a39ba3783c6842c74045572804392974007f5fb427af094cf62cfc0837947c034ebd3a42f9391c10fa425cba9734ea90c114d9782c72681a98b700567f300debb75a934ebbcf86616e07387800bf9d8f0f42b115a4b892a86ab7d56e2f25cd7b641c7639d98250a7ca5d199c30f4f27d9fde88c3bba7943764b8506903bbb6c95f02de7a2930786237058adb4fdd1df6c21c4b122fe42a3e31bd38e7b425557e177b4fa1feaa0e1143c4481a9db460209a1ec191b6b9c3c51592a44e98c1d5a43fff336c57bd2ef2f7a3056efc5b50d377e5d33f10d6525cbaba35e9fb8271ae96c7396968a9224aaa3f1a24c999f6b90f90a056c8a3c9b130e7046af1f70c08a92ad515b5983b50473e283d6d3b2a6cc91b59925ab49204c209b6f01729bfec3a66a71738cffd5594fee9032d3cbb80a81366a6a3bf54a608948ad256d6cf49485661c93f11f222325219c25f7a1a12d435798de1033b31d607ffde7faebcb5794121bb3dfdaab99c38d833a0aa846f2ab8e9d4f24bb63fb30803c861b2a3fd6713ebad00f245ef8dc02f0e52c1a01e2a48b8acc8e853594229950149d877898c712296ee46deb7af440b819d5353dbbde2587ab2865f766ec68839ee4c9d736483945b21491ed90e3d1e07db4eb1f29644856e67ed0fb4a14850fc814c92523795b38993b62344b213f1b2cf4387ea1d68c7488f600aa4c5e21379098132366d57344f696537fa851d4ad733c16f1c44f1456eda33a7b1b8daabcf14078518c3bf38716f6a453f2d3eb9bd24c2d75eb6bbbe045c195e71176a566a8a16b2920f97042d5ba9625b03e1b28917b0877d17cf1119dfb8d23c31496bd294fdfcbdad78adb6f524ca7c772d2f0317a823bd34d8f5496a4749a0e699400fc71caed22c65fbe20e0f5cb08110c39afc4b436512408b181f680ddea68d16af3f60ad5778bd96747c4e49c2617ba196c0e76887cc3e87c64f80ee496e85b23aa76bceb7f7331b32fd032e2ad48862b92de1c93c51ed475002b68083915ea721c2921711f574beae9fe04f47b92c24a0da9f42556e83a7e36dbdf55402ebfaa5d824c19f666c09c5f39d714e680dfcb12d69a1cc542fe9eb092d2b4c8d296be2980865ae1b775d9c2b08259e54bd48a82b64dbfdfe96ff4948c2c600f96228b53f96716e25ef2526ad7f6408b0328e200481cfc223b0edcdd0255b9242074ca38023b831a8ece5c7b21a081a7b5a86d80ebf69c6d9070a086a87298d852d1e472cd7955d23dcf02e18689cde9fcf9c6e4c829d56e6930c9ea263b565450ce21971cb948bbb7409cb2a128b3f31bf5075295a73818cf24a7777b8801fc9605a21457d9de1c8eef9c5c4f93a8a8147b852e52bdaf970e1080e7eb343e133d750c36bd1de30503c9a474247a50d43c16df9e262b04259ad218697f33a92704f2e6e785129cec7911a95294c74a4980e6c98f92b007e82bee7bc4c5313e014f147ebfdcadc0650e98a0b3428063989ab3146304afafbf3a0e5c5893bbcc7e7a5bacaf4beb61392b12092ff6b077914eb15f7f8c7818fd6ec38b487b72329eac4ab98a136b73d1957005633071fe0af8cdf7f64ef3ffc23ed5ac0fa59cbc0f427299ae094d82d8612797972b0c756cc3fea430a04354c19e2e04d4777d9b449f53a2784fe15adedebc0674804beb847f795fac9f949ab5bcd8de983fd4ebc899c92e572251820f93aa8409c4234f74df96471c9693ad2babe38630c0e9a2024c256806f93fe075e6cc3161dda64c4f2f6724c0eae36f170dc55baaf50254c9b5970ad5a90ba2900ef219dd4e0b59b0e12e6ee55e1d8f60c4f5869151795e3294b481303c7e3f8b29ef1e4bf7a7ee86977aa75ccc6072df397398dc1b5ab989830cdf4d8475bef70b14f85a6d98376f30b459469361325963a948d4ff5c00a640e91ed1cba66e7fcdfb22c51f9068c37e775d80143020c6d034309835e54ac0a1b6f7788ca9e5b73808a86c920f8207e3dcf54ffbb91d6c3855bc13c38b1c1b9f4f42ad97c725b3c3e098dccab7f8ae7d8153ea854c0385edbb8918da39701c0939b161e812af198409440038b17ca160f75a1a4dcecf128034313c8c5cfba246b4190485fc75daeabec50cca9ed39f0c130a2030de9e59b6a0a667ad340a9d1d410e418a33af1657aa87fcc3b90560cebcf9908cd11471b4a67995654ff7ffb68332b6cf3c2a1e405141c634fa2172ae29d2e3fdec053d9baac6f97035bb1bfb93b1546abf6576a8ede7cd466c2ee59062ab0578989b59d9138e678e06cf3c52179bee69305dbb6b1cfbedac49a5918d1a78a181d39e8a6e49cfe7f65d91b7d7ed373a3dd4953f6f80e77328a98dd583b619fc283c691fc594614c186e7e0c53907c412b6ce2388e3185a2d43b2c5acceecedf15a0c484874f29045f0d56a4e9270b7746092da905e31ec99ac84478e9f13ff065e7e4ddff3008f9acf4c0cf240aa55357d097303a27db5c48f1c9cf90fae4c957eabe0408ff834c7a55e362e2ae8b5a119bad6d05cd2536b388b87a066cfd9de614f95bef3632b7c1bf719f29ed042bf20ee0a82c48b03db8b4c4d795fdafd95a6c57d601c69212bfd70c7da81630dc13de61fc09dd1ca4afcc84ea732064ac47c9c6734c0488ecdfab25e48cab4854011b289a5bf2f0cc72d7b7a06ab10cf9fbf89112a0e1ae5d570a8c3a461e5aa51fb15eb8697c85b78fd4d429327f49f39aa0b3dea3085cf2cdd22310e252f3ae71d7236434bdeecee44fcdaeb0bcd71fa26db655e1d716850ee4e16d43dbc08a758410828fba143894c7c0c52c46b71fb776c00ded468b54aed588f62fd179bcaa4b9f2ce6979caaf92f0ca49c195a910c654ccf85e64baee7651d590ee3988c807dae81f491dc4e0472f450e44689109625119b289ed5ff7023a4c1b3c7ded5b0853e8d6533367b794e60e29683f751eac11170ec5d853c9aa4570b8baf0235d5d0473294d6d35ca183660880a24661aaa228189ca044b9d8aa59923b7171feefe6d02e2dc3f14c95d50be491864bc525159ced40d588561c7ad77e33ad77cc262616e173f2b7d357787d2a6428f2589124fefa63307605ed4af0dfcce3d3a4b300276cbc9ad5a36efcc7c3739d586c371d310c77b3257cc5a38c1fc65cab404000291162ddb4b2cea4766e87bc8d425e041e8ecc4f921a86367fa8b25370f4f44ca62f8ec4b9a40e3cbb0cac49dd91e9036b54b157e3b509672b6035186a85fdfeadcb011b991fda03bfda47cdb2be2d44f225c11d962b4b5b27ed87efcddf19b3de277e375870b7c4ac8eb2f3c834bd95632dcd7e2cd3703a0d84fd4bd75f2281f15b98b7b9de2e5463f7f670685a1093e4402218135db294f658a71c0c57fd581f3dd5b1e6f8429124600f291f5813e932cf54507bc30c176435d1a5a23dd415cdc925f113310ae1426d6bd386d2287e0c18b8160577aa63f6153094f50626f310f8d77fd515c2623573f031801b7e897373613587a54e84e1446ecbe169875fb78cff788fa8548d53f6d0c3469738e112da03113b0bcd5aeebc7ce261ad03bccc780b520721ff6a6fa227fc571ba5b81b5927ebc78786314dad6fafe84f791c679012a016c7f4c715ec1d1c280cf3b4548f9217909804bb6103b6085838324dd771efe5463af31c1044243f0f7555d9b1bb6e099bf74640badc603ca062704cb259c55a1916027ceea9ae47dcd3b46f418731d45691333bbd72db9efcf8c7cf15d8d1fe6627c0a6e5da9f303c927d1ee337ccbba1571be752e827ddfedfed426697f28adbf5016d0a0ab9d8f78d0ee586aa26bb3dade561ecde0c7e096ca27fa090ff8b72b6fb006c76c786f69fa85f1bbda91c29adc01c0460e5722070025ea7913752822d8a5a7972caaa91168f243cf85287ceac132bfb8794488f6ccd5fc296cccae492843a7542d57f3af2c1f2b72fa87157e47ce03a2c95fba11a1bcd14c7e40d9f36844e04c13ac81c1f5caa28ef53381cec7b80e6dc38b86c781d1cd5b76d46da6f4c7b29f8c0335ab64c40dca3b171ffdc6172b4d2a7a52403b20c09408027bdaa34015d57163dce9975eba173a1a90f128d3ddd23b208dddad2623a5292daf43094f315f5409e4d2a4dc9e4e6e67829b172e8846dca5d1f46564b46617f152c691bc87615dbe002bc65506024061f5e4c3f0ee1f74681282a0ef0411f61d0896c025959e34e74d819f086bfd2a902d9254bf1691392c3def3f7c79cf17f80046c3ef48c038a04ca3459352dfbf1b3258e34ee804b187ce8652c4ced62f965c8d98d6589675b2b1ab7eac9787aacd2329ef67a5fb5e7da7561f5e2fb8e9f8d971a56a2543a6e26172f939f30760d6ba2ddcb6592638d2c21a37f04272857d2e06169cf77b7af8f5fa5592ff6d8c8a85297ba2b37a6eb21e05e6308c8d7f5c8a3ef36d114eccefeb0c9bbdd55313c47bf33eb71aebd070e8d37a5ed8bb413c87103e9a319fa3fea15c19f26e1dc7a2372f8fc05f6dc0da8d67f68254bc4cc3cb31cdd933cb8acd9c265201806b47b1b1c72a9c694d6427c5282f927aa258e1f3550c91db8804f2364ec99508782e3c861cca7bfdc35724b7d9fd9165f91d11f2aa9cc31dbf843cf665c02daff59ad10e7204391dca3e188d4a776bfdd1076dda826eb4ef94a241ff9f75ab2f7142e2703be3b7a3395d55487cd278b5a68061f892daf62f1273cee6a2dc101a0949ac92b67366b0349ac8e96197e3b3077d89f892d2834e86d1e2e42a0c7bc0c79a0267ef38d65471c002eec1cf52bc6b393bd4ae6d23f7e1d161624a2411a3871595dad20cf70fdbae87018cc96c0a5493ecb7e4381e032e985131dd9e1deccdefc30b4ec84c08f52b2ac5222ee64ee5f235492bf7425feb71f585f12c034c90d46cc19248f9265d45dc0dd8461296886dc28b54074072dab141115c86e9aab5bde9d31c29e96417a891d0e474ec3b31a5de808f6bfbdb52cc3cf65cb69ce0d4619fad0ad92509f96555305cca7594c7e7ed98a02e8c9a7b893e4354"}, {0x78, 0x10e, 0x7f, "fcb4c3a08e79bc268e4a7831617956d820aad7e8843e76e037aef44d52f087693eb1bd261e55e031024af256a6bc27e9d4e66c2ef5eac37322b0e1dce1bb88ff0da06837efdb51f05ef79000c5916cca2372ae6d6d66da67395c64c416121f555e79b7"}], 0x1268}, 0x0, 0x40040000}, 0x6) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r6 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x2}, &(0x7f0000343000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) syz_io_uring_submit(r9, r8, &(0x7f0000000480)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r5, r8, &(0x7f0000000440)=@IORING_OP_POLL_REMOVE={0x7, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x24) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) 06:02:25 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:25 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xfbffffff) 06:02:25 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:25 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f0000000080), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0xe87}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {0xfffffffe}}, './file0\x00'}) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x0, @fd_index=0x2, 0xfffffffffffffffc, 0x0, 0x0, 0x1, 0x0, {0x2, r5}}, 0x4) io_uring_enter(r4, 0xded, 0x3e0f, 0x3, &(0x7f00000001c0)={[0xffffffffffffffff]}, 0x8) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3, {r0}}, './file0\x00'}) io_uring_enter(r6, 0x59a9, 0xb49b, 0x1, &(0x7f0000000140)={[0x9]}, 0x8) [ 2288.900403] FAULT_INJECTION: forcing a failure. [ 2288.900403] name failslab, interval 1, probability 0, space 0, times 0 [ 2288.903026] CPU: 1 PID: 11159 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2288.904584] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2288.906463] Call Trace: [ 2288.907071] dump_stack+0x107/0x167 [ 2288.907905] should_fail.cold+0x5/0xa [ 2288.908769] ? create_object.isra.0+0x3a/0xa30 [ 2288.909800] should_failslab+0x5/0x20 [ 2288.910672] kmem_cache_alloc+0x5b/0x310 [ 2288.911608] create_object.isra.0+0x3a/0xa30 [ 2288.912626] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2288.913791] kmem_cache_alloc+0x159/0x310 [ 2288.914750] vm_area_dup+0x78/0x290 [ 2288.915595] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 2288.916692] ? lock_downgrade+0x6d0/0x6d0 [ 2288.917655] ? copy_page_range+0x24e9/0x3800 [ 2288.918676] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 2288.919760] ? avc_has_extended_perms+0xf40/0xf40 [ 2288.920906] ? vm_area_alloc+0x110/0x110 [ 2288.921856] ? selinux_vm_enough_memory+0x114/0x180 [ 2288.923013] ? selinux_sb_statfs+0x250/0x250 [ 2288.924056] ? percpu_counter_add_batch+0x8b/0x140 [ 2288.925218] ? __vm_enough_memory+0x184/0x360 [ 2288.926282] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 2288.927504] copy_process+0x298b/0x78b0 [ 2288.928495] ? __cleanup_sighand+0xb0/0xb0 [ 2288.929520] ? lock_acquire+0x197/0x470 [ 2288.930451] ? find_held_lock+0x2c/0x110 [ 2288.931362] kernel_clone+0xe7/0x980 [ 2288.932174] ? lock_downgrade+0x6d0/0x6d0 [ 2288.933132] ? find_held_lock+0x2c/0x110 [ 2288.934075] ? create_io_thread+0xf0/0xf0 [ 2288.935044] ? ksys_write+0x12d/0x260 [ 2288.935948] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2288.937083] __do_sys_fork+0x8a/0xc0 [ 2288.937953] ? kernel_thread+0xf0/0xf0 [ 2288.938883] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2288.940133] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2288.941344] ? trace_hardirqs_on+0x5b/0x180 [ 2288.942379] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2288.943594] do_syscall_64+0x33/0x40 [ 2288.944487] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2288.945707] RIP: 0033:0x7f22e1959b19 [ 2288.946588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2288.951048] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2288.952909] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2288.954655] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2288.956426] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2288.958192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2288.959991] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:02:38 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 44) 06:02:38 executing program 2: fork() (fail_nth: 58) 06:02:38 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2301.851840] FAULT_INJECTION: forcing a failure. [ 2301.851840] name failslab, interval 1, probability 0, space 0, times 0 [ 2301.854508] CPU: 1 PID: 11175 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2301.856078] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2301.857960] Call Trace: [ 2301.858563] dump_stack+0x107/0x167 [ 2301.859395] should_fail.cold+0x5/0xa [ 2301.860284] ? create_object.isra.0+0x3a/0xa30 [ 2301.861319] should_failslab+0x5/0x20 [ 2301.862182] kmem_cache_alloc+0x5b/0x310 [ 2301.863105] ? mark_held_locks+0x9e/0xe0 [ 2301.864038] create_object.isra.0+0x3a/0xa30 [ 2301.865048] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2301.865709] FAULT_INJECTION: forcing a failure. [ 2301.865709] name failslab, interval 1, probability 0, space 0, times 0 [ 2301.866200] kmem_cache_alloc+0x159/0x310 [ 2301.866230] xas_alloc+0x336/0x440 [ 2301.870822] xas_create+0x34a/0x10d0 [ 2301.871677] ? kernel_text_address+0xf2/0x120 [ 2301.872700] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2301.873893] xas_store+0x8c/0x1c40 [ 2301.874714] __xa_store+0x164/0x2d0 [ 2301.875543] ? xa_delete_node+0x280/0x280 [ 2301.876502] ? trace_hardirqs_on+0x5b/0x180 [ 2301.877489] xa_store+0x31/0x50 [ 2301.878246] __io_uring_add_tctx_node+0x1cf/0x520 [ 2301.879343] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2301.880540] ? alloc_fd+0x2e7/0x670 [ 2301.881380] io_uring_setup+0x1fbb/0x2980 [ 2301.882327] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2301.883480] ? wait_for_completion_io+0x270/0x270 [ 2301.884602] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2301.885791] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2301.886959] do_syscall_64+0x33/0x40 [ 2301.887802] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2301.888973] RIP: 0033:0x7f530d0e5b19 [ 2301.889813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2301.893998] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2301.895729] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2301.897359] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2301.898971] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2301.900595] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2301.902210] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2301.903860] CPU: 0 PID: 11171 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2301.905349] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2301.907098] Call Trace: [ 2301.907660] dump_stack+0x107/0x167 [ 2301.908441] should_fail.cold+0x5/0xa [ 2301.909246] ? anon_vma_clone+0xdc/0x590 [ 2301.910100] should_failslab+0x5/0x20 [ 2301.910906] kmem_cache_alloc+0x5b/0x310 [ 2301.911769] anon_vma_clone+0xdc/0x590 [ 2301.912611] anon_vma_fork+0x82/0x640 [ 2301.913414] ? __vm_enough_memory+0x184/0x360 [ 2301.914368] copy_process+0x72cd/0x78b0 [ 2301.915253] ? __cleanup_sighand+0xb0/0xb0 [ 2301.916163] ? lock_acquire+0x197/0x470 [ 2301.917008] ? find_held_lock+0x2c/0x110 [ 2301.917866] kernel_clone+0xe7/0x980 [ 2301.918650] ? lock_downgrade+0x6d0/0x6d0 [ 2301.919527] ? find_held_lock+0x2c/0x110 [ 2301.920394] ? create_io_thread+0xf0/0xf0 [ 2301.921277] ? ksys_write+0x12d/0x260 [ 2301.922084] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2301.923101] __do_sys_fork+0x8a/0xc0 [ 2301.923887] ? kernel_thread+0xf0/0xf0 [ 2301.924733] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2301.925833] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2301.926911] ? trace_hardirqs_on+0x5b/0x180 [ 2301.927820] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2301.928914] do_syscall_64+0x33/0x40 [ 2301.929697] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2301.930771] RIP: 0033:0x7f22e1959b19 [ 2301.931549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2301.935414] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2301.937023] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2301.938532] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2301.940031] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2301.941531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2301.943034] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:02:38 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xfeffffff) 06:02:38 executing program 5: r0 = perf_event_open(&(0x7f0000000500)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x40007bb2, &(0x7f00000002c0)={0x0, 0xfffffffc, 0x2, 0x0, 0x2000000}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)=0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, @out_args}, './file0\x00'}) io_uring_enter(r4, 0x4f59, 0x7916, 0x2, &(0x7f0000000040)={[0x100000001]}, 0x8) syz_io_uring_submit(0x0, r2, &(0x7f0000000440)=@IORING_OP_POLL_REMOVE={0x7, 0x3, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x0, {0x0, r3}}, 0xfffffc3d) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x12, 0x4010, r1, 0x8000000) r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r2, &(0x7f0000000280)=@IORING_OP_RECVMSG={0xa, 0x3, 0x0, r6, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=@isdn, 0x80, &(0x7f0000000100)=[{&(0x7f0000000180)=""/163, 0xa3}, {&(0x7f0000000340)=""/225, 0xe1}], 0x2}, 0x0, 0x60012101, 0x1, {0x2, r7}}, 0x40) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) 06:02:38 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x80ffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:38 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0xf6, 0x7, 0x0, 0x1f, 0x0, 0x2, 0x0, 0xa, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x9, 0x4, @perf_bp={&(0x7f0000000000), 0x2}, 0x27ca9630b5d70a5d, 0x6, 0x0, 0x8, 0x0, 0x1, 0x4be8, 0x0, 0x57, 0x0, 0x7}, 0xffffffffffffffff, 0x6, r1, 0x0) 06:02:38 executing program 6: stat(&(0x7f0000001440)='.\x00', &(0x7f0000001480)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(0xffffffffffffffff, r0) stat(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000001c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="2e2f66696c6531008ad2b9c454f55df894cf028a008d480dc854950bd4b6abc8a4efa971a630693fabe5a383e898f60ac4596cafa045b5a6017c5dbcd9c339b3f7576a3f3af081a13b731eef799af81a7e8a0d7361616ba679ce80d454cc98c0a7e31d9a65cc3bf537c07e559f8b6d67cba4a165f4a306e88dc798b473b4998eb351"]) r2 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r3, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r3, 0x0) open_tree(r3, &(0x7f0000000040)='./file0\x00', 0x89801) lremovexattr(&(0x7f0000000340)='./file1\x00', &(0x7f0000000380)=@known='trusted.overlay.metacopy\x00') dup(r3) r4 = socket$inet_udp(0x2, 0x2, 0x0) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r4, &(0x7f0000000080)={0x20000004}) r5 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7b, 0x7, 0x7e, 0x0, 0x0, 0x7fffffff, 0x300, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000180), 0xf}, 0x20, 0x1, 0x1000, 0xc, 0x43ff, 0x0, 0x1, 0x0, 0x80000001, 0x0, 0x1}, 0x0, 0xf, r2, 0x1) dup2(r5, r2) 06:02:38 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:38 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:38 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3}, 0x0, 0x0, 0x0, 0x7, 0xfff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x183}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) r2 = fcntl$getown(0xffffffffffffffff, 0x9) r3 = perf_event_open$cgroup(&(0x7f0000000180)={0x4, 0x80, 0xba, 0x3f, 0x20, 0x62, 0x0, 0x494a6d32, 0x8404, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x4, @perf_config_ext={0x6, 0x7}, 0x200, 0x401, 0x2, 0x0, 0x80000001, 0x6da, 0x8, 0x0, 0x80000000, 0x0, 0x4}, 0xffffffffffffffff, 0x1, r0, 0x8) perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x9, 0x6, 0x5, 0xff, 0x0, 0x5, 0x9e5e246e305f245b, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0xffff, 0x2, @perf_bp={&(0x7f0000000080), 0x5}, 0x83, 0x6, 0x40, 0x1, 0x1f, 0x7, 0x1, 0x0, 0x0, 0x0, 0x1}, r2, 0x3, r3, 0x2) r4 = syz_open_dev$vcsa(&(0x7f0000000200), 0x8, 0xc00) fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000240)='-*@}@[\x1d/@*\x00', &(0x7f0000000280)='-./.\x00', 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) [ 2317.709158] FAULT_INJECTION: forcing a failure. [ 2317.709158] name failslab, interval 1, probability 0, space 0, times 0 [ 2317.711373] CPU: 0 PID: 11203 Comm: syz-executor.3 Not tainted 5.10.254 #1 06:02:54 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xffffff7f) 06:02:54 executing program 2: fork() (fail_nth: 59) 06:02:54 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 45) 06:02:54 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) io_uring_enter(r0, 0x6bdf, 0x4b54, 0x1, &(0x7f0000000000)={[0x1]}, 0x8) 06:02:54 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) 06:02:54 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:54 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2317.712669] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2317.714471] Call Trace: [ 2317.714985] dump_stack+0x107/0x167 [ 2317.715688] should_fail.cold+0x5/0xa [ 2317.716447] ? create_object.isra.0+0x3a/0xa30 [ 2317.717330] should_failslab+0x5/0x20 [ 2317.718063] kmem_cache_alloc+0x5b/0x310 [ 2317.718849] ? mark_held_locks+0x9e/0xe0 [ 2317.719633] create_object.isra.0+0x3a/0xa30 [ 2317.720480] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2317.721459] kmem_cache_alloc+0x159/0x310 [ 2317.722254] xas_alloc+0x336/0x440 [ 2317.722934] xas_create+0x34a/0x10d0 [ 2317.723654] ? kernel_text_address+0xf2/0x120 [ 2317.724523] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2317.725522] xas_store+0x8c/0x1c40 [ 2317.726212] __xa_store+0x164/0x2d0 [ 2317.726890] ? xa_delete_node+0x280/0x280 [ 2317.727659] ? trace_hardirqs_on+0x5b/0x180 [ 2317.728466] xa_store+0x31/0x50 [ 2317.729083] __io_uring_add_tctx_node+0x1cf/0x520 [ 2317.730131] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2317.731132] ? alloc_fd+0x2e7/0x670 [ 2317.731833] io_uring_setup+0x1fbb/0x2980 [ 2317.732647] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2317.733619] ? wait_for_completion_io+0x270/0x270 [ 2317.733879] FAULT_INJECTION: forcing a failure. [ 2317.733879] name failslab, interval 1, probability 0, space 0, times 0 [ 2317.734557] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2317.734585] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2317.739135] do_syscall_64+0x33/0x40 [ 2317.739846] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2317.740832] RIP: 0033:0x7f530d0e5b19 [ 2317.741546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2317.745064] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2317.746445] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2317.747743] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2317.749018] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2317.750281] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2317.751555] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2317.752888] CPU: 1 PID: 11211 Comm: syz-executor.2 Not tainted 5.10.254 #1 06:02:54 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000900)={0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000055580)={0xffffffffffffffe1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {0x0, 0x0}], 0xd8, "c3b057e37f7fda"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004cbc0)={0xfff, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0x7, "9cc3d2f815816e"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000900)={0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000900)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004dbc0)={0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r2}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1, r11}, {r12, r13}], 0x1, "bd96b5f67f5e17"}) r14 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000900)={0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000055580)={0xffffffffffffffe1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r15}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0xd8, "c3b057e37f7fda"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r14, 0xd000943d, &(0x7f000004cbc0)={0xfff, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r16}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0x7, "9cc3d2f815816e"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000900)={0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000900)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004dbc0)={0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r15, r17}, {r18, r19}], 0x1, "bd96b5f67f5e17"}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000180)={r13, r18, "93ae14393292540ec3ccf1f8740c0f5748260ed4a5b9773e4af1eeb48a0836c1dcb0e04be8d712a711cbce00534b9c76c35e4fc1d8353eabf87bfe2a3af2018a806a06667079fb889e5d2c99678945f8cf658a6bf362898a0e0390c14eb185c02ec29cc60a4fb59f73bb75ddefa99d11aaa7a0bbb8add10764c2645743d759c13b770215d904b82e0ce9bf9405902d05ab77f266f93d4729613ceeccda1b1cbf573459f334d6cf929db4262b5e1957dd3177488431b43527fea3df0cf03b93cfe1bde02d592824a7674ec5349cfac34e07a6b8e65c6897f200bd0356ef7322fc15d39eb000b5ac253d55b9b9121ae13142c3ec98d49e8c0f95fbd9b29cfdb380", "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"}) r20 = perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x1, 0x2, 0x1, 0x5, 0x0, 0x7d, 0x80090, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7f}, 0x4f117b3bf9ef6839, 0x7, 0x5, 0x2, 0x2, 0x8, 0x400, 0x0, 0x4f, 0x0, 0x9a28}, 0x0, 0xb, 0xffffffffffffffff, 0xb) io_uring_enter(0xffffffffffffffff, 0x6e12, 0x64cc, 0x2, &(0x7f0000000080)={[0x1800]}, 0x8) lseek(r20, 0xffffffffffffffff, 0x2) r21 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r21, r0) [ 2317.754835] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2317.756937] Call Trace: [ 2317.757557] dump_stack+0x107/0x167 [ 2317.758400] should_fail.cold+0x5/0xa [ 2317.759285] ? anon_vma_clone+0xdc/0x590 [ 2317.760231] should_failslab+0x5/0x20 [ 2317.761112] kmem_cache_alloc+0x5b/0x310 [ 2317.762070] anon_vma_clone+0xdc/0x590 [ 2317.762977] anon_vma_fork+0x82/0x640 [ 2317.763851] ? __vm_enough_memory+0x184/0x360 [ 2317.764896] copy_process+0x72cd/0x78b0 [ 2317.765848] ? __cleanup_sighand+0xb0/0xb0 [ 2317.766832] ? lock_acquire+0x197/0x470 [ 2317.767753] ? find_held_lock+0x2c/0x110 [ 2317.768702] kernel_clone+0xe7/0x980 [ 2317.769567] ? lock_downgrade+0x6d0/0x6d0 [ 2317.770516] ? find_held_lock+0x2c/0x110 [ 2317.771456] ? create_io_thread+0xf0/0xf0 [ 2317.772420] ? ksys_write+0x12d/0x260 [ 2317.773304] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2317.774420] __do_sys_fork+0x8a/0xc0 [ 2317.775282] ? kernel_thread+0xf0/0xf0 [ 2317.776203] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2317.777407] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2317.778598] ? trace_hardirqs_on+0x5b/0x180 [ 2317.779591] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2317.780789] do_syscall_64+0x33/0x40 [ 2317.781645] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2317.782819] RIP: 0033:0x7f22e1959b19 [ 2317.783673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2317.787915] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2317.789681] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2317.791323] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2317.792972] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2317.794616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2317.796269] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:02:54 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x3000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:54 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xfffffffb) 06:02:54 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) io_uring_enter(r0, 0x1d28, 0x9ffe, 0x1, &(0x7f0000000000)={[0x7]}, 0x8) writev(r0, &(0x7f0000001440)=[{&(0x7f0000000240)="99aa499cd4a9cfa05af421a7195af68e189f580ff68e462b18abd4c03e28e82528df5382a25c7be1daf9c27ca633b43303ab000b26a70fdb98ec2ec080d3aaa24a0b5774ccd2784ed896ed6803218bec8ecf91bf4d21e49777adc4cfff3ddc45fc6888c8a539e2e9798c7d7b5fb03c1627f998726af652cfd59341e1647d2b34cb7bca3d20fdcd744956078f6ce6b0bd91f7a4c5a7203e96382dc5e9eb7113433ade880864d8963e0e42e5cebba040bcc98771daa0d9b2e2d462ef647fbdbf9ca97d7a57", 0xc4}, {&(0x7f0000000140)="a65fd93f3918caa6ecb53f04a1777015cf845c05b279f64bcefd240d5bc9df1d47441eb2d336e0e19503740c8fb3e0e0346121a2af2e9c1d13139ab1286e5949063239286399d5efbdbfb43a016902d3d1ca1fe8f64ac7205508", 0x5a}, {&(0x7f00000000c0)="5a116166551bbd60fb39e35ffa428e9525d6a0b5d9a80395a55c43ed20e0b262b2b3b883621b9f4d", 0x28}, {&(0x7f0000000340)="06d067682727c416577327d2746e5f5c67d005c81cacc4cc7f4bafa0fcf7790f18d62c117044a9ac5f15e4864909c8dfbeaf8d67edb3789351f19bbd3a71c40c8c1c0c64b2553c5bc672bc3350375f0f7b7e9af6f92aa6fb654ebb732f228652090ed7b91ffd95ac6f28a995fd2bb74acdd8854a8b898c781eeab7045a8c757ce30274c0359e993892dcefb89f6137db0ad9ffec7ed2f38014fbada061a16e06e22a502cb82d416a3b2d21df09802fd04f7b1e7dec669c34d66feb0e2710528945c354cc6282b6b0dd90f09c0823c43424992318e75fd239fd1f80", 0xdb}, {&(0x7f0000000440)="9d2e21a706fd3d0ce65b205c68286ea6e59fba2485a596e2af53adaa38d44463a3972a283ef698d0f4c82277cbc88ee454b375b119043dd0f764714c94cfeccf64ed74072914beaaf2f0e52a1f6fdf24e09f38f72aafb3cdc08a8658d7602c7cbefce269b0998d95c2532c3d1f5b3d0e1b66579773803084cd8b335d5f253671c34c9d4b0f59431a0f3e7213128a726dffcc4e72979f5e59df7f26fca525f4ad68cd71c770f8b482dc5c4eb22b9869d7b8a9475ecdb2e0336c0e81e8e47e248612f56c017dc5939e1089b941c0978bd2b4b141c1b2589091c480787e13ef9baac1eb99d6edf91dc6187f09395f508de5cfef32c23dab4486dd5c0fb6cf29b5d3cab1e9639dc5905775a1be5a2533e834a06c2b46b461c71c2a2ea03e0e3c5e4f887aa22f30155877c2e4b4cf4de803e080b6aac5da6665f21afafb5ba02e6163d311722aec1a6e3fa4c92f91348b19b4efbaf58ea0526fd00c594500e87f6b18083f9a7a86bfd58a6d75642f5b6d0689c0ac1cc31c134b414d45b647dc6d9c2cea2236bf009ba8f49b25fe5b2fd39395ce2a1ca2132b0608e78f8922b30f82ec7c17a27b8307e307063f940b82ef2ebd8d267cfe2e5eab2d152d4de97066092de444c653c27f071d8e33813d1c34b684958d7306f777f0399a76d874b5f0b91225bec0187bd255263d33a92113101b52f48ec31f217983aa3e3769c03eb9dc0361b2f2a783734adebe7039fe6e6f8bedafd48be9501c9783d8899c6cfa86d5573b83967c726d8f0987655cc11e18bc8e1fd7f6c0ac1d7bf5ab9854a0dd74f8556ac67afe913de91ba3f78aebf8a9522598f7aa9642d47a4079a2e9b00072e1b7e21161fb8bdd5e552c2db5ae29572650b8c3641f201ca185de1b1f9d039fd0a920ebd45abab5e33f096fbd810f6b51f0e05fd350c33d6ca0590c71932a1ca2f883433246b7d1d6f9f8cdbaa9929234628bb50fcd2a37d5a4928d976c6bae6cedb970902d98bbf36d80416b6c44ad7424943cdc39d4f304d5a8c290e06252a679d033d983603a9200780d89ebff275db9de733058b8d92c35a564304f4608be831f66563417d6fb5f068ce99558a79195ada911c05963a6b7ed3f591d7d92f59de21cd509aee4bba80c91cb5d0386598a097c4549d403fe5489ffe46fb1b9c27e79b9aee3b9cae39375b4d2b3f06b59c7459c89b7aad6c3c677b2ad5a14ad7c1dd7815b485bd32cefe237fc0ee3e9a782230e57165d52fa8884cc6cc4ea88a6aecb5af294357994646992eb6d8506805160cab0afc120a8fd3a04cb5db070cf24015389c06a317c1169899da51f43d092b378d1d29826a2e3523ecda328fdab3ca2252f968c00c24219f7bcf2da71372d99d633ac40e3fd41b3378848d9e0da5e46cbfbdcd57de79ffba71dc0b3f6e875a4edd6ecaf6742798f012f3cfa8213dad081eeb45f9ce132743a6fb23f75c64ba99c658493c203108d547559fc62d576da73fcd340618035ea6e7d755233168b2b5623cc809f1e551ee506804dbd987e49c994c01b2a293c883321f780cc0bb70d3dd8cf5c3d7521cadf74106dcd6fbb7a37430c2af5b58136b0b11bc99f9a2cf1626aac65f35604797fa4f694b940e205ba8aca84ed5c81eee08d8adca716c685c11b9fb1b06f3ffdbe32c9e17d5cea18dac942ecaa3b4bf4c5efc3070395671cace9cc94e572f5b352399e1800fbb3a414745caff77cce1008edf7fa4f4e63ff064550b22e85a05d3995bf92aa1b58186e30ee62232306b170b897b32ad1babe1a1bbf1a411d41ac6c3a48dc56ef6bb8d6338dbe85603b4749aac2cf2ee49f8fe04e19eb354074bf0ba7db61ab627fbb3ac9fd4087308451f8c0ba0770866ab2b6add1c6443728f87a4ee0c8f9ace6bf04d98407129f9662a8d005a8ab7777f279214d9a485fcea1b88268003e502b1d6372efa5589c7caeb474cdb7fe621c648bf89d6fd1aca2c190ce2eaebf3c7c49c76b1990209b639545dca87cee43495e4b035fcd8242e581d24f3e449f258f7f34a5d56a9544e4f3cf7222353b45a187a1927318b071b3fda11f037184206ce977f5459fc0d5542daf601c87bf821fc2fc2bd2afaa80009a7cccd77fa1fd19bef29a7aca4793ee3349a61ac613fc7c22c81df10e0a205d0a7dce6908824ed20d47db86f1965286ca49125a8cade9a2e489a8ccb36169b27a15edd3bf7b6a86c4bf76db19ae77596c7cfe814d99d8fb56efe609e03dc8e3bbda40999be2cfcd35ae93824eaee332d0153a02d7b16e51d495f188eb4a8c2e9792e5ca87bc8547f9e12e81e97b7bd308116ac1ddc68af9c782e705b2a96829d0240e712f8d753c8f615f38fff00696113f052062c54a67d26c94ebb9ae75ba489bc62a65156d8c13f30b1f89f6bfca18a2cacf0b4f5632cc58030212dfb60ec368dfdff0a4f7c0d9caaebc68ce32a864afbde8a30bb012cf54235a38f5c44fd3d1a5f5d5c8a288d94dc6afc00b2c6ee02706a97e956883dbd9924c2a398690ad6512889822fd1557eb0a0a9c4a551523fa40d56d9dea6a7ff7136f6c648c06d903e82a5a87618db759e658c32f2f79bb670ce8220ede6a8c090f290a9e4ed592013b902c69f1f16a86dd492d04437a547472f4c46c9d8de8516eadc46bf08f9e0a5e1759c71d26270722b00e4b85d3784254b4f86c5b142848fa1ab729f03adfafeccc6d40464634917f278ce32dba2290de16e1b6f727f33c32267c3619fe115f20ce190fab096bacf09bfe5844d86218a16ed5dc8c5f063540a567e9c560829b0aca0e5b7a73953e47a95aaf5b65c3383697de52c05b4cd1681e8d1470f43832de6ba7df88f9d93a6eb47ad4585a94b07a22e3191201d3dcac943102f1ad4130664a48a425e8b780affde16e1e7a5f1f8847c4dec484b7e95f23bb0dfd53b642feb15a8e0ad3e2743cb23041b8b9b53a206feadda72389e22c96034330c9f5873f8b8a20279c5d2784d9709d8d811e391c02a328e514b98778ec534e624ef722de7a77133faad5c3d85f4417f2bbd9b064eac5426a02b0d0d3d61177fe00e86515142f63f320d39e2314c82e835cb7dd313a65463c9c361b9a606555c6e995632a79f8b1842dd686be80d56069e9144b62f77f88607f9f5d34dbe58a87db6b47e2292a5b24864034b72a21e2bdce71ed5ce891985542f67d44fa52c2d92b89d1aa6524538e50bcab09670e94ab81333e534030f2475b666d262762ef8ea1f65adbe03750a525f5defc368bf1cc0a4f0c00729a9fd7f140bb82c1dc987de2e33efe78ebbb9e9d4f65a5c8f2edb66203732ba1bd0ba0da2806ce74a8f5908c8b5a2ff6378c6580715091eca22fb211f1fc31be21f2a30276f073ae13f62d3be731c2b524a13e3d00c4921436a963854938f84b18617dbea2e83344c4d01dccbfc1dbbf7226d0215b9629970640f0b967f44e38220ece802ae3c72eb31604165df26e5da35737a6221464c864a9cf1a5d0757eee6953f6c7f443483ecc6ef08f47263bcbe9dae8887c20d42276b5e001ebffcdb96866f4cce3b4e6e54111d9c7e5eb9ca28d7df89d375a5d1dd807dfbbc68e78b1c1c7b818ceed2869e2793bce1530c6d50dcfcb30756082580a6c8f1b997c9b1bdc4b0ab5b3684641f50524fa55ad70ecd15126d308764dc7138fd411b19d6ddcbac16ea6fb78333dd62e1ee95e1dfd38145047a1496ba49490150253d057d130f498e385d1ee4c3ef93dcf3415747796246da5a8326ed551d31718d5a6f788693e826f5265fe84d2233fd1ac747e953da23356033de9b64867c8ad206df30c59c194a5904872d2cda3709e641a780d8584aab2ca7aebd38cb4197224f7af41285896bf12e9b00b816c6f7c73d3b81ce012540143058a4789adf81c9b9585d28fe299f5e585b991fba256c466634d42c3f89a743ebf24f169dd76dd47aaf991e10657415a46ed50a26a469125ee6e1e03da04a51084b6fa7e60711a708444b8cf5b05c9b103b32eeb0078233399cc1f40ce14bf0e01260a546dc1fc43c024268a7235708ea7582b69f4a648712c57ffa305afcd396791f92c888e4152ce82210c5c8a06be73bbd1c39d8a2468018e5b564b56f831759546fb5bc9e2c0041cae21839381a1505e7caee9b1454cb59e864413186755acc28da3ad996018ef2e8a75e7afd5d66025344591709152d36d668520299bba99674cf5b8c48fae37265a1cafb4c221c1b5dd02ef97c7f54112f19b3c3c66bb6c0b03662794b41ff368799307fe4e2fc639c6848b7ab408a9418cf4fcf4afaf582f2a05faadfd33bb46cf73a0e09d126b320032ca1edcbc7e80c3d75480b962a093639b3f6bfc71ab6d5c7757c0cca963cce5c6dd60f051a6b000a29a439e35e1e7e5a5a0e08a0f33578577a7b2e192b2e81b4b764799d22f5cc6b3f86ad2b7e90465f371d4520effa519b17abdc89c26800bdb95b45c669395672ecc27ba8c2f0613dc301c95cde49caa27a1461cbba9bbd74c0070b4387d75098f72ba769a27ae25903ebdc2f6da236b311581cf62ddeff053d1cc72be26dc56aed63f512f3214b9c45a93c471baa49e6b2e13bf6d98e5a646238808a522aecc7e8a556cf480a717a02a086d7efcd98c202d9b9edcb9f0dd36a5f931288e88a61bc66e017c198c723e5d289b220bb59b5e899284f8222aeccd76991207bbc8cc541e53ab17fe3ebec44c4c43d46bcfb92c6e13939322ac14dffabbdfd029b85d7edb6913d223bb4683bef9fc85e7794ff33c803923ef73d387fc6556ed5c762b8e121bf1a0c7b451e8c2539f44cbc14dcd0b39c5199549a6d03a02fa407d1db8e3b62fde4d43110e6c4cb034d0ab4c64b23485d8ce4f5df1145453503f89f3dd684c50441de1b410451dfcb4845ca3ff7bb4f3491de243182a36773eff4ec9d670d0d2cb2704c70c78e2232f414057d8b328ecedc4db13d8474e7efbc600160ad9b226552502efd0f20016581cb1c0c050120bf6cd530d45f1516f45230d731daf4884f13b9f37948ac016022057190e8dcbac3461914dc213aefe8b7e8f624acb78155d2e5f7f20a591f647493e05e57c18e0757cdddb41ae6c144184f75d6ae568d4cf0f9e26123c74becbc338a35b556d1988ea1bfa3fd20e72f295c7647e3ce7ec3f81431979de35f9a912342bf9cc6ebf3e5cd2c7f72c07af001dd59f98a25dc4ac65bd08d4e63c3674a5bdd98500b482c9421a38d7ebcd3d01db80bbfefef5c2cbcaa634f391f4de6283971f7b852b3de30705fd0f869ca7cee3d12357f7e687ab3212584689fe98862e94588b413e996ee1b700a2a22d3e89b2e6a776a4dae3690ccaeee00863e44ce062aa3dac1fded1fee0ea2be162c44ec581cb50431a88a62e6b889d74bf24562f4678b4332117f7cf2b8f8b764742c438fcbdb7d4bd1ccb76765b121cb7636036231dcd78df2782f603f5b5443daa9b69e7fa846fc175e4f613f57b6ba6d9833e5e738d8880f7a178f07b5cc835b5d75a5beecf21b37e85a2668e289cfaa9a4fe4b62b2f7df7cd461bc2fd6e06747f154daf070082019d73c8b819c33684b736bed8ebc06b5e167df11c1d8dfa21c06ae5e0b485079d854ecfd50cc96d5b9b2e954d0af3b8f3ef6bb3e89bcf0075bbbbf09b29d8da11cdeaacb57e5c1da3bec9aa52ef06331bba1407bc928809cf8d9033c4d4c31711ce6b202c56cef52520f350f4b69bb2ab3a1a85acbf3446bb413c6d4400289fc63ecb3a3012f39de2748ab697147053653a6986173a2c3fbee13a4f91cf99515ec4ef", 0x1000}], 0x5) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000080)={0x9000200e}) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000005400)={0x11}) sendmmsg$inet(r1, &(0x7f0000005380)=[{{&(0x7f00000014c0)={0x2, 0x4e21, @multicast1}, 0x10, &(0x7f0000001a80)=[{&(0x7f0000001500)="55a85b75d3ab85aa67bc843380369e6dcdaec0c90b17c12d61d723340b094f62cde37d63e735a6c8acdf7d026e038a1c78b86182450962e3b1d3c9b23e0dcd578e6ae813f5ac07c88f8a586a507cd200857b9d07ac9486424eb84e0f5f523fe5d8e7ddf4f41b960b569f2b260d73d32cb19d85f8a5dc30d8717ceb03", 0x7c}, {&(0x7f0000001580)="7f2e9b06defeaf38f0c3cef69b172b273ed60ea49b22a3dd14e37ee215e4950af54b7019e96dcc15e00c43a5ef0eaeab13a2c543d9ff10e4a6f8df67e57dd4e6df812de37bad65fd53db7ef6ae2b0a297cbe1ad0b29cec1793d9ce195c8e0b80da15c720cb80d746e383e84ddf5fd48da35ac23297acc077a4bc42aa7bc857a671654d893a", 0x85}, {&(0x7f0000001640)="a075e61134d7001d65a89a94b39188afb653f21e6beb090de95f1210b431965af43ee05415ec04c0b4d6fa270c2ec3b3f19a7897e56820255593afbbc3b422e0f0d52a022af199621031382187939ef203e0eddabaaaa8338d6d1dae82eee46c0e51c9d0de17151ec240365c83b2e10eb2423ff9528ff0fca3d64bec6aaed00caecf3ec307c69ab98bf4aeb0548e05afbaf16041bf5331ef5ec38e45", 0x9c}, {&(0x7f0000001700)="634973f9fbd332022205160bdbff", 0xe}, {&(0x7f0000001740)="1c7d929275c51a77186e3ef4d92609039d99e74a1bcd19a4e6543de9d416d73dd765a969a364a967461f7de37b048bf34aae94e22018209489a9a357538f549a5df452536d0cb5a282c97bb6838b635b29", 0x51}, {&(0x7f00000017c0)="3027888ced2ca78af77ec1d03b67b4b24c64eaf4ba471c244b4ba6f9031c8d5ba58326354ca8414d5f460030ab5302cf1d786d8b9a4b3f3b6f1a85d1bf0b4992008a52472e10c745c085939bd9e21af360894016b8b88daef5321848", 0x5c}, {&(0x7f0000001840)="215af04816003b2de7b99ab012cee575fddbe76678eca6bd9a44b858aaba91c0416855190c755b37cd327311b3bd8299f1011593f148f6dcc1a60096ce3f454acb913c263174d96095f1f7fa51b101c1095b2672e7fbecf400d01b602ca8bca8b8a0e89846", 0x65}, {&(0x7f00000018c0)="3699b657e2741985eae7665399d2825a1ce7834ec701a55b4480ce8be73d55c319061ee19fd7c991aac7b52316dffac38cc41fa535a7a19a41621bb7c845480c54b59370095309b7ddda050d680d1a1022385c7c14acb95e63dd568d66b3d418cec1386339d3d235e9e9b103004a14c80ccd368de3b493a0e22ff10510e65d7ed6e72f912a8e01b6c45b5831c3ac7c99010668213411c0f44ecb61a6a5be534d41407ee2cf9b4cdfd00d63fe3276134ce21850f5a450ae398beae0a81b4ee6cdcac8076c4a443329a5aa897a6ea02416fb8255530189e784c3e39b77a3238017645445f29aae2c1f04753a6fb39e9287e384d6", 0xf3}, {&(0x7f00000019c0)="7ad2a02071443427314977b2b129126fe8b6fa4890e43c1d74a25de56ac206b2b3dc8db08120df8d8032aeabec3309b862e71b98b2bee9aacc9a268d15822b12d0c464dcc9d8282cebd5c356e671c2b239330f077c93cf37833ce67bbf960da33a54d3abf4a9f4bc4b03e43810995479562301c786bdd48530b893d34c2caee867b5560209458caaed6b1c9c22d1ebd806e70deee59488da611401624b8bbb7a865e", 0xa2}], 0x9}}, {{&(0x7f0000001b40)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000005180)=[{&(0x7f0000001b80)="998de677e6ec28a7845334994bdab760ac281980a1f7537e5703576b42668e213de44ed92b568ec62930fcd0a97f6769d68015f02de4a4dbe54d23b1305cb02e0c976d8d4d5a134e7af5be5070efcc79407d34e932ef1878ae8787e931dbe5cb8d300b5be4a42f2a1f4f629d5a975541d5d1f61d80884b", 0x77}, {&(0x7f0000001c00)="447368d56a41d9ae41bb724e032e7958bee332c20b628c1d8866342dd4da208b4eb0d31421eca6deb6131a7f5bf2d3f7a0c3bc862bbad69cd3a10b2729253b39fe8d7b761768eb6887d79bfad59aa3d0526efb294949bfb1b5ec037779127c0b251f25866d7a303c4157788c72484928a5addad1e7b5c994d255dec4326339ebf94cf239017640ecfcdce617f9295097401c083605a938d1f01f4bb9221291355634", 0xa2}, {&(0x7f0000001e00)="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", 0x1000}, {&(0x7f0000002e00)="140fa19311247e6e45c4a7bb135b5b1cc8be0e86f89edb72ce3ae0f581ac38551b61d36dee91587dea6982980bcc8cdb86e95b38006034a4d5971d13f285ea8f1b10343616a9ca96b299e490d9003f625ecfd48736081c8fab91d92ecef3ccb6e8c9140b3e662fef6eb43dcc2a1b60e5654280b0f0a61d75c7aed3ffd84cc9cdb37ce27333fb5fc06f282745127094708b29166cb32c3315216ba761c45741e6bba28e17ff5b91bede4e4869bb8eb1503a33e8631c1355c2b88ecec485fb8ced379a662b9ad7df6d2cd20176b618361b8cd2c4f84ce21697784376f3d9b0acc1ed36458e113011f2c8f9b51ae9091b271e35292f0af8ce007724c219572867b7f9c03c9e998565a5a15d07f35dda7e61c9f3e1a69170f10cc096da472b3ca5b552dfd91916c356d2d9288baeedf4f30e65c05ef0bfbbc9972b1dc79cfe761cd85bde58eb4410af8f8f5165a542a3569ddb482b6d88cd3a0f1026588d6317cf122e46818b7ba8b1094ade08e0d65c89a35e019bf0456c3b4ca024f41e40e102233e9fc0949dfa2db256dff0349d044fdbb37e6ad2f8665541e53410b911b6795dcc829f972369bf53518777960cec8bbb213c23f4027f0bf9e5bfff99161fe933d2e00814be578938d752e1e5933fa0081cf615742771085955c05ffc1ba491c186db3df813dc1d60f5f951e68e4e16638e78e4a7381a0b76fa44276a919f8582edce03e0ae842ded0f80213766ebea064122c9696e111f42ef253031a0c48acceddcc9aec89449e9a2c042d99501aa9b1d7000bbce9a2a70ae8121f073631d1e0ec93f6f70f95f226ea22eadb743d52ef87c9570ad8fe62ab9fcfc5e8ba99b6bac7cdc3d92063b80d4b7e26ce8bf3497d03ccc7a2a561a80432ad48a8c0fb2a504316f8a829eea26b622bdffebccbc880d9ad7c0f5d19e034973f2e2b987946bebe8b5817bc2fc07dac9c4eaba5119d72da009d59f40f86be52bb64589d8a274843648615b316e7aad228b29b576054f765290f8badccc50e6ab52b9315c0c5385ff69486f863178827d05716caf141dea9d48f02447f13fcb9d5b153ecf34d2061c8fe303cad9eac542ade2f843f0c0b5d63120f30446e67cde44a732f2d922a1a84e63404d7e4b14f19ce649d7df169fb1d41590df2cc22c18b41c8a41c398d262ff11ece08df36a649c0afa8f8a3c5437f949673ff9d74631bc85d51efbceee341b2ef612358887c1f05a38090b645f8d226dae8313fc16aeff0da88e748677a956e33e8029f4a8cfd9c17f7f1e176663222e454b3516437dbebb7608a5186666861bd1a4612d54ae19358510246fb417563d4eb6d20c2e335628018963471dae2b857d5149434aed0b8ca2137c007520268ece967d0e9fa141cc0ab89a44ee36e72ef3e78e2230d7dfefbe8038bfd2efd161afc5c717ad92371728e60de09f89356c59e49a43c642336802c98b560f291192630fc4bea9c4dcc302e277c3a0bdeaef777d3d1e395dc3d8e6d3fbf519b61d75d449a7d40c73edb78bdb9866f2dca9e8f1ae3f21bc7eff436ba0a55210b60a382cf757873791ce2eaa8011780a5817a8ce952d085868682271c0253df1b89e8a3f155525aeb7f2901fc2d5f941283beb02f76db5bd5988950f532991f77765247e68f0d776cac04d249c9e2ce1a6d29327a56da4b8722b76fe4b369d95fcd633aab8ce1a2a510da4df207bd1ec9055e8448a36a6c4109f3fe735213484ea2955db98d18d6d1e78979b55b88032e5aaa82cb9bc33315ca12c99c741a7dec5f7dc0091ebd89622b9997652ec23a788704c24abcda2e0727df16841bd3a81a95fd5ac514f7f6e7d88bd40a53d108c578b6cc3d28971e035ee923a0731ee1531b6a4cb43cd24ca8b17f435f32781f582ff8dfb06c1295111e55a67a0f882043accce30e3ed0abf17943d12a073ab6ea0990d0305e11ccae574c6719b40c64e3c780bad157ca9e69d109b154ae3c7e63f1bded8be6169164a9e3c67fed974aa163dccca2eba99ce727612d6d3ebfbf4f68951050b5b5b3b12d5badcafd9f263dbf03ad2217cb4d574f70194fa1925d2b02acd46e04056dc1aac46adeb85db5f0ffe036c57864d55c41d48cd5cbb98dddace67d6058d7a5d47e0f717ba6d1ee45414f0f462cf00b1f01717343ee0a80d64e0c88161bf4087b0583fa99bc1a03bfdc5bf02f7b8fbd5379a7e7bcc89dbe9ad2edd26f6949a6d7a092bd0bca6b330b2e65a0241e128132201f94ad44b2025fd5fa98c5a66fefbaa7bd5756db3fa70c6e4ae52c31e6ebc88290d407481970c39a625b2ca27b44df37f96079df682d57f32fc1cc7c38be1a7a976a9e95ee184382bef88ea33b506aa75f66e1140fc7d03b5f02880926ddd04012a170065cb5154ff2f7a09507617cdb5e1b37c25fcb1fe2fb5495c9393ec0940803bed27e44a7b84bed0ff29d41c3d9769c1ba370add703b6ae39b05ee0eceabcc0983e4c7039bfa00fad90c44a7de592d9cf6eeb21043ff4dcfc7dc03451d940494b6e64fc4b7e73c9661068872dd6616626bdb75a4e4988b80507cea9195543760256cad3090e60a49399e7c0b757682b49c000dc512030a76f78402b8e612a580883dd898db5b1213bf741285b54e9ac08c7b2ae51cda5f3b7733fd20b443f22761915b82e112095a2065fee0397a914ffeaf02416c0e5377014a9631d6b0c03c44ad82d960ebf5cfa639a4c1cf3ae37edbd774133addf733560efe411d9eaaea9592357f7d91b1f7e9a9e37fc35f68ca0f8269061d222f1368140f8dac0ac7812627939c4b0b32ba2b795e7961d0b21b7bb47520c38731d34ca910712cd9adb3a4811d4af84f142844051c39ad0a13cbe3f88ede4167c42eb472dab61df1300188f1e2a9999404592b2218151ad871b36da8492ab5f2ba5d1215dbfd6adefb107c91ad26cfb2de6bc1a658043edb0222e500cbbc2e935261d086f34129be43de6f35dee7947ad90f0372e14a98dd2a5feda7222daccc4f75e3c026029ccc83d8a034898fc6e55bc1fab7bbad79f3ed8ee901cc5948a11500121b3b357bb8f55dd8d999af6f4a34490c9bb8103b01807de2f8de35c0baee36b0cf4cc6c2c885b7cafbfc7172e469529a5409a9bdf214179d8f03fc632ce4741558666ca9d1a0dd4ba78fa3ac43d4fa3a1d62030d42116578a8fd13ce4828f97eb65a0522d87a9c7a5d38ad4bb20f1b0702afbae72348bef4a1ff20ffe97794bbb2e2213ad7211330af4ae3dd71e2ce7e2a8aa86bffa4ac2684a3e0d94ede61ecbf0f21569b135edb51f3c5ae73c3ba87e7321994d39fb547866f1e6139957a71b0b427b00ae58606ad0466b72f8e2b6e142dd29a565a39cc224521e6e14aa1eb07b7ffde9d71e0453d6cda15e862b17b6b330368b32fefb415d86e275166ac3de4495002b05313fa97325d3f52ea4e9e8f26b1acfd6c915ee59facb379c02cce0f549e22e18209bbbb90ba91d2ceaeabc25401155d891133f4e1194cd21fe1869875bdedaf1a75a8f912e50f6d8604da13399fe63a209e8d4ee8fbb100bbd645d04f38b3cd7e5613fb825effc417cf332278293f05565573ee70738b43e666290543cd59910edd502a207db2b1e0613d9f31a680a3a130959ab567050d844be28eb836b23380cbd4ba20eeec0c0909da4a3870f209b78e135071b64cdf460f6397595ff24187443765d1686d7662da7f8de96131c3d5c87f958c45ce7b5d439e49cb4bc3cb58e22bafccdeb6eb3b75c3031dd2d74f51df898f6721cccf4675c756689ee164c4ab80623ca72006bd275295e9882c05d33913c65461f091b4bad592d14f6fefdcdcc73ccd33268c88c49eb059ed7c4c4170b1dde83d86e148b16fd1c5f1ce98362945bd84a7fea8931a994145eeb1da3d047775525a86246d991f1649b557db98f97727fe5845e64ac772fde18b39344b614ef2304218eefac79e7fe93af2c4bd21517060e257f49580bb32ae00c06da9ac6d532683a99626f5b9a30bdb772081edd8253d62abda07bf684491c679c499f974d1ceef36150587c035505a486da531eb4cfebd695cfa4d12135240833aff7ce53785d151e40a1e8c61ae243953d60677c97969b7b04adc6e29f1374a68787e67ce90a62d944c2735d225736deaae2c307c5416958f89cd5dfa6ffc7181190b32ef809de1b6802ed807bc9a93118cdae7182d0b907fbd22cf03646ba6ca29a8ff0c5eb315702d74cb56af378aee2d87ad1db7fd26e993c31ca2d52ea5fd87ea3f1e2cabf96454d1ffe292489f04ed389caad291ac70730c2946c7f5b2c46df7de17d3b1d1061218d7c69c046cbc3e061cdfacc215e79da689f381fe987bd5f1163289acb577d61b1830f09bb0dae352a5803935f0309a0108f343f21598bf0f3cc021ef6266b14c90b77d4594f81bacf4f72fcdb34ee438a9385e8f609fc3181f5cc089004fc2245355e0acd2911850a605b43882314648bdbe082fc7da846ca12c317e773bfb2d6b2760a46acb344c3987bd7cb2369e27726d43187c2479c27da233a1f5db9fed64b659623ef9c651700358ee134490ffbcc169ee5d69da0c70735efc87eec25c6c9b4e2837ffac5557cbeb149f51e6f177e8288687dccdb616153f84cd6c5e5a198440b69269a8084d7cc64cb2b68ba767e96bbf4e723e01fff10bc323602b499ffa9637e58ea03533ac4af93d5acab1c830b41851ad2cefe4041d33a35d980c774ee55097cea51bae9ada875449916f5d5e1fa176eedf5ac8f7dabf5a5ecab91752a89bceae9137363a1866d5ac2e234a7142b77adf59699e243a48bcad1583b8927351541ec01489803f177e96d07e570156a01a7c3d86a4cd895ecea826ffecc9997f5049c85c91df8edc597efb6471fdedd96903c4a81e0776f492b8bd5f5cc2c88b852256650e7b5f9dfdf029b100b7f7dd9d3e75ab88f6d4a9d21e621c616be5a241337051d6e9dd15acd2cb31855ed29990af7d1324e77218a9eb781bc49d5c96713609fe326b2bd413563abc548981b238ab75dbf8cd19a80332e563ae2483fed1db4d25192dfc9c43e183fb4c04663d010f379f41915f60696bce960778683f067e35da0d9b02431c3621b5af4c7c8a4d1eb9e53ada46d3eca91a9052f0a7bea664277b049b898630cd6bf300df485b5f3ca5704e09ebea6de8c405eae676af73b8e675494be74f3059539f773a910bcc2a0fd747122cf48f54b2e9ae479d077bfdcfe206dd037a8f69aa2ff32fbbaf170f58041db2cef1430acb8b1bee4381d284afb89f4ed5294277f16697bb52282b483a75c1ce0560ecbf157c07e064ca6eb58f1cb13d2f57db186620db699aad7dc5a0117e07685451a8ff3758e6023c64c4fcb69be164244e4713eb8807b5d9baeaf886a0660c20b0b3449f72aeecc0acfefde6de50bb2dec9332a2251812e068abe7bd987729848b063def969b2c9d3cae648f6b2da6feb14f5d467f30feef1bd4344cef4d20cfb07b913b3af0030ef3f62706610027f88977508279bdaff631e465266c105face75b170aee96172dea0071d91c99032944389a8d359ffec75ca0a8ca7a667e8aadc865cbee5c8a28da7246bd71219a813d20c31048cee914f55b5897dae19d5dd85923c1829ccb8a5ea8468f3e3619a49d722e15fd5ea5bd602bee4eddda9791d758fba9f90b0ca747eb5dc4f600e683f7bd3d6c7e5e817e47ac3c33ea3a9cfd00011852ea74e9ebf7462231f00ce4c1d34c0d713545c06c40296d1abe12d6f7dc0ba66fae50933bfb105007020003", 0x1000}, {&(0x7f0000003e00)="6544566a8b89ff22aa86dcb2f98e4c4fb0930d0bbb5414d8fcbda6758dd6565737c34d6834bd4db9c28877dd454fea2a6a22e3dbc6702624d267b71a213326ea37e6c4bca33bba68d21fd47ba82a2a6fdbffa6fcbb80d17f0a7f5469ada28e6a56630f54d3183d219fb26b7cfa6c9513cea2059ede0546927bb5667caa9bc1ce7e15186ae6d84794578098b7f4862a58b11500ef8d8f781dd65d326368cd2b444d23a1caf72ac6031994992a20868c627719fc740d197646a13799c529c7ea2bf772e48b16d9d156c2a4d723f575d8a9a7ecb31c65fd7c168f", 0xd9}, {&(0x7f0000003f00)="b42b66aa310c82a62400fa504a3fe4befd28cc9ed8295f78c692f0f0e20d69933c186ecd723e2a0179be83368611d60761f0c926566c25ba35fa3f8e3e5bc30c0ad4a7b2708cfda8b8381ab4e97ac50fcade7f568e8faa50a4998249705e6adb029396fd16f32a99b5815a1fab73cdc43bd2e76a89aa94b17c4f3ab84eb06f8fa995be5d110117b9dd242cb83ca2f77dee38a8cc5aedff3bf20fc7a1b10be0117babbcf3594dd2048df9da7ade6a02864c5a165209b8051b79d9cf6e9ab980c0b07efe7bda2ad3afe6bf74de44436e92104f29424f3bb9b9f8e12b37dd352d9c5465bf26f0adb8fa3c6ab91e11", 0xed}, {&(0x7f0000004000)="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", 0x1000}, {&(0x7f0000001cc0)="645eebe4bbd516996cdb7b599c881e63c874396b27bcb0344a7b3535fb986985213055061ad38d28f4c6be020ae081db632a3a9f7994bc715ae51570b26f1a0ecdefb72622a4c982a8ce9daff6329222c4135207b61511075b98bc56c9c41feff28c4f3e065496132010d7e0131cf10e3637284a8749ce752af0bc0a7dcd22ebc47c38130dd1609ec770e1e4d509ecd215c43c3e", 0x94}, {&(0x7f0000005000)="7613c7654ffeb541a77c2185b05847fa7f6ea9e2ca62521e7ec5fcbf006990913bc35d87cc4b0645caada4a76c5c0b17e2c4676b807635f153bb8f10f627aca91da0bf0049b1b514b7aa36ca5912d59f070bee6c8b764e0f6b2dc7949a992658adce32e7908c3cf35e9910f8f5674f4730aca0401b493c72708a83d3bc4187f5196679d082675dc2963e267954b7f25c69abfe53", 0x94}, {&(0x7f00000050c0)="d614be4dfec035313644ac25a562c2c63b6ccfd606e4cc30a4ba0058c0987a52d6bb5edfbf400bf6480329b8f0254a1d1bfae20868eb78a5a1230a428485f1eb80cfe9fd62ab261c06085adf5574fce79a4afdc4f2e158a3f1cb9c8511b2c74e124daae9aa86b4d443e127d3e77dc2bcc920458b6827ed2e13746968a195a9f6797fc7eddf59a367d259d7907e001f1a48928f9e24181bc61b6acdd6aae6df2eb7ecc724e4bce5c6a17549b6691fed5f7be27e456d35dd1a92a80dbfa30302ad", 0xc0}], 0xa, &(0x7f0000005240)=[@ip_retopts={{0xb8, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x2c, 0x8d, 0x3, 0x9, [{@rand_addr=0x64010101, 0x9a}, {@broadcast, 0x5da}, {@multicast2}, {@multicast2, 0x4}, {@rand_addr=0x64010101, 0x3}]}, @cipso={0x86, 0x64, 0xffffffffffffffff, [{0x5, 0xd, "58258f7cc1a5814b437a6c"}, {0x0, 0x10, "1ee8c199042f91e44582806b866f"}, {0x0, 0x6, "162190b4"}, {0x2, 0x10, "e36f1c7390a829d9eb9e3f78801e"}, {0x1, 0x10, "7eb345facf19e160547ec3fd7538"}, {0x6, 0xa, "b1f5c422e15ce03d"}, {0x1, 0x11, "afc482ddaf55df8d3497931f3dfe35"}]}, @ra={0x94, 0x4}, @generic={0x86, 0x12, "7bf369af70921c10287ec9b8e8ac61ea"}, @end]}}}, @ip_retopts={{0x20, 0x0, 0x7, {[@ra={0x94, 0x4}, @generic={0x88, 0x9, "29da3290a6ba83"}]}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x2}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x3}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x20}}], 0x120}}], 0x2, 0x4) 06:02:54 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) 06:02:54 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:02:54 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 46) [ 2317.997405] FAULT_INJECTION: forcing a failure. [ 2317.997405] name failslab, interval 1, probability 0, space 0, times 0 [ 2317.999423] CPU: 0 PID: 11232 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2318.000652] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2318.002109] Call Trace: [ 2318.002575] dump_stack+0x107/0x167 [ 2318.003220] should_fail.cold+0x5/0xa [ 2318.003894] ? create_object.isra.0+0x3a/0xa30 [ 2318.004712] should_failslab+0x5/0x20 [ 2318.005379] kmem_cache_alloc+0x5b/0x310 [ 2318.006099] ? mark_held_locks+0x9e/0xe0 [ 2318.006821] create_object.isra.0+0x3a/0xa30 [ 2318.007592] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2318.008495] kmem_cache_alloc+0x159/0x310 [ 2318.009230] xas_alloc+0x336/0x440 [ 2318.009857] xas_create+0x34a/0x10d0 [ 2318.010522] ? kernel_text_address+0xf2/0x120 [ 2318.011315] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2318.012255] xas_store+0x8c/0x1c40 [ 2318.012900] __xa_store+0x164/0x2d0 [ 2318.013541] ? xa_delete_node+0x280/0x280 [ 2318.014275] ? trace_hardirqs_on+0x5b/0x180 [ 2318.015040] xa_store+0x31/0x50 [ 2318.015617] __io_uring_add_tctx_node+0x1cf/0x520 [ 2318.016462] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2318.017373] ? alloc_fd+0x2e7/0x670 [ 2318.018011] io_uring_setup+0x1fbb/0x2980 [ 2318.018737] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2318.019616] ? wait_for_completion_io+0x270/0x270 [ 2318.020481] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2318.021392] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2318.022286] do_syscall_64+0x33/0x40 [ 2318.022932] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2318.023819] RIP: 0033:0x7f530d0e5b19 [ 2318.024475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2318.027667] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2318.029005] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2318.030241] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2318.031458] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2318.032647] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2318.033817] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:03:09 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 47) 06:03:09 executing program 2: fork() (fail_nth: 60) [ 2333.104989] FAULT_INJECTION: forcing a failure. [ 2333.104989] name failslab, interval 1, probability 0, space 0, times 0 [ 2333.107429] CPU: 1 PID: 11241 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2333.108923] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2333.110708] Call Trace: [ 2333.111287] dump_stack+0x107/0x167 [ 2333.112083] should_fail.cold+0x5/0xa [ 2333.112921] ? anon_vma_fork+0xf1/0x640 [ 2333.113787] should_failslab+0x5/0x20 [ 2333.114607] kmem_cache_alloc+0x5b/0x310 [ 2333.115495] anon_vma_fork+0xf1/0x640 [ 2333.116321] ? __vm_enough_memory+0x184/0x360 [ 2333.117294] copy_process+0x72cd/0x78b0 [ 2333.118191] ? __cleanup_sighand+0xb0/0xb0 [ 2333.119115] ? lock_acquire+0x197/0x470 [ 2333.119992] ? find_held_lock+0x2c/0x110 [ 2333.120901] kernel_clone+0xe7/0x980 [ 2333.121711] ? lock_downgrade+0x6d0/0x6d0 [ 2333.122600] ? find_held_lock+0x2c/0x110 [ 2333.123482] ? create_io_thread+0xf0/0xf0 [ 2333.124413] ? ksys_write+0x12d/0x260 [ 2333.125270] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2333.126361] __do_sys_fork+0x8a/0xc0 [ 2333.127204] ? kernel_thread+0xf0/0xf0 [ 2333.128075] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2333.129260] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2333.130414] ? trace_hardirqs_on+0x5b/0x180 [ 2333.131385] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2333.132519] do_syscall_64+0x33/0x40 06:03:09 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0xa000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:09 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff8000, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:09 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x80010, r0, 0x8000000) 06:03:09 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000003300)=[{{&(0x7f0000000080), 0x6e, &(0x7f0000000240)=[{&(0x7f0000000180)=""/160, 0xa0}, {&(0x7f0000000100)=""/24, 0x18}], 0x2, &(0x7f0000000280)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000000340)=@abs, 0x6e, &(0x7f0000000440)=[{&(0x7f0000000500)=""/4081, 0xff1}, {&(0x7f00000003c0)=""/108, 0x6c}], 0x2, &(0x7f0000001500)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd0}}, {{&(0x7f0000001600), 0x6e, &(0x7f00000018c0)=[{&(0x7f0000001680)=""/232, 0xe8}, {&(0x7f0000000480)=""/47, 0x2f}, {&(0x7f0000001780)=""/86, 0x56}, {&(0x7f0000001800)=""/192, 0xc0}], 0x4, &(0x7f0000001900)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x68}}, {{&(0x7f0000001980)=@abs, 0x6e, &(0x7f0000002a00)=[{&(0x7f0000001a00)=""/4096, 0x1000}], 0x1, &(0x7f0000003280)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000002ac0), 0x6e, &(0x7f0000003ec0), 0x0, &(0x7f0000003f40)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000002b40)=@abs, 0x6e, &(0x7f0000002fc0)=[{&(0x7f0000002bc0)=""/83, 0x53}, {&(0x7f0000002c40)=""/89, 0x59}, {&(0x7f0000002cc0)=""/57, 0x39}, {&(0x7f0000002d00)=""/203, 0xcb}, {&(0x7f0000002e00)=""/228, 0xe4}, {&(0x7f0000002f00)=""/166, 0xa6}], 0x6, &(0x7f0000003040)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xb0}}], 0x6, 0x2000, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x200000b, 0x4000010, r1, 0x10000000) 06:03:09 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x72}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = dup2(r1, r0) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x8, 0x11, 0x80, 0xc1, 0x0, 0x1, 0x68000, 0x3, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x10000, 0x1, @perf_config_ext={0x6}, 0x400, 0x7, 0x81, 0x1, 0x2, 0x1, 0x8, 0x0, 0x2, 0x0, 0x10000}, 0xffffffffffffffff, 0x10, 0xffffffffffffffff, 0x2) ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000180)=ANY=[@ANYBLOB="0100006b915000cf84dfb0b09ef5e15ca0c2445a9b187b5a3aa83f5df6cddebd71432f74eb266b96b5fe73271fbdf90bf2d06e0f6b137f64f01b7feae7e7014387cbcc1db1e3092cc358d48be06ae9503c8cfb3fd93f7aef3754f56fe4399f572107741e52d7afaed19d7ec5eec081677dbc1fd7d73e99219f5c2e3b6c7df43365d15f9bde01a9958b4073de", @ANYRES32=r0, @ANYBLOB="02000000000000002e2f66696c653000"]) ioctl$F2FS_IOC_FLUSH_DEVICE(r2, 0x4008f50a, &(0x7f0000000080)={0xc3, 0x3}) r4 = dup3(r2, r3, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r4, 0x400c6615, &(0x7f0000000140)={0x0, @aes128, 0x0, @desc4}) ioctl$RTC_SET_TIME(r3, 0x4024700a, &(0x7f0000000100)={0x3b, 0xb, 0x11, 0x1a, 0xb, 0xfff, 0x5, 0x122, 0xffffffffffffffff}) [ 2333.133354] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2333.134729] RIP: 0033:0x7f22e1959b19 [ 2333.135575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2333.139732] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2333.141399] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2333.142978] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2333.144568] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2333.146151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2333.147735] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:03:09 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xfffffffe) 06:03:09 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0)={0x0, 0x69a2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) [ 2333.195132] FAULT_INJECTION: forcing a failure. [ 2333.195132] name failslab, interval 1, probability 0, space 0, times 0 [ 2333.197642] CPU: 1 PID: 11257 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2333.199134] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2333.200947] Call Trace: [ 2333.201524] dump_stack+0x107/0x167 [ 2333.202317] should_fail.cold+0x5/0xa [ 2333.203144] ? xas_alloc+0x336/0x440 [ 2333.203949] should_failslab+0x5/0x20 06:03:09 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2333.204785] kmem_cache_alloc+0x5b/0x310 [ 2333.205820] xas_alloc+0x336/0x440 06:03:09 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x2000000000) [ 2333.206612] xas_create+0x34a/0x10d0 [ 2333.207525] ? kernel_text_address+0xf2/0x120 [ 2333.208513] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2333.209651] xas_store+0x8c/0x1c40 [ 2333.210437] __xa_store+0x164/0x2d0 [ 2333.211226] ? xa_delete_node+0x280/0x280 [ 2333.212134] ? trace_hardirqs_on+0x5b/0x180 [ 2333.213089] xa_store+0x31/0x50 [ 2333.213832] __io_uring_add_tctx_node+0x1cf/0x520 [ 2333.214948] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2333.216081] ? alloc_fd+0x2e7/0x670 [ 2333.216893] io_uring_setup+0x1fbb/0x2980 [ 2333.217800] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2333.218898] ? wait_for_completion_io+0x270/0x270 [ 2333.219966] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2333.221118] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2333.222243] do_syscall_64+0x33/0x40 [ 2333.223055] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2333.224170] RIP: 0033:0x7f530d0e5b19 [ 2333.224985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2333.228983] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2333.230587] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2333.232143] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2333.233707] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2333.235260] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2333.236829] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:03:09 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r6, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r6, 0x0) open_tree(r6, &(0x7f0000000040)='./file0\x00', 0x89801) syz_io_uring_submit(r1, r4, &(0x7f0000000100)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x3, 0x0, @fd=r6, 0x7, 0x0, 0xc7, 0x1, 0x1}, 0xdb89) r7 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r7, 0xc028660f, &(0x7f00000000c0)={0x0, r0, 0x80, 0x1c9, 0x4, 0x9}) 06:03:09 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x18000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:09 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = dup2(r1, r0) io_uring_enter(r2, 0x5b26, 0x9f4, 0x6, &(0x7f0000000080)={[0x2]}, 0x8) io_uring_register$IORING_REGISTER_EVENTFD(r1, 0x4, &(0x7f0000000100)=r2, 0x1) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000240)=ANY=[@ANYBLOB="040081a25819ea3b25405c52", @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0xc6, 0x5, 0x8, 0x1, 0x0, 0x2, 0x8100, 0x7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000180), 0x5}, 0xc02, 0xfffffffffffffe00, 0x2, 0x9, 0x9, 0x3ff, 0x1, 0x0, 0x6, 0x0, 0x6}, 0xffffffffffffffff, 0xf, r3, 0x2) creat(&(0x7f0000000140)='./file0\x00', 0x4a) 06:03:09 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:09 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x7fffffffff3ff) 06:03:09 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 48) [ 2333.409255] FAULT_INJECTION: forcing a failure. [ 2333.409255] name failslab, interval 1, probability 0, space 0, times 0 [ 2333.410785] CPU: 0 PID: 11280 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2333.411694] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2333.412789] Call Trace: [ 2333.413140] dump_stack+0x107/0x167 [ 2333.413622] should_fail.cold+0x5/0xa [ 2333.414125] ? create_object.isra.0+0x3a/0xa30 [ 2333.414724] should_failslab+0x5/0x20 [ 2333.415224] kmem_cache_alloc+0x5b/0x310 [ 2333.415760] ? mark_held_locks+0x9e/0xe0 [ 2333.416307] create_object.isra.0+0x3a/0xa30 [ 2333.416883] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2333.417523] kmem_cache_alloc+0x159/0x310 [ 2333.418075] xas_alloc+0x336/0x440 [ 2333.418545] xas_create+0x34a/0x10d0 [ 2333.419038] ? kernel_text_address+0xf2/0x120 [ 2333.419630] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2333.420333] xas_store+0x8c/0x1c40 [ 2333.420813] __xa_store+0x164/0x2d0 [ 2333.421289] ? xa_delete_node+0x280/0x280 [ 2333.421834] ? trace_hardirqs_on+0x5b/0x180 [ 2333.422396] xa_store+0x31/0x50 [ 2333.422836] __io_uring_add_tctx_node+0x1cf/0x520 [ 2333.423468] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2333.424146] ? alloc_fd+0x2e7/0x670 [ 2333.424612] io_uring_setup+0x1fbb/0x2980 [ 2333.425155] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2333.425781] ? wait_for_completion_io+0x270/0x270 [ 2333.426421] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2333.427070] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2333.427745] do_syscall_64+0x33/0x40 [ 2333.428227] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2333.428870] RIP: 0033:0x7f530d0e5b19 [ 2333.429331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2333.431707] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2333.432701] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2333.433621] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2333.434545] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2333.435465] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2333.436391] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:03:22 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0xfeffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:22 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 49) 06:03:22 executing program 5: prctl$PR_GET_SECCOMP(0x15) r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) prctl$PR_GET_SECCOMP(0x15) pwrite64(r0, &(0x7f00000000c0)="c27bb1d9fa508c97946833dd60c7c3e41ccbfa12e575c9e2c61ebbe72a74f429e486b1804512b88962bf22bf23402e484f63e6d07292af001dcdc550bf82b553a971601649691d4fb63a0aef2c921639a449e39e86bb58b183418e16779bfe0cce572f", 0x63, 0x8001) prctl$PR_GET_SECCOMP(0x15) ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000080)) r1 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) 06:03:22 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x4000010, r0, 0x8000000) r3 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x5, 0x4000, @fd_index=0x2, 0xfffffffffffffeff, &(0x7f0000000280)=[{&(0x7f0000000240)=""/28, 0x1c}], 0x1, 0x8}, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) r8 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0) syz_io_uring_submit(r11, r10, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r12, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r13 = syz_open_dev$hidraw(&(0x7f00000000c0), 0x7, 0x2200) r14 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1, {0x0, r14}}, 0x0) syz_io_uring_submit(r12, r10, &(0x7f0000000180)=@IORING_OP_FADVISE={0x18, 0x4, 0x0, @fd=r13, 0x6, 0x0, 0x8, 0x2, 0x1, {0x0, r14}}, 0x1) syz_io_uring_submit(r11, r2, &(0x7f0000000080)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index=0x2, 0x4d3, 0x0, 0x6, 0x6, 0x0, {0x0, r7}}, 0x1c0d7b8) syz_io_uring_submit(r1, r5, &(0x7f0000000000)=@IORING_OP_READ_FIXED={0x4, 0x5, 0x2004, @fd=r0, 0x5, 0x8, 0xfffffffe, 0x4, 0x1, {0x1, r7}}, 0x33) perf_event_open(&(0x7f0000001d80)={0x0, 0x9f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x14880, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) 06:03:22 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:22 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x8000000000000) 06:03:22 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0\x00'}) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r2) 06:03:22 executing program 2: fork() (fail_nth: 61) [ 2345.912192] FAULT_INJECTION: forcing a failure. [ 2345.912192] name failslab, interval 1, probability 0, space 0, times 0 [ 2345.914089] CPU: 1 PID: 11297 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2345.915221] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2345.916594] Call Trace: [ 2345.917037] dump_stack+0x107/0x167 [ 2345.917639] should_fail.cold+0x5/0xa [ 2345.918261] ? xas_alloc+0x336/0x440 [ 2345.918871] should_failslab+0x5/0x20 [ 2345.919499] kmem_cache_alloc+0x5b/0x310 [ 2345.920169] xas_alloc+0x336/0x440 [ 2345.920776] xas_create+0x34a/0x10d0 [ 2345.921395] ? kernel_text_address+0xf2/0x120 [ 2345.922137] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2345.922999] xas_store+0x8c/0x1c40 [ 2345.923598] __xa_store+0x164/0x2d0 [ 2345.924195] ? xa_delete_node+0x280/0x280 [ 2345.924890] ? trace_hardirqs_on+0x5b/0x180 [ 2345.925601] xa_store+0x31/0x50 [ 2345.926154] __io_uring_add_tctx_node+0x1cf/0x520 [ 2345.926957] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2345.927801] ? alloc_fd+0x2e7/0x670 [ 2345.928402] io_uring_setup+0x1fbb/0x2980 [ 2345.929110] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2345.929947] ? wait_for_completion_io+0x270/0x270 [ 2345.930274] FAULT_INJECTION: forcing a failure. [ 2345.930274] name failslab, interval 1, probability 0, space 0, times 0 [ 2345.930752] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2345.930769] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2345.930790] do_syscall_64+0x33/0x40 [ 2345.935448] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2345.936283] RIP: 0033:0x7f530d0e5b19 [ 2345.936906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2345.939952] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2345.941203] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2345.942381] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2345.943551] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2345.944745] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2345.945914] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2345.947118] CPU: 0 PID: 11300 Comm: syz-executor.2 Not tainted 5.10.254 #1 06:03:22 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xc000000000000) [ 2345.948609] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2345.950538] Call Trace: [ 2345.951140] dump_stack+0x107/0x167 [ 2345.951924] should_fail.cold+0x5/0xa [ 2345.952751] ? create_object.isra.0+0x3a/0xa30 [ 2345.953718] should_failslab+0x5/0x20 [ 2345.954527] kmem_cache_alloc+0x5b/0x310 [ 2345.955391] create_object.isra.0+0x3a/0xa30 [ 2345.956317] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2345.957405] kmem_cache_alloc+0x159/0x310 [ 2345.958293] anon_vma_clone+0xdc/0x590 [ 2345.959127] anon_vma_fork+0x82/0x640 [ 2345.959932] ? __vm_enough_memory+0x184/0x360 [ 2345.960904] copy_process+0x72cd/0x78b0 [ 2345.961773] ? __cleanup_sighand+0xb0/0xb0 [ 2345.962673] ? lock_acquire+0x197/0x470 [ 2345.963525] ? find_held_lock+0x2c/0x110 [ 2345.964384] kernel_clone+0xe7/0x980 [ 2345.965176] ? lock_downgrade+0x6d0/0x6d0 [ 2345.966057] ? find_held_lock+0x2c/0x110 [ 2345.966909] ? create_io_thread+0xf0/0xf0 [ 2345.967787] ? ksys_write+0x12d/0x260 [ 2345.968609] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2345.969635] __do_sys_fork+0x8a/0xc0 [ 2345.970419] ? kernel_thread+0xf0/0xf0 [ 2345.971261] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2345.972369] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2345.973464] ? trace_hardirqs_on+0x5b/0x180 [ 2345.974378] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2345.975472] do_syscall_64+0x33/0x40 [ 2345.976259] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2345.977348] RIP: 0033:0x7f22e1959b19 [ 2345.978134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2345.982022] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2345.983638] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2345.985151] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2345.986666] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2345.988168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2345.989679] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:03:22 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x100000000000000) 06:03:22 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 50) 06:03:22 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:22 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0xffff8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:22 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x200000000000000) 06:03:22 executing program 5: r0 = fcntl$getown(0xffffffffffffffff, 0x9) ptrace$peeksig(0x4209, r0, &(0x7f0000000080)={0xff, 0x0, 0x3}, &(0x7f0000000340)=[{}, {}, {}]) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) 06:03:22 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) [ 2346.118886] FAULT_INJECTION: forcing a failure. [ 2346.118886] name failslab, interval 1, probability 0, space 0, times 0 [ 2346.120716] CPU: 1 PID: 11316 Comm: syz-executor.3 Not tainted 5.10.254 #1 06:03:22 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x4882, 0x8818, 0x2, &(0x7f0000000000)={[0x8]}, 0x8) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) [ 2346.121839] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2346.121844] Call Trace: [ 2346.121864] dump_stack+0x107/0x167 [ 2346.121880] should_fail.cold+0x5/0xa [ 2346.121895] ? ___slab_alloc+0x155/0x700 [ 2346.121909] ? create_object.isra.0+0x3a/0xa30 [ 2346.121921] should_failslab+0x5/0x20 [ 2346.121934] kmem_cache_alloc+0x5b/0x310 [ 2346.121952] create_object.isra.0+0x3a/0xa30 [ 2346.121964] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 06:03:22 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000000, 0x810, r0, 0x10000000) syz_io_uring_submit(r3, r2, &(0x7f0000000180)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x1, 0x0, 0x401, 0x2, &(0x7f00000000c0)="acfc696099e334f2dac32b0ef8e483b4d447c5f661f247129a348c822047d4fa9274018a3b01e76af587d2de98e7c26c914c9e9bf59ff24b9eaac264fc6ac7558287b2c1ad0032a4bd3a78718cad2f9acffd192772fc66502d6e76bf075e1ef40372afbb98127887e7", 0xc4, 0x0, 0x0, {0x2}}, 0x9) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) syz_io_uring_submit(r1, r4, &(0x7f0000000080)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r5, 0x0, &(0x7f0000000500)="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", 0x1000, 0x30000020}, 0x100) [ 2346.121982] kmem_cache_alloc+0x159/0x310 [ 2346.122000] xas_alloc+0x336/0x440 [ 2346.122016] xas_create+0x34a/0x10d0 06:03:22 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2346.122036] ? kernel_text_address+0xf2/0x120 [ 2346.122052] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2346.122067] xas_store+0x8c/0x1c40 [ 2346.122092] __xa_store+0x164/0x2d0 [ 2346.122107] ? xa_delete_node+0x280/0x280 [ 2346.122126] ? trace_hardirqs_on+0x5b/0x180 [ 2346.122145] xa_store+0x31/0x50 [ 2346.122161] __io_uring_add_tctx_node+0x1cf/0x520 [ 2346.122175] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2346.122187] ? alloc_fd+0x2e7/0x670 [ 2346.122209] io_uring_setup+0x1fbb/0x2980 [ 2346.122230] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2346.122242] ? wait_for_completion_io+0x270/0x270 [ 2346.122273] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2346.122288] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2346.122304] do_syscall_64+0x33/0x40 [ 2346.122319] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2346.122328] RIP: 0033:0x7f530d0e5b19 [ 2346.122341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2346.122349] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2346.122364] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2346.122372] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2346.122380] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2346.122388] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2346.122395] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2360.672464] FAULT_INJECTION: forcing a failure. [ 2360.672464] name failslab, interval 1, probability 0, space 0, times 0 [ 2360.674882] CPU: 0 PID: 11339 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2360.676328] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2360.678062] Call Trace: [ 2360.678628] dump_stack+0x107/0x167 [ 2360.679390] should_fail.cold+0x5/0xa [ 2360.680186] ? anon_vma_fork+0x1ff/0x640 [ 2360.681043] should_failslab+0x5/0x20 [ 2360.681842] kmem_cache_alloc+0x5b/0x310 [ 2360.682700] anon_vma_fork+0x1ff/0x640 [ 2360.683519] copy_process+0x72cd/0x78b0 [ 2360.684390] ? __cleanup_sighand+0xb0/0xb0 [ 2360.685296] ? lock_acquire+0x197/0x470 [ 2360.686151] ? find_held_lock+0x2c/0x110 [ 2360.687003] kernel_clone+0xe7/0x980 [ 2360.687783] ? lock_downgrade+0x6d0/0x6d0 [ 2360.688659] ? find_held_lock+0x2c/0x110 [ 2360.689507] ? create_io_thread+0xf0/0xf0 [ 2360.690370] ? ksys_write+0x12d/0x260 [ 2360.691180] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2360.692192] __do_sys_fork+0x8a/0xc0 [ 2360.692984] ? kernel_thread+0xf0/0xf0 [ 2360.693813] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2360.694903] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2360.695972] ? trace_hardirqs_on+0x5b/0x180 [ 2360.696885] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2360.697964] do_syscall_64+0x33/0x40 [ 2360.698739] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2360.699806] RIP: 0033:0x7f22e1959b19 [ 2360.700594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2360.704697] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2360.706276] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2360.707758] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2360.709270] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2360.710773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2360.712266] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:03:37 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 51) 06:03:37 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x400000, 0x0) fadvise64(r2, 0x6, 0x20, 0x2) ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r3, 0x8983, &(0x7f0000000100)={0x8, 'syz_tun\x00', {'team0\x00'}, 0x1}) dup2(r2, r0) 06:03:37 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:37 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_setup(0x3902, &(0x7f0000000080)={0x0, 0x2d92, 0x10, 0x2, 0x96}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)) syz_io_uring_setup(0x4acf, &(0x7f0000000240)={0x0, 0x49c7, 0x2, 0x0, 0xbe}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000180), &(0x7f00000002c0)=0x0) pipe2$9p(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}, 0x40000) io_uring_register$IORING_UNREGISTER_EVENTFD(r0, 0x5, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000340)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r3, 0x5, 0x0, 0x3ff, 0x0, 0x1}, 0x3) 06:03:37 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x400000000000000) 06:03:37 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:37 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r3, 0x10, r1, 0x8) r4 = signalfd(r0, &(0x7f0000000100)={[0x101]}, 0x8) perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0x4a, 0x81, 0x29, 0xcd, 0x0, 0xce56, 0x10c00, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x7ff, 0x0, @perf_config_ext={0x3, 0x10000}, 0x14000, 0xffffffffffffffff, 0x3, 0x0, 0xfffffffffffffc00, 0x1, 0x20, 0x0, 0x80, 0x0, 0x4}, r3, 0xc, r4, 0x0) r5 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) 06:03:37 executing program 2: fork() (fail_nth: 62) [ 2360.744451] FAULT_INJECTION: forcing a failure. [ 2360.744451] name failslab, interval 1, probability 0, space 0, times 0 [ 2360.746891] CPU: 0 PID: 11353 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2360.748337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2360.750103] Call Trace: [ 2360.750666] dump_stack+0x107/0x167 [ 2360.751442] should_fail.cold+0x5/0xa [ 2360.752245] ? xas_alloc+0x336/0x440 [ 2360.753042] should_failslab+0x5/0x20 [ 2360.753842] kmem_cache_alloc+0x5b/0x310 [ 2360.754706] xas_alloc+0x336/0x440 [ 2360.755458] xas_create+0x34a/0x10d0 [ 2360.756251] ? kernel_text_address+0xf2/0x120 [ 2360.757212] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2360.758321] xas_store+0x8c/0x1c40 [ 2360.759082] __xa_store+0x164/0x2d0 [ 2360.759858] ? xa_delete_node+0x280/0x280 [ 2360.760762] ? trace_hardirqs_on+0x5b/0x180 [ 2360.761681] xa_store+0x31/0x50 [ 2360.762382] __io_uring_add_tctx_node+0x1cf/0x520 [ 2360.763401] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2360.764502] ? alloc_fd+0x2e7/0x670 [ 2360.765299] io_uring_setup+0x1fbb/0x2980 [ 2360.766182] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2360.767247] ? wait_for_completion_io+0x270/0x270 [ 2360.768290] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2360.769404] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2360.770493] do_syscall_64+0x33/0x40 [ 2360.771280] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2360.772360] RIP: 0033:0x7f530d0e5b19 [ 2360.773152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2360.777042] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2360.778645] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2360.780150] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2360.781664] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2360.783172] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2360.784678] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:03:37 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xa00000000000000) 06:03:37 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:37 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:54 executing program 2: fork() (fail_nth: 63) 06:03:54 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:54 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0)={0x0, 0x1a89}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) r2 = open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x100010, r1, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) io_uring_enter(r2, 0x4667, 0x8ee6, 0x1, &(0x7f0000000080)={[0x9]}, 0x8) 06:03:54 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0xc003}, 0x0, 0x800000000000, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r0, &(0x7f0000000180)={{0x7f, 0x45, 0x4c, 0x46, 0x4, 0x3, 0x9, 0x1, 0x1, 0x0, 0x3e, 0x5, 0x1a3, 0x40, 0x327, 0xffffffc0, 0xffb6, 0x38, 0x2, 0x5, 0x1ff, 0x2b}, [{0x2, 0x2, 0x7ff, 0x0, 0x5193dd9b, 0x20, 0x80, 0x100000001}], "90a8565beb11f6ada0a3c224e3e0ada2a020ebd8ed8c0a6d1d448ec425934235f10978781914ecaa9e45ac836a352ce134da34d606f0285dc5bc083ad228a502eec3e7aa0c7cf4e345128cb2c2894ac2b48240e3148c5edb6dacbf35b3"}, 0xd5) r1 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x88a7, 0x0, 0xfffffffe, 0x299}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)) r3 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r6 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) syz_io_uring_submit(r9, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r9, r5, &(0x7f00000000c0)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd_index=0x1, 0x0, 0x0, 0x0, {0x180}, 0x0, {0x0, r10}}, 0x4) r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) syz_io_uring_submit(r11, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x80800}, 0x8001) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000280)={{0x1, 0x1, 0x18, r1, {0x7}}, './file0\x00'}) syz_io_uring_setup(0xb9, &(0x7f0000000340)={0x0, 0xcac7, 0x4, 0x3, 0x13, 0x0, r12}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f00000003c0)=0x0, &(0x7f0000000400)) r14 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r13, r8, &(0x7f0000000a80)=@IORING_OP_SENDMSG={0x9, 0x1, 0x0, r12, 0x0, &(0x7f0000000a40)={0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000500)="289026f1e791aa20eee17170e1784855b37718d07f04afafbd58624f771f153dab0dfc46ca16f9dff9ca6760344ad10971f00f4c6aadc52e3a45548e93c4afbd4cd570646aa52b8fd0f6589e42c597e2d590f074ce457ecdab16476f7a3f8250cd1fbe6a5748d2124bee7b05dddf81e4c23e08f92e128f01f2039256c5d008eaef3f5b7adc7bf5afe13b50cdd066b7792fe8f1ea69230ad61a190ae129dfb7530564603bfb5178e6bc089ac0f9308b36add783c6671d758f9d838f4775c7726f6422be83c324e9187c834145bfd826428e661a0e06488a4f2a4a3cb2a2b067d547320e5f92cd7a2417c8f0b1513e5f9d08e88880d87b31ba", 0xf8}, {&(0x7f0000000440)="a4fba8b2f58b89a43167acce7bc6a195bb6eda009ecf01591857dd1bd8bc57bd2573b3c2e000980045f27c464df7cc3541ed6e2f9faf20e44c998c397cfa16bb7a3d92082516a040294f7f0f389d00585f76b06982c467fa", 0x58}, {&(0x7f0000000600)="857c55979fca9f2b392e7eafa902fea2c2a388ed6df20d8004151448c7d2b80da9b083492c54a61f39bbb107a81aeb63995724423f4fca", 0x37}, {&(0x7f0000000640)="72486c42a9b8cf6627486461e1c7264cc307959195c343f1b77f5ddf5de1f20309e94a916197a0c89d4fd2694e79b54b9e0444e2bc89ae71786dff95acbce35955647df5e5f5edf54082cdf08e9cd05ae3a7723b52a57e1cbd77a37b", 0x5c}, {&(0x7f00000006c0)="7bfc629154a236264527366fb099abeab2d9f4900be304ad2c4e3d779c7820d8e781befb54f5cb75b3bd77e6c0d473b9263679bd24ed3ada847bd34c5a76482196e2aec59169674db90701788e920c34aa487f0b07026214bd91b7f0433e2c0ff784a48db3bac84b45cfe86dde794ca89213eb59e2940158745ec7078143e780eda596802907ae527ffbeb3ce41222beb022108f92e8b2eca37aeaaa619f7829abacc15313c7b091d49c79d0d31379eded31e2acd6e8d4489f5d7fe7a72678aafbdcb37b63d71490ef07ffeed81edf32bf23c753a1d934aaebb61955b049cf5e788aa6fd73f44c8ba0750bc4c465b5a7d298b0df59", 0xf5}], 0x5, &(0x7f0000000840)=[{0x58, 0x111, 0x5, "d591dc5f5c7b9836c858cd5b8cbefae05c9d8ca61b1de34ec2f768e024e297895cbbf72859944ab0de84ed63ea903c094042bf79dfe3f136febca598fab6478c5188c4"}, {0xe0, 0x115, 0x6, "f10e585fe48c6582f7b2c9ccf2a93c92d1ffe482341d7244ea5cececf0219a8129d5f45f884411e764a4dcb87aea78936c03b0bfafd914cb1ced7a3505c88085a6db72a54dfc494b312d295341c16ed1075d291e222ee6ba3664e8f3a89e3f4bedeaa392d6e82fd5f5d846837dfcb2542ce5030e6e519d37fc4a86d25fa628ab86b57a069ab719dc75f1fc5923f54608ea990cae83e52d35e36efccf828b107f33c1e9d68ea4afe2b55a8ef50611191a04f288124040cc1895f230657d92d807d967279fa34d321893"}, {0x58, 0x6, 0x100, "e3bb32212c45e29670809ccd3e7881d7ca0cb8af7331aa4643e5a1873528b566d4237304ef4b42695599eeff8dda69eb94477c72325b58005a1acb5a45b18f862ab49cf1a84c"}, {0x50, 0x95, 0x10000, "0189cd24794f72a020f15191f1eb9a3354e8177664c2569caa2f4b3745daf307034bc3bfbf3688eb0aeddc0f5f8b32dfc09daa7aa314029f22e4d9"}], 0x1e0}, 0x0, 0x41800, 0x1, {0x0, r14}}, 0xfd8) io_uring_register$IORING_REGISTER_PERSONALITY(r12, 0x9, 0x0, 0x0) syz_io_uring_submit(r2, r5, &(0x7f0000000080)=@IORING_OP_POLL_REMOVE={0x7, 0x4, 0x0, 0x0, 0x0, 0x23456}, 0x8) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) [ 2378.009072] FAULT_INJECTION: forcing a failure. [ 2378.009072] name failslab, interval 1, probability 0, space 0, times 0 06:03:54 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = inotify_init1(0x81800) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x6, 0x10010, r1, 0x24a46000) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r2, r0) 06:03:54 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 52) 06:03:54 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xf00000000000000) 06:03:54 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2378.012107] CPU: 0 PID: 11375 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2378.014012] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2378.016123] Call Trace: [ 2378.016822] dump_stack+0x107/0x167 [ 2378.017756] should_fail.cold+0x5/0xa [ 2378.018739] ? create_object.isra.0+0x3a/0xa30 [ 2378.019898] should_failslab+0x5/0x20 [ 2378.020876] kmem_cache_alloc+0x5b/0x310 [ 2378.021926] create_object.isra.0+0x3a/0xa30 [ 2378.023045] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2378.024341] kmem_cache_alloc+0x159/0x310 [ 2378.025426] anon_vma_fork+0xf1/0x640 [ 2378.026402] ? __vm_enough_memory+0x184/0x360 [ 2378.027533] copy_process+0x72cd/0x78b0 [ 2378.027973] FAULT_INJECTION: forcing a failure. [ 2378.027973] name failslab, interval 1, probability 0, space 0, times 0 [ 2378.028579] ? __cleanup_sighand+0xb0/0xb0 [ 2378.032028] ? lock_acquire+0x197/0x470 [ 2378.033055] ? find_held_lock+0x2c/0x110 [ 2378.034083] kernel_clone+0xe7/0x980 [ 2378.035044] ? lock_downgrade+0x6d0/0x6d0 [ 2378.036083] ? find_held_lock+0x2c/0x110 [ 2378.037123] ? create_io_thread+0xf0/0xf0 [ 2378.038120] ? ksys_write+0x12d/0x260 [ 2378.038928] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2378.039957] __do_sys_fork+0x8a/0xc0 [ 2378.040732] ? kernel_thread+0xf0/0xf0 [ 2378.041570] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2378.042666] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2378.043738] ? trace_hardirqs_on+0x5b/0x180 [ 2378.044653] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2378.045743] do_syscall_64+0x33/0x40 [ 2378.046542] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2378.047617] RIP: 0033:0x7f22e1959b19 [ 2378.048405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2378.052278] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2378.053894] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2378.055402] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2378.056923] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2378.058434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2378.059938] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2378.061485] CPU: 1 PID: 11384 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2378.062954] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2378.064660] Call Trace: [ 2378.065229] dump_stack+0x107/0x167 [ 2378.066072] should_fail.cold+0x5/0xa [ 2378.066860] ? xas_alloc+0x336/0x440 [ 2378.067639] should_failslab+0x5/0x20 [ 2378.068436] kmem_cache_alloc+0x5b/0x310 [ 2378.069294] xas_alloc+0x336/0x440 [ 2378.070025] xas_create+0x34a/0x10d0 [ 2378.070797] ? kernel_text_address+0xf2/0x120 [ 2378.071718] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2378.072802] xas_store+0x8c/0x1c40 [ 2378.073566] __xa_store+0x164/0x2d0 [ 2378.074315] ? xa_delete_node+0x280/0x280 [ 2378.075172] ? trace_hardirqs_on+0x5b/0x180 [ 2378.076057] xa_store+0x31/0x50 [ 2378.076771] __io_uring_add_tctx_node+0x1cf/0x520 [ 2378.077772] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2378.078875] ? alloc_fd+0x2e7/0x670 [ 2378.079634] io_uring_setup+0x1fbb/0x2980 [ 2378.080520] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2378.081569] ? wait_for_completion_io+0x270/0x270 [ 2378.082585] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2378.083673] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2378.084733] do_syscall_64+0x33/0x40 [ 2378.085507] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2378.086569] RIP: 0033:0x7f530d0e5b19 [ 2378.087332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2378.091107] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2378.092671] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2378.094153] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2378.095612] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2378.097090] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2378.098546] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:03:54 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x1000000000000000) 06:03:54 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f0000000180)={0x0, 0x800000}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f00000000c0)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000000, 0x12, r0, 0x10000000) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r3}}, 0x0) r4 = timerfd_create(0x1, 0x80000) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0xa7, 0x19, 0x20, 0x6, 0x0, 0x5, 0x40000, 0x4, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0xeb, 0x1, @perf_config_ext={0x7, 0x1}, 0x0, 0x4, 0xd7, 0x8, 0x101, 0x7, 0x9, 0x0, 0x8, 0x0, 0x80000000}, 0xffffffffffffffff, 0xe, 0xffffffffffffffff, 0x2) syz_io_uring_submit(r1, 0x0, &(0x7f0000000080)=@IORING_OP_FADVISE={0x18, 0x4, 0x0, @fd=r4, 0x8001, 0x0, 0x1, 0x0, 0x0, {0x0, r5}}, 0x5) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 06:03:54 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:54 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:54 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:54 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:54 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 53) [ 2378.368103] FAULT_INJECTION: forcing a failure. [ 2378.368103] name failslab, interval 1, probability 0, space 0, times 0 [ 2378.370486] CPU: 1 PID: 11407 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2378.371957] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2378.373672] Call Trace: [ 2378.374218] dump_stack+0x107/0x167 [ 2378.374981] should_fail.cold+0x5/0xa [ 2378.375786] ? xas_alloc+0x336/0x440 [ 2378.376560] should_failslab+0x5/0x20 [ 2378.377371] kmem_cache_alloc+0x5b/0x310 [ 2378.378222] xas_alloc+0x336/0x440 [ 2378.378989] xas_create+0x34a/0x10d0 [ 2378.379778] ? kernel_text_address+0xf2/0x120 [ 2378.380706] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2378.381817] xas_store+0x8c/0x1c40 [ 2378.382573] __xa_store+0x164/0x2d0 [ 2378.383332] ? xa_delete_node+0x280/0x280 [ 2378.384197] ? trace_hardirqs_on+0x5b/0x180 [ 2378.385116] xa_store+0x31/0x50 [ 2378.385816] __io_uring_add_tctx_node+0x1cf/0x520 [ 2378.386830] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2378.387906] ? alloc_fd+0x2e7/0x670 [ 2378.388693] io_uring_setup+0x1fbb/0x2980 [ 2378.389585] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2378.390634] ? wait_for_completion_io+0x270/0x270 [ 2378.391682] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2378.392788] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2378.393881] do_syscall_64+0x33/0x40 [ 2378.394637] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2378.395725] RIP: 0033:0x7f530d0e5b19 [ 2378.396494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2378.400332] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2378.401939] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2378.403430] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2378.404966] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2378.406450] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2378.407955] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2378.412927] FAULT_INJECTION: forcing a failure. [ 2378.412927] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2378.415385] CPU: 1 PID: 11409 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2378.416901] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2378.418656] Call Trace: [ 2378.419193] dump_stack+0x107/0x167 [ 2378.419945] should_fail.cold+0x5/0xa [ 2378.420734] __alloc_pages_nodemask+0x182/0x600 [ 2378.421712] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 2378.422968] ? copy_page_range+0x28d9/0x3800 [ 2378.423889] alloc_pages_current+0x187/0x280 [ 2378.424809] get_zeroed_page+0x14/0xb0 [ 2378.425634] __pud_alloc+0x33/0x270 [ 2378.426406] copy_page_range+0x2c99/0x3800 [ 2378.427282] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2378.428370] ? lock_chain_count+0x20/0x20 [ 2378.429256] ? find_held_lock+0x2c/0x110 [ 2378.430098] ? anon_vma_fork+0x462/0x640 [ 2378.430943] ? lock_downgrade+0x6d0/0x6d0 [ 2378.431811] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 2378.432966] ? up_write+0x191/0x550 [ 2378.433718] ? vm_iomap_memory+0x190/0x190 [ 2378.434599] ? downgrade_write+0x3a0/0x3a0 [ 2378.435459] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2378.436574] ? __vma_link_rb+0x540/0x700 [ 2378.437416] copy_process+0x7658/0x78b0 [ 2378.438260] ? __cleanup_sighand+0xb0/0xb0 [ 2378.439147] ? lock_acquire+0x197/0x470 [ 2378.439961] ? find_held_lock+0x2c/0x110 [ 2378.440816] kernel_clone+0xe7/0x980 [ 2378.441582] ? lock_downgrade+0x6d0/0x6d0 [ 2378.442435] ? find_held_lock+0x2c/0x110 [ 2378.443278] ? create_io_thread+0xf0/0xf0 [ 2378.444119] ? ksys_write+0x12d/0x260 [ 2378.444952] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2378.445965] __do_sys_fork+0x8a/0xc0 [ 2378.446716] ? kernel_thread+0xf0/0xf0 [ 2378.447551] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2378.448642] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2378.449731] ? trace_hardirqs_on+0x5b/0x180 [ 2378.450642] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2378.451733] do_syscall_64+0x33/0x40 [ 2378.452518] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2378.453604] RIP: 0033:0x7f22e1959b19 [ 2378.454380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2378.458273] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2378.459868] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2378.461371] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2378.462866] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2378.464356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2378.465872] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:03:54 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x558d, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r3, 0x10, r1, 0x8) perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x1, 0x8, 0xc0, 0x5, 0x0, 0xff, 0x5000, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x401, 0x4, @perf_bp={&(0x7f0000000080), 0x4}, 0x102, 0x3, 0x7fffffff, 0x12014d368c326f31, 0x4, 0x7f, 0xfffb, 0x0, 0x7fffffff, 0x0, 0x3000000}, r3, 0x4, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) 06:03:54 executing program 2: fork() (fail_nth: 64) 06:03:54 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:03:54 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x2103000000000000) 06:03:54 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x2, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 06:03:54 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000780)={{0x1, 0x1, 0x18, r0, {0x5}}, './file0\x00'}) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x200000c, 0x13, r1, 0x8000000) 06:04:09 executing program 2: fork() (fail_nth: 65) 06:04:09 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:04:09 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x4000000000000000) 06:04:09 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 54) 06:04:09 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) readv(r0, &(0x7f0000000000)=[{&(0x7f0000000240)=""/218, 0xda}, {&(0x7f0000000080)=""/93, 0x5d}, {&(0x7f0000000140)=""/121, 0x79}, {&(0x7f0000000340)=""/178, 0xb2}], 0x4) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 06:04:09 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2392.855938] FAULT_INJECTION: forcing a failure. [ 2392.855938] name failslab, interval 1, probability 0, space 0, times 0 [ 2392.857572] CPU: 0 PID: 11434 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2392.858444] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2392.859495] Call Trace: [ 2392.859835] dump_stack+0x107/0x167 [ 2392.860295] should_fail.cold+0x5/0xa [ 2392.860791] ? create_object.isra.0+0x3a/0xa30 [ 2392.861398] should_failslab+0x5/0x20 [ 2392.861882] kmem_cache_alloc+0x5b/0x310 [ 2392.862394] ? mark_held_locks+0x9e/0xe0 [ 2392.862906] create_object.isra.0+0x3a/0xa30 [ 2392.863466] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2392.864111] kmem_cache_alloc+0x159/0x310 [ 2392.864643] xas_alloc+0x336/0x440 [ 2392.865111] xas_create+0x34a/0x10d0 [ 2392.865597] ? kernel_text_address+0xf2/0x120 [ 2392.866160] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2392.866838] xas_store+0x8c/0x1c40 [ 2392.867293] __xa_store+0x164/0x2d0 [ 2392.867755] ? xa_delete_node+0x280/0x280 [ 2392.868279] ? trace_hardirqs_on+0x5b/0x180 [ 2392.868825] xa_store+0x31/0x50 [ 2392.869264] __io_uring_add_tctx_node+0x1cf/0x520 [ 2392.869874] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2392.870541] ? alloc_fd+0x2e7/0x670 [ 2392.871008] io_uring_setup+0x1fbb/0x2980 [ 2392.871527] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2392.872166] ? wait_for_completion_io+0x270/0x270 [ 2392.872783] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 06:04:09 executing program 5: getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x9, &(0x7f0000000180)=""/237, &(0x7f0000000080)=0xed) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0xd5956ed3b7f72a16, r0, 0x0) 06:04:09 executing program 6: r0 = perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x428000, 0x101) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) open_tree(r2, &(0x7f0000000040)='./file0\x00', 0x89801) sendmsg$IPVS_CMD_ZERO(r2, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000040)={&(0x7f0000000180)={0x68, 0x0, 0x4, 0x70bd28, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}, @IPVS_CMD_ATTR_DEST={0x20, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@remote}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7fffffff}, @IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x78}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x10001}, @IPVS_SVC_ATTR_PE_NAME={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x4}]}, 0x68}, 0x1, 0x0, 0x0, 0x40084}, 0x1) dup2(r1, r0) [ 2392.873454] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2392.874179] do_syscall_64+0x33/0x40 [ 2392.874640] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2392.875277] RIP: 0033:0x7f530d0e5b19 [ 2392.875741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2392.878055] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2392.879003] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2392.879896] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2392.880785] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2392.881699] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2392.882612] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2392.914414] FAULT_INJECTION: forcing a failure. [ 2392.914414] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2392.917040] CPU: 1 PID: 11442 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2392.918532] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2392.920313] Call Trace: [ 2392.920883] dump_stack+0x107/0x167 [ 2392.921681] should_fail.cold+0x5/0xa [ 2392.922509] __alloc_pages_nodemask+0x182/0x600 [ 2392.923520] ? lock_acquire+0x197/0x470 [ 2392.924383] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 2392.925679] ? lock_downgrade+0x6d0/0x6d0 [ 2392.926556] ? do_raw_spin_lock+0x121/0x260 [ 2392.927487] alloc_pages_current+0x187/0x280 [ 2392.928427] __pmd_alloc+0x37/0x630 [ 2392.929219] copy_page_range+0x2bd0/0x3800 [ 2392.930119] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2392.931224] ? lock_chain_count+0x20/0x20 [ 2392.932114] ? find_held_lock+0x2c/0x110 [ 2392.932990] ? anon_vma_fork+0x462/0x640 [ 2392.933888] ? up_write+0x191/0x550 [ 2392.934667] ? vm_iomap_memory+0x190/0x190 [ 2392.935583] ? downgrade_write+0x3a0/0x3a0 [ 2392.936489] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2392.937655] ? __vma_link_rb+0x540/0x700 [ 2392.938527] copy_process+0x7658/0x78b0 [ 2392.939408] ? __cleanup_sighand+0xb0/0xb0 [ 2392.940321] ? lock_acquire+0x197/0x470 [ 2392.941188] ? find_held_lock+0x2c/0x110 [ 2392.942063] kernel_clone+0xe7/0x980 [ 2392.942849] ? lock_downgrade+0x6d0/0x6d0 [ 2392.943724] ? find_held_lock+0x2c/0x110 [ 2392.944585] ? create_io_thread+0xf0/0xf0 [ 2392.945471] ? ksys_write+0x12d/0x260 [ 2392.946291] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2392.947317] __do_sys_fork+0x8a/0xc0 [ 2392.948121] ? kernel_thread+0xf0/0xf0 [ 2392.948979] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2392.950111] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2392.951215] ? trace_hardirqs_on+0x5b/0x180 [ 2392.952146] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2392.953251] do_syscall_64+0x33/0x40 [ 2392.954046] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2392.955135] RIP: 0033:0x7f22e1959b19 [ 2392.955933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2392.959854] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2392.961485] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2392.963000] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2392.964499] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2392.966040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2392.967578] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:04:09 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xfbffffff00000000) 06:04:09 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xfeffffff00000000) 06:04:09 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:04:09 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80ffff, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:04:09 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)=0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c653020002000205e200020285b5b27200020000ab61de44f01c44023efd24e7284dce8738638daf1e6aef442929a9ab2e8fc4288119d91fd6dccd54082d5f469afdf6c9cc8886f2e9b201301a0f766b409c214f3867adb930c945f1e48cdfd03a88b865005e09fb58d6f53e5713cb72e9bc1fa6c9f35ff67640b4f27b16271910ff5821c2ba610215a81e1b976da572b4253d7da6b7e1d12a89f598ad2e5006c448fdf40d8120561d3f745e12acbe2366f233da07ded878a8de677d499fe7233c66a563b"], 0xbe) r3 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x50, r0, 0x0) r7 = accept$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @private1}, &(0x7f0000000180)=0x1c) syz_io_uring_submit(r6, r5, &(0x7f00000007c0)=@IORING_OP_RECVMSG={0xa, 0x3, 0x0, r7, 0x0, &(0x7f0000000780)={&(0x7f0000000440)=@in6={0xa, 0x0, 0x0, @local}, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000500)=""/162, 0xa2}, {&(0x7f00000005c0)=""/41, 0x29}, {&(0x7f0000000600)=""/191, 0xbf}], 0x3, &(0x7f0000000700)=""/118, 0x76}, 0x0, 0x40002102, 0x1, {0x3}}, 0xdb96d729) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) syz_io_uring_submit(r8, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r8, r1, &(0x7f0000000080)=@IORING_OP_WRITEV={0x2, 0x5, 0x0, @fd=r2, 0x107, &(0x7f0000000000)=[{&(0x7f0000000240)="cbf8780c3bb73e08e71fb97e0f352688516dc97b611f6dfdf01e729ad508593c6ec4bad3ea1a4c9c062fcc9a287f2752413cf5e3497ed67542532efb413b3a7dbee8a7327543da3d55d1e31ae0405810e9aeda422e163c9601b125f002a46a688c31c04989c808791bb7e13cc5fad6f53a663c62d3c5aae15e16fec2b36ca9b2c13b988c7167e3c304ce01199d1c97e9c6abf5ee72e293cf916a53fe66a6abb4ac927b79a34d0911f34aae4b9854cd308e930bfdcff3572864260240c3027198381c28564337ad014b", 0xc9}], 0x1, 0x19, 0x0, {0x3}}, 0x7) 06:04:09 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xfff3ffffffff0700) 06:04:09 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 55) 06:04:09 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb65c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) syz_io_uring_setup(0x49da, &(0x7f0000000080)={0x0, 0x139e, 0x20, 0x2, 0x246, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000180)) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000001, 0x2010, r0, 0x10000000) r4 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r1, r6, &(0x7f0000000380)=@IORING_OP_LINK_TIMEOUT={0xf, 0x5, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x77359400}}, 0x5) r8 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42000, 0x90) ioctl$EXT4_IOC_GETSTATE(r8, 0x40046629, &(0x7f0000000280)) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x2000, @fd_index=0x8, 0x7ff, 0x0, 0x0, 0x4, 0x0, {0x1, r9}}, 0x9) [ 2393.105426] FAULT_INJECTION: forcing a failure. [ 2393.105426] name failslab, interval 1, probability 0, space 0, times 0 [ 2393.106890] CPU: 0 PID: 11464 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2393.107722] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2393.108697] Call Trace: [ 2393.109036] dump_stack+0x107/0x167 [ 2393.109465] should_fail.cold+0x5/0xa [ 2393.109919] ? xas_alloc+0x336/0x440 [ 2393.110355] should_failslab+0x5/0x20 [ 2393.110811] kmem_cache_alloc+0x5b/0x310 [ 2393.111307] xas_alloc+0x336/0x440 [ 2393.111728] xas_create+0x34a/0x10d0 [ 2393.112204] ? kernel_text_address+0xf2/0x120 [ 2393.112734] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2393.113374] xas_store+0x8c/0x1c40 [ 2393.113807] __xa_store+0x164/0x2d0 [ 2393.114238] ? xa_delete_node+0x280/0x280 [ 2393.114732] ? trace_hardirqs_on+0x5b/0x180 [ 2393.115244] xa_store+0x31/0x50 [ 2393.115642] __io_uring_add_tctx_node+0x1cf/0x520 [ 2393.116204] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2393.116824] ? alloc_fd+0x2e7/0x670 [ 2393.117276] io_uring_setup+0x1fbb/0x2980 [ 2393.117777] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2393.118366] ? wait_for_completion_io+0x270/0x270 [ 2393.118940] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2393.119565] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2393.120171] do_syscall_64+0x33/0x40 [ 2393.120615] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2393.121232] RIP: 0033:0x7f530d0e5b19 [ 2393.121677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2393.123844] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2393.124756] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2393.125605] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2393.126448] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2393.127278] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2393.128124] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:04:24 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:04:24 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:04:24 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x100000a, 0x10, r0, 0x2455b000) syz_io_uring_setup(0x4f41, &(0x7f0000000080)={0x0, 0x3da5, 0x4, 0x0, 0x29c, 0x0, r1}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000180)=0x0) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1, {0x0, r4}}, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_FADVISE={0x18, 0x2, 0x0, @fd=r1, 0xfffffffffffffffc, 0x0, 0x0, 0x4, 0x0, {0x0, r4}}, 0x8001) r5 = socket$inet6_udp(0xa, 0x2, 0x0) [ 2408.503875] FAULT_INJECTION: forcing a failure. [ 2408.503875] name failslab, interval 1, probability 0, space 0, times 0 [ 2408.506925] CPU: 0 PID: 11477 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2408.508782] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 sendmmsg$inet(r5, &(0x7f0000002a00)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000200)="04c06ab971aaca0a65774594d32b2fc426ee", 0x12}, {&(0x7f0000000340)="b23d9f61ec4b933f47334a5fbae3dc01f3c3c59e0939225132f9599e36c59cf267c296ad008614a94b6f7a6a2ca83f436cb43ef0c307ef1687364675f801b7ad0675c6299534b6a97504b04741891e084d0e6c25186e9218094d7a52374ad950851f443a3b2d26380cfc59fceab4e540d031b17e887ee60168a4dd9612175b6cc724b89557731157a1c288b310b7990747710e5f499f876b53ea82e3bef6a92905f8678f765a1911690e71ca0825aa49b351b8c4a59346059fbded6d8a6a22ba8e41", 0xc2}, {&(0x7f0000000240)="34e8b6b142518f9c2a274cd93bec8ff5f6309ba4633f171672c461413dfa6d213e1e92cf0de5070a6f630195729bf5eb2a7124a584400ca525213e8dfc58a66f6cac2d7b84", 0x45}, {&(0x7f0000000440)="1bf9d5c9dfda01997a031a87e03c39ced324fb63ce3125f065c781e41f457183d13651fe170de473f6c3bdcbcb776bda635af904bb0f582c3e3885f51d98695c55331c7a86111d99559c68edfb445107b3fe4e9f22be", 0x56}, {&(0x7f0000000500)="47457c4c5dc1d69667f25957a91c639e630e95e54a855a22e2818dc05567cd47f8d1c03081a816227af752b1aba6de3008cffc", 0x33}], 0x5, &(0x7f00000005c0)=[@ip_ttl={{0x14, 0x0, 0x2, 0x7}}], 0x18}}, {{&(0x7f0000000600)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000640), 0x0, &(0x7f0000000680)=[@ip_ttl={{0x14, 0x0, 0x2, 0xfffffffe}}], 0x18}}, {{&(0x7f00000006c0)={0x2, 0x4e21, @multicast1}, 0x10, &(0x7f0000000800)=[{&(0x7f0000000700)="c449d68415de4f14a03c27334aa18b9a6377699cfef691e52d43f68d5e6b214a32bcaef6cd69213f7c8c6c1c429c1dbc1cde174e7956b684722d3902d894ec0f20b93c36c0c7af1cd78d89f4314da03e11091a9ed8f62a053f9f4f481dcea349f4d152a2ae06847a509b114bf592cca53111935e7b4fbcfff0b555aa937b3537c7a9053b687bddd037d594d504c30f20879ec01263b4b94486bf1217e55919e7fd692c95e49b375afe35e4b4f21165c0c816ac85793ed5ea94877289cfb4f005a9a27848af7d0f50772e99654f35cbb0196ebd5e800707a579aacdd0816c19da40da94d97dd3ac5c58831e0b1b", 0xed}], 0x1, &(0x7f0000000840)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @private=0xa010102}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x6}}, @ip_retopts={{0x58, 0x0, 0x7, {[@noop, @timestamp_prespec={0x44, 0x44, 0x9e, 0x3, 0xf, [{@broadcast, 0x6397}, {@multicast1, 0x100}, {@remote, 0x1f}, {@multicast1, 0x3}, {@private=0xa010102, 0x9}, {@local, 0x4}, {@rand_addr=0x64010102}, {@multicast1, 0x10001}]}]}}}, @ip_retopts={{0xb4, 0x0, 0x7, {[@ssrr={0x89, 0x7, 0x93, [@local]}, @rr={0x7, 0xf, 0x54, [@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @rr={0x7, 0x1f, 0x9f, [@multicast2, @empty, @local, @dev={0xac, 0x14, 0x14, 0xf}, @multicast2, @empty, @local]}, @lsrr={0x83, 0x13, 0x8f, [@local, @local, @initdev={0xac, 0x1e, 0x0, 0x0}, @empty]}, @timestamp_prespec={0x44, 0xc, 0xdc, 0x3, 0x6, [{@loopback, 0x9}]}, @noop, @lsrr={0x83, 0x13, 0x91, [@multicast2, @multicast1, @multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @timestamp_prespec={0x44, 0x24, 0xcf, 0x3, 0xf, [{@dev={0xac, 0x14, 0x14, 0x44}, 0x7ff}, {@multicast1, 0x6}, {@empty, 0x7fff}, {@empty}]}, @rr={0x7, 0xb, 0x73, [@empty, @remote]}, @lsrr={0x83, 0xb, 0x5d, [@broadcast, @empty]}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @rand_addr=0x64010100}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x36}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x4}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xd9e4}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xff}}], 0x1c8}}, {{&(0x7f0000000a40)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000001040)=[{&(0x7f0000000a80)="0d0dcff2ede1f0c7e10174fd98f7250742a3edefede1cf566851c228fcdfa20faaeea917debeaa7de40da7f24362f0eb2b1437e45f29dcf290099377ff51281f033e2cbfaa9223e4b8edc0d6eaead6b6840e29ecd21a1a4da13f280c3a1d4f71e466749c448b587e269873fcc410513fbc1d897e7edccfb1f14a2c50beb08d567a2bcdc29d6a09f60de1263014e7c34364ee7ba0a02b5c98fed3163448c0747f10fedd2f881b4fd0dd87c66fa517c9f5c5d56061e72b2dff6bb3802a1dfcf24bff5dfb14881bbc089fc2b50fc919b4fbff885adb93fb5e2c69af31fc6404ce7d0b557b2988", 0xe5}, {&(0x7f0000000b80)="e9b071c7c9a3de3095fd870c6f88657abe0e8595c39c9ec14f338c552a6224cedd0bba0df16171693f2efea77bae1fb14627f759da97ccf581c338bf34072b88426d4f355f9100dd1357221f0f08773245659b3fcac6181a38dcc9eae3a1ff5aa6aeafd52744d39b8c7ec272b17be23e2b738f2a9e850c2e71b64d14eebf602c943dcfeb6bacaa81fe1e2de3cc6bb9e1b3eaa2d3151b505756e7407c99a9bd", 0x9f}, {&(0x7f0000000c40)="c0894791138d7130bac10d8bf8f277447cc9e9fcc888777f6ff20de74821716ffce88e27d835c29aaf0b0db685e95325f62c2d6a9eb0b7994e01c81c3fa8f4e6de5bb3af66fd90233953bbcb6e59a810c484edb364bc7836fcf0538fc3d74468133c7ed1af0b92243111ff1a9c04d1d1e3ffc10a77aee7546c6a8af2e5c984ba911b38d8d04ba4f5fe49912bfa400a420704407f481e83402d2087d46b728ac06df00c0065cf0e1cff40d7ffcb800176e8789b8385f3210552e408ca4f5b44199490f2ffd74e314ad65322f8c224edfc077d4a2129e1a85c71af54", 0xdb}, {&(0x7f0000000d40)="40a0702822c48d4fd25ea53bf6be16c97d5765ccca0ebb5570a8350ba276e89dee5adce53605067c6c8dcc9fa5759b4ec50052c0db6fb117cc9eef65543170b1df381b66b4bfb24c96a06c410c2835e960997b3706dd99bd9c3636f4976534ab82c722ba3d7fa95bce4118cddd97cd30f321379d0c4005e1295ee6d7bec5c17c3bce40d96bb0f7c8abf3d79d1caf28c1aa5b9c5cfdf351bf097054ba2c4fea7a8c974089178b003c8447b65496b8f2507d04e5ae172b24cfa8a00a87644d349a03bf51d1", 0xc4}, {&(0x7f0000000e40)="47a7de1bc01ce500d421bbbdd1f4da7d70258a4688d43f9fb531723eb11b79b31af1a911c26d6d450d6ac9ae582c91c12781bd9f01b546c7a02fa809f8dfbb8a6910a703ed5d73538aec37f94abfefba0e130a1dd94222465836cd8cc55ecbebcfad93c8451319a92e028a99a7ac4f203f583578af40a4d042fc", 0x7a}, {&(0x7f0000000ec0)="04af0a3d968f11a0e137709b246f63baecc0ee2402e4b45a016d54c9263085e7e3b15f98dbc91a035f5047e796249b37d68dd600430ebeb1779b543a0bb3ab7e2e20ce7711e41ff463b7b739c1b7972ad533396e471ae6e48564d19931a7442a83d629145ab87c6171b2383ea082c36df3b63bb8d6d3487e70", 0x79}, {&(0x7f0000000f40)="375b60985e7e29b4f3e2f4c552d3a7dcaac8443e8582b1f37ea3cf6e50e0bd453d35f83ba3a4e61095579b45a2714470861472ffbc93289b6f5d149cb55237c9c7fbe5e731fcdc651d8007312db087d1e237ad4a7827da0ea93ec88bc1c9e5dd4a5928064a25bec82b134bf5d90da247cf1f452848e3be0dd4ff78d0106375ed47971a8ca6849d51892f889aa803c9be3e04f3209a2e91b399083e664124fbb03b9597867e7910c082a81faa191836d2218cfd4ff59f06d04011d5bc7a48ee3542730ad13ddd0a428e0fad632713e91a3b5e7486ede0379a1600497325d3699772dd1e4be98880", 0xe7}], 0x7, &(0x7f00000010c0)=[@ip_retopts={{0x38, 0x0, 0x7, {[@timestamp_addr={0x44, 0x1c, 0xb7, 0x1, 0x1, [{@empty, 0x80000001}, {@rand_addr=0x64010101, 0x40}, {@multicast2, 0x4}]}, @timestamp_prespec={0x44, 0xc, 0xe, 0x3, 0x0, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0x71}]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x5}}, @ip_ttl={{0x14, 0x0, 0x2, 0x7ff}}, @ip_retopts={{0x1c, 0x0, 0x7, {[@rr={0x7, 0xb, 0x7, [@broadcast, @private=0xa010101]}]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x40}}], 0xa0}}, {{0x0, 0x0, &(0x7f00000021c0)=[{&(0x7f0000001180)="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", 0x1000}, {&(0x7f0000002180)="e28c60b09c", 0x5}], 0x2, &(0x7f0000002200)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x7aa0}}, @ip_ttl={{0x14, 0x0, 0x2, 0x2cf}}], 0x30}}, {{&(0x7f0000002240)={0x2, 0x4e22, @empty}, 0x10, &(0x7f00000022c0)=[{&(0x7f0000002280)="3b4f5cf21c9da7bc86a2a6238572309870518beeaf0fe02a5533eeb78b3acefe1e0b35eb1568", 0x26}], 0x1, &(0x7f0000002300)=[@ip_retopts={{0x78, 0x0, 0x7, {[@cipso={0x86, 0x3e, 0x0, [{0x2, 0x12, "f3ee0a17a1ef3c4621c35f62f0d11800"}, {0x1, 0x3, "d5"}, {0x1, 0x9, "219d3fb79c1b37"}, {0x1, 0xb, "b5ecb67192560977aa"}, {0x7, 0xb, "1f636da7d331ad2713"}, {0x5, 0x4, "a673"}]}, @lsrr={0x83, 0x1b, 0xc7, [@broadcast, @rand_addr=0x64010102, @rand_addr=0x64010101, @multicast2, @local, @loopback]}, @timestamp_addr={0x44, 0xc, 0x58, 0x1, 0x0, [{@rand_addr=0x64010101, 0x1f}]}]}}}, @ip_retopts={{0x120, 0x0, 0x7, {[@lsrr={0x83, 0x13, 0xc, [@empty, @private=0xa010102, @private=0xa010101, @dev={0xac, 0x14, 0x14, 0x3c}]}, @timestamp={0x44, 0x24, 0x1c, 0x0, 0x5, [0x84, 0x0, 0x54cd, 0x375c, 0x7, 0xfffffffb, 0x9, 0x6]}, @timestamp_prespec={0x44, 0x14, 0x66, 0x3, 0x4, [{@local, 0x1f}, {@multicast2, 0x5}]}, @end, @timestamp={0x44, 0x14, 0x11, 0x0, 0x8, [0x1, 0xa762, 0x1, 0x1]}, @cipso={0x86, 0x10, 0x2, [{0x6, 0xa, "e886d414a7e6a052"}]}, @rr={0x7, 0x27, 0xe4, [@remote, @private=0xa010100, @multicast2, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @multicast2, @broadcast]}, @ssrr={0x89, 0x2b, 0xe7, [@local, @dev={0xac, 0x14, 0x14, 0x3b}, @rand_addr=0x64010100, @multicast1, @local, @private=0xa010102, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @timestamp_addr={0x44, 0x4c, 0x8d, 0x1, 0x3, [{@multicast1, 0x8a8}, {@empty, 0x6}, {@multicast1, 0x80000001}, {@broadcast, 0x6}, {@loopback, 0x200}, {@rand_addr=0x64010100, 0xafb}, {@broadcast, 0x7}, {@multicast1, 0x3}, {@private=0xa010101, 0x1f}]}]}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xfb}}], 0x1b0}}, {{&(0x7f00000024c0)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10, &(0x7f0000002700)=[{&(0x7f0000002500)="2b83809a3515e58b19cff0dce9d7ef1446a77169847ef0433b0ed6e68f16", 0x1e}, {&(0x7f0000002540)="3fe4f97c9c45bdfec91f76e1aca892f16a7366c07c0e914d535ada421950ddadb3b02dcacad11294911a29e585ef4a0f9bc06e0f560d8aea8a9747ae4af4ec759753ff45b4dc27ea5732c36fdb5d980c056347de5172b7bd3e10453833a8d923b7edd95e59c6d6496d183ad0fdb6", 0x6e}, {&(0x7f00000025c0)="9e2709050baad9929b512283cd68cebb2a3558ba9b4a7651485fcb855b68857711e6882601026190be7be0932063b2d256", 0x31}, {&(0x7f0000002600)="f83c9c15d166c9a24f5c56296b81dc129df0a1be42c34e8f7e63c4ca978ce9d4544876028d96aa5b2cd7cbbb6d3b2ecdfda5d5eff8d5a7cfdd1b52807188b0a3da8875de815c7dd72355beea66c877aa8f4a6c2f9686305f", 0x58}, {&(0x7f0000002680)="c0342fd2418d648de90504438b612f2cefdb8e546ed851d8cee6a94854deadd2ac3b86f4df61581f808ee9ed9939ddedb69a2b1348797ac7221efffc5b24da34d6791cd8e06083f07f8fbe2586d9097b3a2638b9c9e5a7285503f3559affe28093d978efc5f2c5d8ffe46b73a70731966276a00980b212cfaef2", 0x7a}], 0x5, &(0x7f0000002780)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x7}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xff}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x2}}, @ip_ttl={{0x14, 0x0, 0x2, 0x1}}], 0x60}}, {{&(0x7f0000002800)={0x2, 0x4e24, @private=0xa010100}, 0x10, &(0x7f00000029c0)=[{&(0x7f0000002840)="f1dc3bb22760ced9e155696acf013d87b882617585d2d4d36adae567257d13bc4c6d619f5277d4f64c729d0ba83b8bbd4ab08637c2971fe2deded405338b600de2042a832af35d16e469b3d5d3f34f077028223f73df12aecfddf67336f9200586c45c226f5e7b7802253a5a1fd5", 0x6e}, {&(0x7f00000028c0)="0201a0a6693a32230ddbd6b98dd33b7764d251cd1b73748d3a7acbb1ab0c24d100901a59b765616d50cf40f9d3924ab7fe07d7eb6f6a81a540fd9bc9239c92c6661ed4b36d47485f34a2d5ff86e37148cce5a0fe2cf04df4fa9af4fe563f1833da2784c484b4e54790416ada9347a3ead8d8c1299403ecf438f45f73f582add91e04d489bf8d14cc83e1bde8b106a0af8546dd7cbbe6c914dc86590a2882687f36156f5b018385c7bbb3c331a64aaba0f2535e2b1533057292e4ea73cf57a5589d90e46dbb46902081cb58a6f2b1dd06a97b0c922a1d96f3c566fb0735ecf0cc5ee5bea4", 0xe4}], 0x2}}], 0x8, 0x26040014) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) [ 2408.511033] Call Trace: [ 2408.511914] dump_stack+0x107/0x167 [ 2408.512879] should_fail.cold+0x5/0xa [ 2408.513730] ? __pmd_alloc+0x94/0x630 [ 2408.514559] should_failslab+0x5/0x20 [ 2408.515391] kmem_cache_alloc+0x5b/0x310 [ 2408.516295] __pmd_alloc+0x94/0x630 [ 2408.517108] copy_page_range+0x2bd0/0x3800 [ 2408.518028] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 06:04:24 executing program 6: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x9, 0xffffffffffffffff, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) 06:04:24 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 56) 06:04:24 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xffffff7f00000000) 06:04:24 executing program 2: fork() (fail_nth: 66) 06:04:24 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) shmctl$SHM_STAT_ANY(0x0, 0xf, &(0x7f0000000000)=""/185) r1 = shmget$private(0x0, 0x3000, 0x4, &(0x7f0000ffa000/0x3000)=nil) shmctl$IPC_INFO(r1, 0x3, &(0x7f00000000c0)=""/62) shmctl$SHM_UNLOCK(0xffffffffffffffff, 0xc) shmat(0x0, &(0x7f0000ffd000/0x1000)=nil, 0x4000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) open_tree(r2, &(0x7f0000000040)='./file0\x00', 0x89801) syz_io_uring_setup(0x5e2e, &(0x7f0000000080)={0x0, 0xafbb, 0x8, 0x0, 0x16c, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000140), &(0x7f0000000180)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'macvtap0\x00'}) [ 2408.519174] ? lock_chain_count+0x20/0x20 [ 2408.519201] ? find_held_lock+0x2c/0x110 [ 2408.519227] ? anon_vma_fork+0x462/0x640 [ 2408.519268] ? up_write+0x191/0x550 [ 2408.519289] ? vm_iomap_memory+0x190/0x190 [ 2408.519308] ? downgrade_write+0x3a0/0x3a0 [ 2408.519331] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2408.519354] ? __vma_link_rb+0x540/0x700 [ 2408.519383] copy_process+0x7658/0x78b0 [ 2408.519438] ? __cleanup_sighand+0xb0/0xb0 [ 2408.519469] ? lock_acquire+0x197/0x470 [ 2408.519496] ? find_held_lock+0x2c/0x110 [ 2408.519521] kernel_clone+0xe7/0x980 [ 2408.519543] ? lock_downgrade+0x6d0/0x6d0 [ 2408.519560] ? find_held_lock+0x2c/0x110 [ 2408.519578] ? create_io_thread+0xf0/0xf0 [ 2408.519599] ? ksys_write+0x12d/0x260 [ 2408.519627] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2408.519655] __do_sys_fork+0x8a/0xc0 [ 2408.519674] ? kernel_thread+0xf0/0xf0 [ 2408.519710] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2408.519732] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2408.519749] ? trace_hardirqs_on+0x5b/0x180 [ 2408.519771] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2408.519790] do_syscall_64+0x33/0x40 [ 2408.519810] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2408.519824] RIP: 0033:0x7f22e1959b19 [ 2408.519843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2408.519853] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2408.519874] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2408.519886] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2408.519897] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2408.519908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2408.519920] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2408.561589] FAULT_INJECTION: forcing a failure. [ 2408.561589] name failslab, interval 1, probability 0, space 0, times 0 [ 2408.596008] CPU: 0 PID: 11485 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2408.597516] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2408.599291] Call Trace: [ 2408.599849] dump_stack+0x107/0x167 [ 2408.600650] should_fail.cold+0x5/0xa [ 2408.601494] ? create_object.isra.0+0x3a/0xa30 [ 2408.602469] should_failslab+0x5/0x20 [ 2408.603285] kmem_cache_alloc+0x5b/0x310 [ 2408.604164] ? mark_held_locks+0x9e/0xe0 [ 2408.605041] create_object.isra.0+0x3a/0xa30 [ 2408.606129] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2408.607487] kmem_cache_alloc+0x159/0x310 [ 2408.608611] xas_alloc+0x336/0x440 [ 2408.609584] xas_create+0x34a/0x10d0 [ 2408.610596] ? kernel_text_address+0xf2/0x120 [ 2408.611812] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2408.613232] xas_store+0x8c/0x1c40 [ 2408.614220] __xa_store+0x164/0x2d0 [ 2408.615181] ? xa_delete_node+0x280/0x280 [ 2408.616087] ? trace_hardirqs_on+0x5b/0x180 [ 2408.617018] xa_store+0x31/0x50 [ 2408.617748] __io_uring_add_tctx_node+0x1cf/0x520 [ 2408.618790] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2408.619918] ? alloc_fd+0x2e7/0x670 [ 2408.620716] io_uring_setup+0x1fbb/0x2980 [ 2408.621629] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2408.622727] ? wait_for_completion_io+0x270/0x270 [ 2408.623782] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2408.624905] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2408.626050] do_syscall_64+0x33/0x40 [ 2408.626845] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2408.627938] RIP: 0033:0x7f530d0e5b19 [ 2408.628738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 06:04:24 executing program 6: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r0, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0) open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x89801) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x1}}, './file1\x00'}) dup2(r1, r0) [ 2408.633323] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2408.635544] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2408.637462] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2408.639351] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 06:04:24 executing program 5: creat(&(0x7f00000000c0)='./file0\x00', 0x90) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x771d, 0x0, 0x0, 0x20000154}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000080)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) syz_io_uring_complete(r2) syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) io_uring_enter(r1, 0x6a36, 0xd9c7, 0x1, &(0x7f0000000100)={[0x2]}, 0x8) [ 2408.641258] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2408.643217] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:04:25 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:04:25 executing program 2: fork() (fail_nth: 67) 06:04:25 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0xffffffff00000000) [ 2408.755848] FAULT_INJECTION: forcing a failure. [ 2408.755848] name failslab, interval 1, probability 0, space 0, times 0 [ 2408.757603] CPU: 0 PID: 11502 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2408.758628] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2408.759870] Call Trace: 06:04:25 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x141000, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x8010, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) openat(r0, &(0x7f0000000080)='./file1\x00', 0x0, 0x28) r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) ioctl$F2FS_IOC_GET_PIN_FILE(r2, 0x8004f50e, &(0x7f0000000100)) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) fallocate(r1, 0x22, 0x6ec, 0x8ad) 06:04:25 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2408.760263] dump_stack+0x107/0x167 [ 2408.761039] should_fail.cold+0x5/0xa [ 2408.761638] ? create_object.isra.0+0x3a/0xa30 [ 2408.762319] should_failslab+0x5/0x20 [ 2408.762875] kmem_cache_alloc+0x5b/0x310 [ 2408.763481] create_object.isra.0+0x3a/0xa30 [ 2408.764120] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2408.764873] kmem_cache_alloc+0x159/0x310 [ 2408.765514] __pmd_alloc+0x94/0x630 [ 2408.766054] copy_page_range+0x2bd0/0x3800 [ 2408.766670] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2408.767434] ? lock_chain_count+0x20/0x20 [ 2408.768058] ? find_held_lock+0x2c/0x110 [ 2408.768659] ? anon_vma_fork+0x462/0x640 [ 2408.769281] ? up_write+0x191/0x550 [ 2408.769817] ? vm_iomap_memory+0x190/0x190 [ 2408.770430] ? downgrade_write+0x3a0/0x3a0 [ 2408.771050] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2408.771842] ? __vma_link_rb+0x540/0x700 [ 2408.772439] copy_process+0x7658/0x78b0 [ 2408.773045] ? __cleanup_sighand+0xb0/0xb0 [ 2408.773677] ? lock_acquire+0x197/0x470 [ 2408.774264] ? find_held_lock+0x2c/0x110 [ 2408.774857] kernel_clone+0xe7/0x980 [ 2408.775400] ? lock_downgrade+0x6d0/0x6d0 [ 2408.776005] ? find_held_lock+0x2c/0x110 [ 2408.776601] ? create_io_thread+0xf0/0xf0 [ 2408.777217] ? ksys_write+0x12d/0x260 [ 2408.777784] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2408.778490] __do_sys_fork+0x8a/0xc0 [ 2408.779041] ? kernel_thread+0xf0/0xf0 [ 2408.779618] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2408.780381] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2408.781136] ? trace_hardirqs_on+0x5b/0x180 [ 2408.781771] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2408.782520] do_syscall_64+0x33/0x40 [ 2408.783063] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2408.783811] RIP: 0033:0x7f22e1959b19 [ 2408.784355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2408.787065] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2408.788183] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2408.789230] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2408.790284] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2408.791321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2408.792357] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:04:25 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = open(&(0x7f0000000080)='./file0\x00', 0x416100, 0x8) r3 = dup2(r1, r1) perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x1, 0x40, 0x40, 0xff, 0x0, 0x7, 0x800a0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3ff, 0x0, @perf_config_ext={0x10001, 0x1}, 0x2, 0x6, 0x3, 0x9, 0x101, 0x3, 0x3f, 0x0, 0x100, 0x0, 0x4}, 0x0, 0x0, r3, 0xa) ioctl$LOOP_SET_DIRECT_IO(r2, 0x4c08, 0x5) dup2(r1, r0) 06:04:25 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 57) [ 2408.821775] FAULT_INJECTION: forcing a failure. [ 2408.821775] name failslab, interval 1, probability 0, space 0, times 0 [ 2408.823600] CPU: 0 PID: 11506 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2408.824630] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2408.825887] Call Trace: [ 2408.826298] dump_stack+0x107/0x167 [ 2408.826853] should_fail.cold+0x5/0xa [ 2408.827421] ? xas_alloc+0x336/0x440 [ 2408.827977] should_failslab+0x5/0x20 [ 2408.828564] kmem_cache_alloc+0x5b/0x310 [ 2408.829179] xas_alloc+0x336/0x440 [ 2408.829709] xas_create+0x34a/0x10d0 [ 2408.830266] ? kernel_text_address+0xf2/0x120 [ 2408.830932] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2408.831707] xas_store+0x8c/0x1c40 [ 2408.832241] __xa_store+0x164/0x2d0 [ 2408.832775] ? xa_delete_node+0x280/0x280 [ 2408.833406] ? trace_hardirqs_on+0x5b/0x180 [ 2408.834051] xa_store+0x31/0x50 [ 2408.834546] __io_uring_add_tctx_node+0x1cf/0x520 [ 2408.835249] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2408.836015] ? alloc_fd+0x2e7/0x670 [ 2408.836557] io_uring_setup+0x1fbb/0x2980 [ 2408.837175] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2408.837911] ? wait_for_completion_io+0x270/0x270 [ 2408.838627] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2408.839394] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2408.840145] do_syscall_64+0x33/0x40 [ 2408.840688] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2408.841455] RIP: 0033:0x7f530d0e5b19 [ 2408.841996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2408.844655] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2408.845800] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2408.845809] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2408.845817] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2408.845825] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2408.845833] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:04:40 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000080)}, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x3702}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) 06:04:40 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000b, 0x10, r0, 0x0) syz_io_uring_setup(0x66f0, &(0x7f0000000080)={0x0, 0xe2a1, 0x2d, 0x1, 0x1d1, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1, {0x0, r3}}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READ_FIXED={0x4, 0x4, 0x6000, @fd_index=0x4, 0xffffffff, 0x0, 0xff, 0x1a, 0x1, {0x1, r3}}, 0x81) r4 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x0, 0x0, 0x0, 0x1e1df6f1fb95a72f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) ioctl$FS_IOC_GETVERSION(r4, 0x80087601, &(0x7f0000000240)) 06:04:40 executing program 2: fork() (fail_nth: 68) 06:04:40 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r0, &(0x7f00000005c0)=ANY=[], 0xc1) faccessat2(r0, &(0x7f00000000c0)='./file1\x00', 0x8, 0x1100) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x80010, r0, 0x0) open_tree(r0, &(0x7f0000000040)='./file1\x00', 0x89801) r1 = openat(r0, &(0x7f0000000080)='./file1\x00', 0x541381, 0x41) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r1, 0x0) 06:04:40 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 58) 06:04:40 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:04:40 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:04:40 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000280)={0x0}, &(0x7f00000003c0)=0xc) perf_event_open(&(0x7f0000000340)={0x3, 0x80, 0x4, 0x80, 0x66, 0x8, 0x0, 0x1, 0xe00, 0x6, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000240)}, 0x0, 0x1, 0x7ff, 0x8, 0x9, 0x4, 0x8, 0x0, 0x5918, 0x0, 0x1}, r1, 0xffffffffffffffff, r0, 0x0) r2 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)=0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff8000/0x2000)=nil, 0x2000, 0x3000002, 0x50, r2, 0x8000000) syz_io_uring_submit(r4, r3, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x0, @fd_index=0x8, 0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000080)=""/97, 0x61}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/4096, 0x1000}], 0x3}, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, {0xfff}}, './file0\x00'}) kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, 0xffffffffffffffff, 0x7, r2, &(0x7f0000000200)={r5, r0, 0x3f}) [ 2424.557477] FAULT_INJECTION: forcing a failure. [ 2424.557477] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2424.559146] CPU: 1 PID: 11523 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2424.560094] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2424.561227] Call Trace: [ 2424.561616] dump_stack+0x107/0x167 [ 2424.562126] should_fail.cold+0x5/0xa [ 2424.562654] __alloc_pages_nodemask+0x182/0x600 [ 2424.563295] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 [ 2424.564114] ? find_held_lock+0x2c/0x110 [ 2424.564677] ? __pmd_alloc+0x31d/0x630 [ 2424.565217] ? lock_downgrade+0x6d0/0x6d0 [ 2424.565800] ? do_raw_spin_lock+0x121/0x260 [ 2424.566402] alloc_pages_current+0x187/0x280 [ 2424.567015] pte_alloc_one+0x16/0x1a0 [ 2424.567541] __pte_alloc+0x1d/0x330 [ 2424.568047] copy_page_range+0x1b62/0x3800 [ 2424.568632] ? find_held_lock+0x2c/0x110 [ 2424.569198] ? anon_vma_fork+0x462/0x640 [ 2424.569781] ? up_write+0x191/0x550 [ 2424.570289] ? vm_iomap_memory+0x190/0x190 [ 2424.570871] ? downgrade_write+0x3a0/0x3a0 [ 2424.571455] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2424.572196] ? __vma_link_rb+0x540/0x700 [ 2424.572768] copy_process+0x7658/0x78b0 [ 2424.573350] ? __cleanup_sighand+0xb0/0xb0 [ 2424.573938] ? lock_acquire+0x197/0x470 [ 2424.574486] ? find_held_lock+0x2c/0x110 [ 2424.575051] kernel_clone+0xe7/0x980 [ 2424.575560] ? lock_downgrade+0x6d0/0x6d0 [ 2424.576139] ? find_held_lock+0x2c/0x110 [ 2424.576698] ? create_io_thread+0xf0/0xf0 [ 2424.577282] ? ksys_write+0x12d/0x260 [ 2424.577811] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2424.578485] __do_sys_fork+0x8a/0xc0 [ 2424.579008] ? kernel_thread+0xf0/0xf0 [ 2424.579555] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2424.580282] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2424.580980] ? trace_hardirqs_on+0x5b/0x180 [ 2424.581581] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2424.582280] do_syscall_64+0x33/0x40 [ 2424.582790] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2424.583491] RIP: 0033:0x7f22e1959b19 [ 2424.584001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2424.586512] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2424.587549] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2424.588519] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2424.589507] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2424.590493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2424.591480] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2424.619208] FAULT_INJECTION: forcing a failure. [ 2424.619208] name failslab, interval 1, probability 0, space 0, times 0 [ 2424.621886] CPU: 0 PID: 11533 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2424.623457] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2424.625355] Call Trace: [ 2424.625960] dump_stack+0x107/0x167 [ 2424.626794] should_fail.cold+0x5/0xa [ 2424.627660] ? xas_alloc+0x336/0x440 [ 2424.628508] should_failslab+0x5/0x20 [ 2424.629378] kmem_cache_alloc+0x5b/0x310 [ 2424.630304] xas_alloc+0x336/0x440 [ 2424.631112] xas_create+0x34a/0x10d0 [ 2424.631966] ? kernel_text_address+0xf2/0x120 [ 2424.632980] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2424.634172] xas_store+0x8c/0x1c40 [ 2424.634990] __xa_store+0x164/0x2d0 [ 2424.635817] ? xa_delete_node+0x280/0x280 [ 2424.636766] ? trace_hardirqs_on+0x5b/0x180 [ 2424.637757] xa_store+0x31/0x50 [ 2424.638516] __io_uring_add_tctx_node+0x1cf/0x520 [ 2424.639612] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2424.640794] ? alloc_fd+0x2e7/0x670 [ 2424.641636] io_uring_setup+0x1fbb/0x2980 [ 2424.642591] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2424.643734] ? wait_for_completion_io+0x270/0x270 [ 2424.644854] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2424.646046] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2424.647219] do_syscall_64+0x33/0x40 [ 2424.648060] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2424.649218] RIP: 0033:0x7f530d0e5b19 [ 2424.650072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2424.654232] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2424.655957] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2424.657563] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2424.659160] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2424.660764] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2424.662374] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:04:54 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2438.366093] FAULT_INJECTION: forcing a failure. [ 2438.366093] name failslab, interval 1, probability 0, space 0, times 0 [ 2438.368907] CPU: 1 PID: 11545 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2438.370581] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2438.372574] Call Trace: [ 2438.373226] dump_stack+0x107/0x167 [ 2438.374118] should_fail.cold+0x5/0xa [ 2438.375050] ? ptlock_alloc+0x1d/0x70 [ 2438.375951] should_failslab+0x5/0x20 [ 2438.376866] kmem_cache_alloc+0x5b/0x310 [ 2438.377861] ptlock_alloc+0x1d/0x70 [ 2438.378729] pte_alloc_one+0x68/0x1a0 06:04:54 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 59) 06:04:54 executing program 2: fork() (fail_nth: 69) 06:04:54 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r3, 0x10, r1, 0x8) perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0x80, 0x4, 0x9, 0x8, 0x0, 0x10000, 0xc0241, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x5, 0x4, @perf_bp={&(0x7f00000000c0), 0x5}, 0x426a0, 0x7, 0x7, 0x7, 0x4f, 0x8000, 0x7f, 0x0, 0x81, 0x0, 0x6}, r3, 0x4, r0, 0x3) r4 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) syz_io_uring_submit(r5, 0x0, &(0x7f0000000080)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3}, 0x7) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000004, 0x4010, r4, 0x0) 06:04:54 executing program 6: ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f0000000080)={0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) 06:04:54 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) io_uring_enter(r0, 0x7e85, 0xad62, 0x0, &(0x7f0000000000), 0x8) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 06:04:54 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:04:54 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000724000/0x2000)=nil, 0x2000, 0x1000004, 0x30, r0, 0x2000) openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) readv(r0, &(0x7f0000001300)=[{&(0x7f0000000080)=""/131, 0x83}, {&(0x7f0000000140)=""/4096, 0x1000}, {&(0x7f0000001140)=""/194, 0xc2}, {&(0x7f0000001240)=""/154, 0x9a}], 0x4) [ 2438.379642] __pte_alloc+0x1d/0x330 [ 2438.380735] copy_page_range+0x1b62/0x3800 [ 2438.381797] ? find_held_lock+0x2c/0x110 [ 2438.382769] ? anon_vma_fork+0x462/0x640 [ 2438.383754] ? up_write+0x191/0x550 [ 2438.384641] ? vm_iomap_memory+0x190/0x190 [ 2438.385695] ? downgrade_write+0x3a0/0x3a0 [ 2438.386733] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2438.388043] ? __vma_link_rb+0x540/0x700 [ 2438.389020] copy_process+0x7658/0x78b0 [ 2438.390030] ? __cleanup_sighand+0xb0/0xb0 [ 2438.391044] ? lock_acquire+0x197/0x470 [ 2438.391621] FAULT_INJECTION: forcing a failure. [ 2438.391621] name failslab, interval 1, probability 0, space 0, times 0 [ 2438.391999] ? find_held_lock+0x2c/0x110 [ 2438.394419] kernel_clone+0xe7/0x980 [ 2438.395291] ? lock_downgrade+0x6d0/0x6d0 [ 2438.396279] ? find_held_lock+0x2c/0x110 [ 2438.397225] ? create_io_thread+0xf0/0xf0 [ 2438.398221] ? ksys_write+0x12d/0x260 [ 2438.399120] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2438.400251] __do_sys_fork+0x8a/0xc0 [ 2438.401114] ? kernel_thread+0xf0/0xf0 [ 2438.402040] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2438.403247] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2438.404434] ? trace_hardirqs_on+0x5b/0x180 [ 2438.405438] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2438.406624] do_syscall_64+0x33/0x40 [ 2438.407482] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2438.408662] RIP: 0033:0x7f22e1959b19 [ 2438.409530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2438.413760] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2438.415509] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2438.417148] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2438.418805] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2438.420444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2438.422089] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2438.423756] CPU: 0 PID: 11550 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2438.424898] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2438.426258] Call Trace: [ 2438.426688] dump_stack+0x107/0x167 [ 2438.427278] should_fail.cold+0x5/0xa [ 2438.427898] ? xas_alloc+0x336/0x440 [ 2438.428498] should_failslab+0x5/0x20 [ 2438.429124] kmem_cache_alloc+0x5b/0x310 [ 2438.429787] xas_alloc+0x336/0x440 [ 2438.430359] xas_create+0x34a/0x10d0 [ 2438.430971] ? kernel_text_address+0xf2/0x120 [ 2438.431694] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2438.432538] xas_store+0x8c/0x1c40 [ 2438.433129] __xa_store+0x164/0x2d0 [ 2438.433725] ? xa_delete_node+0x280/0x280 [ 2438.434396] ? trace_hardirqs_on+0x5b/0x180 [ 2438.435101] xa_store+0x31/0x50 [ 2438.435638] __io_uring_add_tctx_node+0x1cf/0x520 [ 2438.436403] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2438.437239] ? alloc_fd+0x2e7/0x670 [ 2438.437854] io_uring_setup+0x1fbb/0x2980 [ 2438.438531] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2438.439348] ? wait_for_completion_io+0x270/0x270 [ 2438.440149] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2438.440991] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2438.441841] do_syscall_64+0x33/0x40 [ 2438.442434] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2438.443272] RIP: 0033:0x7f530d0e5b19 [ 2438.443867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2438.446874] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2438.448098] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2438.449235] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 [ 2438.450405] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2438.451547] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 [ 2438.452693] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:04:54 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:04:54 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r0, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0) open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x89801) r1 = openat(r0, &(0x7f0000000000)='./file1\x00', 0x4800c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r1, 0x0) fcntl$setstatus(r1, 0x4, 0x0) 06:04:54 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 60) 06:04:54 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:04:54 executing program 5: ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000500)={0x0, 0x9, 0x0, 0xff, 0x7, [{0x5, 0xffffffff80000001, 0xfffffffffffffffd, '\x00', 0x408}, {0x200, 0x1000, 0x0, '\x00', 0x1805}, {0x6, 0x106, 0x2, '\x00', 0x284}, {0x800, 0x80000001, 0x1ff, '\x00', 0x68d}, {0x4, 0x3, 0xfffffffffffffffd, '\x00', 0x4}, {0x9, 0x8, 0x4, '\x00', 0x80}, {0xa, 0x1, 0x800, '\x00', 0x1001}]}) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$sg(&(0x7f0000000080), 0x616d, 0x101080) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) [ 2438.617352] FAULT_INJECTION: forcing a failure. [ 2438.617352] name failslab, interval 1, probability 0, space 0, times 0 [ 2438.619992] CPU: 1 PID: 11572 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2438.621531] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2438.623359] Call Trace: [ 2438.623965] dump_stack+0x107/0x167 [ 2438.624762] should_fail.cold+0x5/0xa [ 2438.625623] ? ___slab_alloc+0x155/0x700 [ 2438.626522] ? create_object.isra.0+0x3a/0xa30 06:04:54 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)=0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0xc, 0x110, r0, 0x8000000) r2 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) r3 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000080)='\x00') syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r6, r1, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x7, 0x0, 0x0, 0x0, 0x23456}, 0x8) [ 2438.627525] should_failslab+0x5/0x20 [ 2438.628506] kmem_cache_alloc+0x5b/0x310 [ 2438.629429] create_object.isra.0+0x3a/0xa30 [ 2438.630402] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2438.631523] kmem_cache_alloc+0x159/0x310 [ 2438.632452] xas_alloc+0x336/0x440 [ 2438.633243] xas_create+0x34a/0x10d0 [ 2438.634091] ? kernel_text_address+0xf2/0x120 [ 2438.635080] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2438.636244] xas_store+0x8c/0x1c40 [ 2438.637047] __xa_store+0x164/0x2d0 [ 2438.637880] ? xa_delete_node+0x280/0x280 [ 2438.638798] ? trace_hardirqs_on+0x5b/0x180 [ 2438.639750] xa_store+0x31/0x50 [ 2438.640488] __io_uring_add_tctx_node+0x1cf/0x520 [ 2438.641564] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2438.642714] ? alloc_fd+0x2e7/0x670 [ 2438.643526] io_uring_setup+0x1fbb/0x2980 [ 2438.644442] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2438.645575] ? wait_for_completion_io+0x270/0x270 [ 2438.646665] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2438.647818] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2438.648977] do_syscall_64+0x33/0x40 [ 2438.649808] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2438.650947] RIP: 0033:0x7f530d0e5b19 [ 2438.651758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2438.655837] RSP: 002b:00007f530a65b108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2438.657535] RAX: ffffffffffffffda RBX: 00007f530d1f8f60 RCX: 00007f530d0e5b19 [ 2438.659115] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000007bb2 06:04:55 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2438.660673] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 2438.662441] R10: 00000000200004c0 R11: 0000000000000202 R12: 0000000020000140 06:04:55 executing program 2: fork() (fail_nth: 70) [ 2438.663989] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2438.676330] FAULT_INJECTION: forcing a failure. [ 2438.676330] name failslab, interval 1, probability 0, space 0, times 0 [ 2438.677867] CPU: 0 PID: 11578 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2438.678718] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2438.679746] Call Trace: [ 2438.680083] dump_stack+0x107/0x167 [ 2438.680549] should_fail.cold+0x5/0xa [ 2438.681035] ? create_object.isra.0+0x3a/0xa30 [ 2438.681611] should_failslab+0x5/0x20 [ 2438.682083] kmem_cache_alloc+0x5b/0x310 [ 2438.682590] create_object.isra.0+0x3a/0xa30 [ 2438.683151] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2438.683790] kmem_cache_alloc+0x159/0x310 [ 2438.684309] __pmd_alloc+0x94/0x630 [ 2438.684766] copy_page_range+0x2bd0/0x3800 [ 2438.685289] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2438.685942] ? lock_chain_count+0x20/0x20 [ 2438.686459] ? find_held_lock+0x2c/0x110 [ 2438.686969] ? anon_vma_fork+0x462/0x640 [ 2438.687484] ? up_write+0x191/0x550 [ 2438.687938] ? vm_iomap_memory+0x190/0x190 [ 2438.688438] ? downgrade_write+0x3a0/0x3a0 [ 2438.688965] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2438.689612] ? __vma_link_rb+0x540/0x700 [ 2438.690122] copy_process+0x7658/0x78b0 [ 2438.690643] ? __cleanup_sighand+0xb0/0xb0 [ 2438.691169] ? lock_acquire+0x197/0x470 [ 2438.691672] ? find_held_lock+0x2c/0x110 [ 2438.692153] kernel_clone+0xe7/0x980 [ 2438.692628] ? lock_downgrade+0x6d0/0x6d0 [ 2438.693113] ? find_held_lock+0x2c/0x110 [ 2438.693623] ? create_io_thread+0xf0/0xf0 [ 2438.694109] ? ksys_write+0x12d/0x260 [ 2438.694581] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2438.695180] __do_sys_fork+0x8a/0xc0 [ 2438.695647] ? kernel_thread+0xf0/0xf0 [ 2438.696154] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2438.696798] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2438.697451] ? trace_hardirqs_on+0x5b/0x180 [ 2438.697965] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2438.698610] do_syscall_64+0x33/0x40 [ 2438.699074] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2438.699709] RIP: 0033:0x7f22e1959b19 [ 2438.700179] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2438.702425] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2438.703310] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2438.704176] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2438.705014] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2438.705885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2438.706718] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:04:55 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:04:55 executing program 4: r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x6) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0) ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, &(0x7f0000000100)={0x1, 0x7fffffff, 0x6}) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x101800, 0x0) sendfile(0xffffffffffffffff, r1, &(0x7f00000000c0)=0x3, 0x100) r3 = syz_open_dev$mouse(&(0x7f0000000140), 0x5, 0x101000) setsockopt$inet6_IPV6_RTHDR(r3, 0x29, 0x39, &(0x7f0000000180)={0x9e, 0x4, 0x1, 0x7, 0x0, [@rand_addr=' \x01\x00', @empty]}, 0x28) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r5 = inotify_init1(0x80000) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r2, 0x40182103, &(0x7f0000000200)={0x0, 0x1, r5, 0x893b, 0x80000}) write$binfmt_script(r4, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r4, 0x0) r6 = open_tree(r4, &(0x7f0000000040)='./file0\x00', 0x89801) ioctl$FS_IOC_FSSETXATTR(r6, 0x401c5820, &(0x7f00000001c0)={0x0, 0x5, 0x102, 0x4, 0x8000}) 06:04:55 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) openat$cgroup_ro(r1, &(0x7f0000000080)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000000100)={{0x1, 0x1, 0x18, r1, {0xfff}}, './file0\x00'}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r3, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r3, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r4, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r4, 0x0) open_tree(r4, &(0x7f0000000040)='./file0\x00', 0x89801) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r5, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r5, 0x0) open_tree(r5, &(0x7f0000000040)='./file0\x00', 0x89801) open_tree(r5, &(0x7f0000000180)='./file0\x00', 0x89801) ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r3) dup2(r1, r0) 06:05:08 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2452.052064] FAULT_INJECTION: forcing a failure. [ 2452.052064] name failslab, interval 1, probability 0, space 0, times 0 [ 2452.054710] CPU: 1 PID: 11597 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2452.056237] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2452.058082] Call Trace: [ 2452.058673] dump_stack+0x107/0x167 [ 2452.059639] should_fail.cold+0x5/0xa 06:05:08 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 61) 06:05:08 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r0, &(0x7f00000017c0)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001780)={&(0x7f0000001700)={0x50, 0x0, 0x2, 0x70bd27, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x5, 0x3e}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x32}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x5}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x33}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0xb}]}, 0x50}, 0x1, 0x0, 0x0, 0x10}, 0x40000) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000050000000c00038004000400040003800c00018008000100", @ANYRES32=r2, @ANYBLOB="1f152c1c92196813fbffc4a561192cf4a1978ad4d8c3b92e6ebff8b08009206d15"], 0x2c}}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r3, 0xc0189378, &(0x7f0000000080)=ANY=[@ANYBLOB="010001000100000018ba7b00", @ANYRES32=r3, @ANYRES32=r5, @ANYBLOB="00b80500000000005d5c032e"]) bind$packet(r7, &(0x7f0000000180)={0x11, 0x15, r6, 0x1, 0x9}, 0x14) sendmsg$ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000100)={&(0x7f0000001880)={0x1170, r1, 0x200, 0x70bd29, 0x25dfdbfe, {}, [@ETHTOOL_A_DEBUG_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_DEBUG_HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x10cc, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0xb8, 0x3, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x800}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\'\\-:\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '.-\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x101}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '(**)@p}+!\'\x00'}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_MASK={0x1004, 0x5, "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"}, @ETHTOOL_A_BITSET_BITS={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}]}, 0x1170}, 0x1, 0x0, 0x0, 0x4}, 0x20000010) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmsg$NL80211_CMD_SET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00002cbd7000fddbdf253d00000008000300", @ANYRES32=0x0, @ANYBLOB="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"], 0x60}, 0x1, 0x0, 0x0, 0x80}, 0x4040000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f0000001680)='./file0\x00', 0x8) r8 = syz_io_uring_setup(0x7bf2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000080), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0) 06:05:08 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$inet6(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0xa, 0x4e21, 0xffffffff, @local, 0x3}, 0x1c, &(0x7f0000000100)=[{&(0x7f0000000080)="488fd8e9376f22c95c58d047d1657edd1c9225db5266504681e65802597c5a215681189a77eab5adcba5ac4795084048473c03b7cddad989999d27d88d16a290cee2d9c9b4eb447756f7b1c94c", 0x4d}], 0x1, &(0x7f0000000140)=[@flowinfo={{0x14, 0x29, 0xb, 0xc66a}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x4e}}, @hopopts={{0x28, 0x29, 0x36, {0x2, 0x1, '\x00', [@enc_lim={0x4, 0x1, 0x1}, @pad1, @jumbo={0xc2, 0x4, 0x3f}]}}}], 0x58}, 0x40000) [ 2452.060607] ? vm_area_dup+0x78/0x290 [ 2452.061824] should_failslab+0x5/0x20 [ 2452.062787] kmem_cache_alloc+0x5b/0x310 [ 2452.063816] vm_area_dup+0x78/0x290 [ 2452.064739] ? lock_release+0x680/0x680 [ 2452.065758] ? mark_lock+0xf5/0x2df0 [ 2452.066712] ? lock_chain_count+0x20/0x20 [ 2452.067753] ? mark_lock+0xf5/0x2df0 [ 2452.068701] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2452.070035] ? lock_chain_count+0x20/0x20 [ 2452.071094] ? mark_lock+0xf5/0x2df0 [ 2452.072041] ? vm_area_alloc+0x110/0x110 [ 2452.073077] ? __lock_acquire+0x1657/0x5b00 [ 2452.074198] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2452.075518] ? vmacache_find+0x55/0x2a0 [ 2452.076532] __split_vma+0xa8/0x4e0 [ 2452.077449] __do_munmap+0x365/0x1260 [ 2452.078426] ? arch_get_unmapped_area+0x450/0x450 [ 2452.079642] ? lock_release+0x680/0x680 [ 2452.080655] mmap_region+0x7cc/0x1500 06:05:08 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80ffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:08 executing program 2: fork() (fail_nth: 71) 06:05:08 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0xfffffffd}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x1, @perf_config_ext={0x6, 0x9}, 0x200, 0x0, 0x0, 0x5, 0x100, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e21, 0x4, @remote, 0x1}, 0x1c) r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) r3 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000340)=0x0) perf_event_open(&(0x7f0000000240)={0x5, 0x80, 0x80, 0x1, 0x9b, 0x3, 0x0, 0xfffffffffffffeff, 0x4080, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x9d, 0x4, @perf_config_ext={0xe5, 0x4}, 0x44246, 0x8, 0x69a, 0x3, 0x800, 0x8, 0x5159, 0x0, 0x825, 0x0, 0x3}, r6, 0x1, 0xffffffffffffffff, 0x3) r7 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x294}, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0) syz_io_uring_submit(r10, r9, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1, {0x0, r11}}, 0x0) syz_io_uring_submit(r2, r9, &(0x7f0000000180)=@IORING_OP_WRITE={0x17, 0x2, 0x4007, @fd_index, 0xb7d2, &(0x7f00000000c0)="1f0523f3622fdc8f12ec58cf88ec37910be156514b6e5a993ecd592a6d557075c1c1eb21e66afc9e8c18", 0x2a, 0xa, 0x1, {0x0, r11}}, 0x0) r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) syz_io_uring_submit(r12, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r13 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1, {0x0, r13}}, 0x0) syz_io_uring_submit(r1, r5, &(0x7f0000000080)=@IORING_OP_POLL_REMOVE={0x7, 0x4, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1, {0x0, r13}}, 0x7) 06:05:08 executing program 6: r0 = add_key(&(0x7f0000000140)='trusted\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f0000000240)="8d69e2de849c61d5698bcf96bcabe942b5909dd0f20416ecb71a2d0e7d0aeebef0c07b58f9f5907d87322b6cf72145b050c1af7ad44f78c07d2dfd706ffe9909c1ece19f827decf2e81a9ad35278b25582f75a038741bbfe2165c6e269120e18dc39a12a96f77a22b7863db14e33ae6309151c3efbe8ee8039f2d2fa8722ed2219176a8bf284a8fde76b686b", 0x8c, 0xfffffffffffffffc) request_key(&(0x7f0000000500)='.request_key_auth\x00', &(0x7f0000000480)={'syz', 0x1}, &(0x7f0000000dc0)='\x00\xd4\a@\xb7\xc5\xee\x0fx\x05\xa0\xec&{C\xd7\x1d\xac\xdcbN\xc7\b\x12.Mn\xc3@\xfb\xa4+(\xc4\x9f\xablQ\xa2\xb0\xb4\xab\xd9\xda\x05\xc0F \x1b\xfa\xf1\x90\x19\xa0\\J=\xd5w\x03\x92\x8c\xd4\x98\v.\x8c\x98\xc0$\xa4I\xb4=\xf4\x13\x85F1)E\xb4-X\x06\x84\x1f~\x9c\x88\xff\x89G\xf2\x93\x9c\b}\x0e\xae_R\x7f\xa1\x9e\\5\x93\x135\xed\xdf\x0e\xfb\xb34', r0) add_key$fscrypt_v1(&(0x7f0000000140), &(0x7f0000000180)={'fscrypt:', @desc2}, &(0x7f00000001c0)={0x0, "dcc1d4494e8688196cb17b0e5166a6de974ca50c5c2b841101a1f55f4254255dd69f598d9a5b3248274a1906e933f5163b1c5595fd922e302018ebb7bdbc0570", 0x31}, 0x48, r0) r1 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = accept$inet6(r2, &(0x7f0000000080), &(0x7f0000000100)=0x1c) fcntl$dupfd(r2, 0x406, r3) dup2(r2, r1) [ 2452.081877] do_mmap+0x868/0x1370 [ 2452.082961] vm_mmap_pgoff+0x198/0x1f0 [ 2452.083956] ? randomize_page+0xb0/0xb0 [ 2452.084986] ksys_mmap_pgoff+0x41c/0x560 [ 2452.086041] ? find_mergeable_anon_vma+0x250/0x250 [ 2452.087292] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2452.088483] FAULT_INJECTION: forcing a failure. [ 2452.088483] name failslab, interval 1, probability 0, space 0, times 0 [ 2452.088609] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2452.088637] do_syscall_64+0x33/0x40 [ 2452.088668] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2452.093868] RIP: 0033:0x7f530d0e5b62 [ 2452.094835] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2452.099482] RSP: 002b:00007f530a65b0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2452.101429] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f530d0e5b62 [ 2452.103234] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 2452.105039] RBP: 0000000020ff8000 R08: 0000000000000004 R09: 0000000000000000 [ 2452.106868] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 2452.108684] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2452.110517] CPU: 0 PID: 11603 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2452.111559] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2452.112802] Call Trace: [ 2452.113209] dump_stack+0x107/0x167 [ 2452.113762] should_fail.cold+0x5/0xa [ 2452.114329] ? vm_area_dup+0x78/0x290 [ 2452.114901] should_failslab+0x5/0x20 [ 2452.115467] kmem_cache_alloc+0x5b/0x310 [ 2452.116069] ? lock_downgrade+0x6d0/0x6d0 [ 2452.116688] vm_area_dup+0x78/0x290 [ 2452.117237] ? _cond_resched+0x10/0x30 [ 2452.117825] ? copy_page_range+0x24e9/0x3800 [ 2452.118517] ? vm_area_alloc+0x110/0x110 [ 2452.119127] ? up_write+0x191/0x550 [ 2452.119670] ? vm_iomap_memory+0x190/0x190 [ 2452.120317] ? downgrade_write+0x3a0/0x3a0 [ 2452.120973] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2452.121789] ? __vma_link_rb+0x540/0x700 [ 2452.122401] copy_process+0x298b/0x78b0 [ 2452.123038] ? __cleanup_sighand+0xb0/0xb0 [ 2452.123682] ? lock_acquire+0x197/0x470 [ 2452.124280] ? find_held_lock+0x2c/0x110 [ 2452.124892] kernel_clone+0xe7/0x980 [ 2452.125439] ? lock_downgrade+0x6d0/0x6d0 [ 2452.126064] ? find_held_lock+0x2c/0x110 [ 2452.126659] ? create_io_thread+0xf0/0xf0 [ 2452.127280] ? ksys_write+0x12d/0x260 [ 2452.127846] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2452.128567] __do_sys_fork+0x8a/0xc0 [ 2452.129119] ? kernel_thread+0xf0/0xf0 [ 2452.129736] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2452.130509] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2452.131282] ? trace_hardirqs_on+0x5b/0x180 [ 2452.131930] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2452.132692] do_syscall_64+0x33/0x40 [ 2452.133237] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2452.134010] RIP: 0033:0x7f22e1959b19 [ 2452.134554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2452.137246] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2452.138371] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2452.139422] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2452.140464] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2452.141509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2452.142567] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 06:05:08 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:08 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:08 executing program 2: fork() (fail_nth: 72) 06:05:08 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 62) 06:05:08 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff8000, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2452.292824] FAULT_INJECTION: forcing a failure. [ 2452.292824] name failslab, interval 1, probability 0, space 0, times 0 [ 2452.295949] CPU: 1 PID: 11624 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2452.297727] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2452.299833] Call Trace: [ 2452.300520] dump_stack+0x107/0x167 [ 2452.301282] FAULT_INJECTION: forcing a failure. [ 2452.301282] name failslab, interval 1, probability 0, space 0, times 0 [ 2452.301470] should_fail.cold+0x5/0xa [ 2452.304038] ? create_object.isra.0+0x3a/0xa30 [ 2452.305013] should_failslab+0x5/0x20 [ 2452.305983] kmem_cache_alloc+0x5b/0x310 [ 2452.306928] create_object.isra.0+0x3a/0xa30 [ 2452.307860] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2452.308948] kmem_cache_alloc+0x159/0x310 [ 2452.309847] ? lock_downgrade+0x6d0/0x6d0 [ 2452.310735] vm_area_dup+0x78/0x290 [ 2452.311520] ? _cond_resched+0x10/0x30 [ 2452.312351] ? copy_page_range+0x24e9/0x3800 [ 2452.313338] ? vm_area_alloc+0x110/0x110 [ 2452.314214] ? up_write+0x191/0x550 [ 2452.314989] ? vm_iomap_memory+0x190/0x190 [ 2452.315886] ? downgrade_write+0x3a0/0x3a0 [ 2452.316798] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2452.317958] ? __vma_link_rb+0x540/0x700 [ 2452.318835] copy_process+0x298b/0x78b0 [ 2452.319715] ? __cleanup_sighand+0xb0/0xb0 [ 2452.320637] ? lock_acquire+0x197/0x470 [ 2452.321494] ? find_held_lock+0x2c/0x110 [ 2452.322384] kernel_clone+0xe7/0x980 [ 2452.323186] ? lock_downgrade+0x6d0/0x6d0 [ 2452.324071] ? find_held_lock+0x2c/0x110 [ 2452.324927] ? create_io_thread+0xf0/0xf0 [ 2452.325821] ? ksys_write+0x12d/0x260 [ 2452.326631] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2452.327666] __do_sys_fork+0x8a/0xc0 [ 2452.328453] ? kernel_thread+0xf0/0xf0 [ 2452.329305] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2452.330422] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2452.331507] ? trace_hardirqs_on+0x5b/0x180 [ 2452.332422] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2452.333526] do_syscall_64+0x33/0x40 [ 2452.334337] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2452.335426] RIP: 0033:0x7f22e1959b19 [ 2452.336226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2452.340087] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2452.341701] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2452.343215] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2452.344718] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2452.346240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2452.347751] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2452.349287] CPU: 0 PID: 11626 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2452.350277] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2452.351432] Call Trace: [ 2452.351816] dump_stack+0x107/0x167 [ 2452.352332] should_fail.cold+0x5/0xa [ 2452.352876] ? create_object.isra.0+0x3a/0xa30 [ 2452.353551] should_failslab+0x5/0x20 [ 2452.354090] kmem_cache_alloc+0x5b/0x310 [ 2452.354661] create_object.isra.0+0x3a/0xa30 [ 2452.355273] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2452.355983] kmem_cache_alloc+0x159/0x310 [ 2452.356565] vm_area_dup+0x78/0x290 [ 2452.357076] ? lock_release+0x680/0x680 [ 2452.357639] ? mark_lock+0xf5/0x2df0 [ 2452.358165] ? lock_chain_count+0x20/0x20 [ 2452.358746] ? mark_lock+0xf5/0x2df0 [ 2452.359269] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2452.359998] ? lock_chain_count+0x20/0x20 [ 2452.360583] ? mark_lock+0xf5/0x2df0 [ 2452.361114] ? vm_area_alloc+0x110/0x110 [ 2452.361687] ? __lock_acquire+0x1657/0x5b00 [ 2452.362295] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2452.363021] ? vmacache_find+0x55/0x2a0 [ 2452.363577] __split_vma+0xa8/0x4e0 [ 2452.364084] __do_munmap+0x365/0x1260 [ 2452.364616] ? arch_get_unmapped_area+0x450/0x450 [ 2452.365287] ? lock_release+0x680/0x680 [ 2452.365845] mmap_region+0x7cc/0x1500 [ 2452.366394] do_mmap+0x868/0x1370 [ 2452.366882] vm_mmap_pgoff+0x198/0x1f0 [ 2452.367427] ? randomize_page+0xb0/0xb0 [ 2452.367988] ksys_mmap_pgoff+0x41c/0x560 [ 2452.368552] ? find_mergeable_anon_vma+0x250/0x250 [ 2452.369231] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2452.369970] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2452.370687] do_syscall_64+0x33/0x40 [ 2452.371205] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2452.371922] RIP: 0033:0x7f530d0e5b62 [ 2452.372438] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2452.374996] RSP: 002b:00007f530a65b0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2452.376049] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f530d0e5b62 [ 2452.377041] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 2452.378043] RBP: 0000000020ff8000 R08: 0000000000000004 R09: 0000000000000000 [ 2452.379034] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 2452.380020] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:05:08 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000440)=@IORING_OP_RECVMSG={0xa, 0x3, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=@can, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)=""/217, 0xd9}, {&(0x7f0000000280)=""/248, 0xf8}], 0x2, &(0x7f0000000380)=""/91, 0x5b}, 0x0, 0x10142, 0x0, {0x2, r3}}, 0x8) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r5 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) syz_io_uring_submit(r8, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1, {0x0, r9}}, 0x0) syz_io_uring_submit(r8, r2, &(0x7f0000000540)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, r4, &(0x7f0000000480)={0x8000}, &(0x7f0000000500)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r9}}, 0x4) dup2(r4, r0) 06:05:08 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x267}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)=0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r6, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r6, 0x0) open_tree(r6, &(0x7f0000000040)='./file0\x00', 0x89801) syz_io_uring_submit(r5, r1, &(0x7f0000000080)=@IORING_OP_SEND={0x1a, 0x1, 0x0, r6, 0x0, &(0x7f0000000180)="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", 0xfa, 0x20004014}, 0x5) r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r7, &(0x7f00000005c0)=ANY=[], 0xc1) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r6, 0xc018937d, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r7, {0xfedf}}, './file0\x00'}) r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r9, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r9, 0x0) open_tree(r9, &(0x7f0000000040)='./file0\x00', 0x89801) epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r9, &(0x7f0000000280)={0x10}) 06:05:08 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:08 executing program 1: r0 = syz_io_uring_setup(0x7d04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)) creat(&(0x7f00000000c0)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/locks\x00', 0x0, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/power/image_size', 0x0, 0x0) io_uring_enter(r0, 0x10058ab, 0x0, 0x0, 0x0, 0x0) r4 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ip6_mr_vif\x00') perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r4, 0x8000000) 06:05:08 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:08 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000003, 0x30, r0, 0xd85f2000) r1 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x80}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) 06:05:08 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:08 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) fcntl$dupfd(r1, 0x406, r1) open(&(0x7f0000000080)='./file0\x00', 0x210200, 0x71) dup2(r1, r0) 06:05:08 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:08 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r1, r0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) open_tree(r2, &(0x7f0000000040)='./file0\x00', 0x89801) perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xd3, 0x3, 0x8, 0x3, 0x0, 0x5, 0x50001, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x1400, 0x1, 0xdac, 0x4, 0x3, 0x1, 0xfe80, 0x0, 0x3, 0x0, 0x7}, 0x0, 0x9, r2, 0xb) 06:05:08 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:08 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:08 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r1 = mq_open(&(0x7f0000000080)='%\x00', 0x800, 0x0, &(0x7f00000000c0)={0x40, 0x2, 0x7, 0x4}) fstat(r1, &(0x7f0000000180)) 06:05:23 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 63) 06:05:23 executing program 2: fork() (fail_nth: 73) 06:05:23 executing program 1: syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x4, 0x0, @fd_index, 0x0, 0x0, 0x7, 0x0, 0x1}, 0x6) perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x2400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xfffffeffffffffff, 0xffffffffffffffff, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000080)={0xd0004010}) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) 06:05:23 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000100)='./file1\x00', 0x22) ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r4, 0x10, r2, 0x8) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), r1) perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x4, 0x7, 0x8, 0x5, 0x0, 0x46bf, 0x8000, 0x3, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0xc, 0x2, @perf_config_ext={0x80000001, 0x4}, 0x200, 0x989, 0x1f, 0x4, 0x1fe3, 0xcf, 0x9, 0x0, 0x9, 0x0, 0x7}, r4, 0x7, r1, 0x1) dup2(r1, r0) 06:05:23 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:23 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:23 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffffff, &(0x7f0000000980)='./file2\x00', 0x580, 0x40) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) pipe2(&(0x7f0000000940), 0x80000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) r2 = socket$inet6_udp(0xa, 0x2, 0x0) ftruncate(r2, 0x5) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, &(0x7f0000000040)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000440)={r3, 0x1f, 0x8, 0x1}) r4 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r5, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r6, 0x10, r4, 0x8) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000a40)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f00000009c0)={0x2c0400, 0x0, 0x4}, &(0x7f0000000a00)='./file2\x00', 0x18, 0x0, 0x12345}, 0x10001) r7 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000900), 0x8000, 0x0) perf_event_open(&(0x7f0000000880)={0x0, 0x80, 0x0, 0x3f, 0x7, 0x2, 0x0, 0xfff, 0x10000, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4, @perf_bp={&(0x7f0000000840), 0x1}, 0x1402, 0x7fffffff, 0x8001, 0x3, 0x2, 0x0, 0x1, 0x0, 0x8fd, 0x0, 0x5}, r6, 0xc, r7, 0x4) 06:05:23 executing program 5: perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) mmap$IORING_OFF_SQ_RING(&(0x7f00001ee000/0x2000)=nil, 0x2000, 0x100000e, 0x13, r0, 0x0) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000780), 0x24600, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r4, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r4, 0x0) open_tree(r4, &(0x7f0000000040)='./file0\x00', 0x89801) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r5, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r5, 0x0) open_tree(r5, &(0x7f0000000040)='./file0\x00', 0x89801) io_submit(0x0, 0x6, &(0x7f00000007c0)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x6, 0x4b7, r0, &(0x7f0000000180)="d72a6c00f470f919064064dd09ca61ed83b36d6831cc199838ac69b99425877f0c5c15a6353e6dd7a433a58c4dd912c7be5cf4e9c1ac9b44222be7fb4f1434f3f3f4310c881cb4c037e34d0f45e1678990dd8dce01515e34bb5d893180a94ab882f1f1f2da1e584371116c28e30daa6a01b597e434b3a739c869063d3548d14e4391744c9b2b37803b2e45ff8d28da8d6bafeb0f6c66790911526ce4f7fc026fc44f982022eb932760460ffc151602cbebca9d", 0xb3, 0xfffffffffffeffff, 0x0, 0x0, r3}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x3, 0xcf37, 0xffffffffffffffff, &(0x7f0000000340)="ba90da2ff48e5f6238cfced5f1370a92b9871781df879da5f9c3565de48a6ffab90134d00e3f190cc78f5351d99e1413d3b10281a548b1615f15fd6b8883e4f611ce4e1bd4d12ff3e186d461573d9229b950afe19a283ffd01d4f029909866472b56c379c285518cc40cee58553d930cccb9f934f27543f48e284a67a2cde7245c0801be13618ae4782ce738d83888465bf3772c22ef33ed748eb293209d976ed329e1", 0xa3, 0x0, 0x0, 0x1}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0xb12, 0xffffffffffffffff, &(0x7f0000000440)="d35268c9cfe802c1da0d1423054e6e610f6ba44830cdd2b68bcd68", 0x1b, 0xbdfa000000000000, 0x0, 0x3}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x7f, 0xffffffffffffffff, &(0x7f0000000540)="6870646a31f59494", 0x8, 0x6, 0x0, 0x6, r4}, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x7, 0x1, 0xffffffffffffffff, &(0x7f00000005c0)="62816d61da4c7a930c887bd1", 0xc, 0x8c, 0x0, 0x3}, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x7, 0x1e18, r0, &(0x7f0000000640)="3bd42706d8f420ad606b1a4e4129601d29eb68d125790a9ae973ba2b542163b3accd054a0ec5ad7a70f89dac7657d3ac9c96ff287203c0d68d272662959cfdb058408a5d586acfd1e9eb67eab057179c455306918ae6325fd76a3823d8d2b4d21cfe20a0245950b14ab6517710cde8ef6740b98492731670f465ee2f8ffa41229f6d817575ff13afdd9a07d2d7cdf95e1aa92c3d841b096bf7377ba335b776a4a6acc47cceabb0c8a04a1575b0d8b977c7ca7b0566ae6c113a9d6b011880ed54797e", 0xc2, 0x401, 0x0, 0x5}]) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r6, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r6, 0x0) open_tree(r6, &(0x7f0000000040)='./file0\x00', 0x89801) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f00004b9000/0x4000)=nil, 0x4000, 0x8, 0x40010, r6, 0x8000000) syz_io_uring_submit(r7, r2, &(0x7f0000000080)=@IORING_OP_POLL_REMOVE={0x7, 0x2, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1}, 0xfffffff9) syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_OPENAT={0x12, 0x5, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)='./file0\x00', 0x4, 0x94041, 0x23456}, 0x200) [ 2467.225036] FAULT_INJECTION: forcing a failure. [ 2467.225036] name failslab, interval 1, probability 0, space 0, times 0 [ 2467.227484] CPU: 1 PID: 11676 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2467.228970] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2467.230771] Call Trace: [ 2467.231346] dump_stack+0x107/0x167 [ 2467.232137] should_fail.cold+0x5/0xa [ 2467.232960] ? vm_area_dup+0x78/0x290 [ 2467.233793] should_failslab+0x5/0x20 [ 2467.234616] kmem_cache_alloc+0x5b/0x310 [ 2467.235501] vm_area_dup+0x78/0x290 [ 2467.236295] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 2467.237302] ? lock_downgrade+0x6d0/0x6d0 [ 2467.238203] ? copy_page_range+0x24e9/0x3800 [ 2467.239167] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 2467.240175] ? avc_has_extended_perms+0xf40/0xf40 [ 2467.241224] ? vm_area_alloc+0x110/0x110 [ 2467.242112] ? selinux_vm_enough_memory+0x114/0x180 [ 2467.243081] FAULT_INJECTION: forcing a failure. [ 2467.243081] name failslab, interval 1, probability 0, space 0, times 0 [ 2467.243188] ? selinux_sb_statfs+0x250/0x250 [ 2467.246495] ? percpu_counter_add_batch+0x8b/0x140 [ 2467.247557] ? __vm_enough_memory+0x184/0x360 [ 2467.248517] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 2467.249628] copy_process+0x298b/0x78b0 [ 2467.250509] ? __cleanup_sighand+0xb0/0xb0 [ 2467.251404] ? lock_acquire+0x197/0x470 [ 2467.252246] ? find_held_lock+0x2c/0x110 [ 2467.253106] kernel_clone+0xe7/0x980 [ 2467.253895] ? lock_downgrade+0x6d0/0x6d0 [ 2467.254763] ? find_held_lock+0x2c/0x110 [ 2467.255604] ? create_io_thread+0xf0/0xf0 [ 2467.256464] ? ksys_write+0x12d/0x260 [ 2467.257272] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2467.258302] __do_sys_fork+0x8a/0xc0 [ 2467.259079] ? kernel_thread+0xf0/0xf0 [ 2467.259913] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2467.261013] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2467.262090] ? trace_hardirqs_on+0x5b/0x180 [ 2467.262992] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2467.264071] do_syscall_64+0x33/0x40 [ 2467.264852] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2467.265927] RIP: 0033:0x7f22e1959b19 [ 2467.266704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2467.270545] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2467.272125] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2467.273622] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2467.275113] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2467.276600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2467.278109] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2467.279631] CPU: 0 PID: 11686 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2467.281095] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2467.282819] Call Trace: [ 2467.283383] dump_stack+0x107/0x167 [ 2467.284143] should_fail.cold+0x5/0xa [ 2467.284932] ? anon_vma_clone+0xdc/0x590 [ 2467.285801] should_failslab+0x5/0x20 [ 2467.286605] kmem_cache_alloc+0x5b/0x310 [ 2467.287467] anon_vma_clone+0xdc/0x590 [ 2467.288293] __split_vma+0x17c/0x4e0 [ 2467.289080] __do_munmap+0x365/0x1260 [ 2467.289889] ? arch_get_unmapped_area+0x450/0x450 [ 2467.290889] ? lock_release+0x680/0x680 [ 2467.291717] mmap_region+0x7cc/0x1500 [ 2467.292523] do_mmap+0x868/0x1370 [ 2467.293260] vm_mmap_pgoff+0x198/0x1f0 [ 2467.294087] ? randomize_page+0xb0/0xb0 [ 2467.294935] ksys_mmap_pgoff+0x41c/0x560 [ 2467.295790] ? find_mergeable_anon_vma+0x250/0x250 [ 2467.296815] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2467.297902] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2467.298971] do_syscall_64+0x33/0x40 [ 2467.299741] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2467.300798] RIP: 0033:0x7f530d0e5b62 [ 2467.301563] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 06:05:23 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2467.305355] RSP: 002b:00007f530a65b0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2467.305375] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f530d0e5b62 [ 2467.305387] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 2467.305398] RBP: 0000000020ff8000 R08: 0000000000000004 R09: 0000000000000000 [ 2467.305409] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 2467.305420] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:05:23 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x20, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000080)={0x4, 0x80, 0x5, 0x9, 0xc1, 0x52, 0x0, 0x80, 0x408c0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext={0x8001, 0x4}, 0x2002, 0x7fffffff, 0x1, 0xc, 0x3f, 0x5, 0x2, 0x0, 0xfff, 0x0, 0xb5}, 0x0, 0xd, r1, 0x1) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000240)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="00f0ffffff0f00002e2f66696c653000750f2b16ddfd92bcb46cb0e636550b15a942a070e472123de158e3cc28f81c791796ce77ac0c35f7774b2d513cefad8b5c4171d7409049494d2845d598769e7f128eae082d282f501b4e09312bd881bae118d63f768d58ca784fcbd2d7ecbafb989f9b337e6313401f1a1ca5d3fefc477ae756df1598ae5d29a2a7978357ba94b4511797f8b17a483a37cfa321d10454ae4263b7cbee03a25dedcc9f154f9c5b8bd8de10528ec0a7ef53a4f1a0452234d432fe6e327b1770eadd4d81f8f5c3948c605da90b69a4867030892f920937d18bbaeaa2a5af5f0ee8fd0cc46d465ac8254ea09bc78dd8"]) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 06:05:23 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:23 executing program 6: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/seq/timer\x00', 0x0, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000100)) r1 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = dup2(r2, r1) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r4, 0xc0189378, &(0x7f0000000080)=ANY=[@ANYBLOB="010001000100000018ba7b00", @ANYRES32=r4, @ANYRES32=r6, @ANYBLOB='\x00\x00\x00\x00./file0\x00']) bind$packet(r8, &(0x7f0000000180)={0x11, 0x15, r7, 0x1, 0x9}, 0x14) ioctl$sock_ipv6_tunnel_SIOCGETPRL(r3, 0x89f4, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f0000000140)={'syztnl0\x00', r7, 0x4, 0xf8, 0x9, 0x101, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast1, 0x40, 0x700, 0x2, 0x7ff}}) 06:05:23 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2484.698723] FAULT_INJECTION: forcing a failure. [ 2484.698723] name failslab, interval 1, probability 0, space 0, times 0 [ 2484.701171] CPU: 0 PID: 11716 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2484.702635] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2484.704361] Call Trace: [ 2484.704919] dump_stack+0x107/0x167 [ 2484.705682] should_fail.cold+0x5/0xa [ 2484.706508] ? create_object.isra.0+0x3a/0xa30 [ 2484.707460] should_failslab+0x5/0x20 [ 2484.708253] kmem_cache_alloc+0x5b/0x310 [ 2484.709111] create_object.isra.0+0x3a/0xa30 [ 2484.710036] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2484.711106] kmem_cache_alloc+0x159/0x310 [ 2484.711976] ? lock_downgrade+0x6d0/0x6d0 [ 2484.713192] vm_area_dup+0x78/0x290 [ 2484.713971] ? _cond_resched+0x10/0x30 [ 2484.714789] ? copy_page_range+0x24e9/0x3800 [ 2484.715743] ? vm_area_alloc+0x110/0x110 [ 2484.716597] ? up_write+0x191/0x550 [ 2484.717361] ? vm_iomap_memory+0x190/0x190 [ 2484.718256] ? downgrade_write+0x3a0/0x3a0 [ 2484.719139] ? anon_vma_interval_tree_insert+0x277/0x450 [ 2484.720273] ? __vma_link_rb+0x540/0x700 [ 2484.721127] copy_process+0x298b/0x78b0 [ 2484.722021] ? __cleanup_sighand+0xb0/0xb0 [ 2484.722262] FAULT_INJECTION: forcing a failure. [ 2484.722262] name failslab, interval 1, probability 0, space 0, times 0 [ 2484.722922] ? lock_acquire+0x197/0x470 [ 2484.722951] ? find_held_lock+0x2c/0x110 [ 2484.727076] kernel_clone+0xe7/0x980 [ 2484.727855] ? lock_downgrade+0x6d0/0x6d0 [ 2484.728724] ? find_held_lock+0x2c/0x110 [ 2484.729572] ? create_io_thread+0xf0/0xf0 [ 2484.730455] ? ksys_write+0x12d/0x260 [ 2484.731264] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2484.732274] __do_sys_fork+0x8a/0xc0 [ 2484.733056] ? kernel_thread+0xf0/0xf0 [ 2484.733906] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2484.735005] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2484.736080] ? trace_hardirqs_on+0x5b/0x180 [ 2484.736988] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2484.738075] do_syscall_64+0x33/0x40 [ 2484.738865] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2484.739944] RIP: 0033:0x7f22e1959b19 [ 2484.740720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2484.744568] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2484.746170] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2484.747660] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2484.749159] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2484.750653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2484.752148] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2484.753672] CPU: 1 PID: 11723 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2484.755293] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2484.757151] Call Trace: [ 2484.757750] dump_stack+0x107/0x167 [ 2484.758581] should_fail.cold+0x5/0xa [ 2484.759433] ? create_object.isra.0+0x3a/0xa30 [ 2484.760467] should_failslab+0x5/0x20 [ 2484.761312] kmem_cache_alloc+0x5b/0x310 [ 2484.762246] create_object.isra.0+0x3a/0xa30 [ 2484.763216] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2484.764354] kmem_cache_alloc+0x159/0x310 [ 2484.765282] anon_vma_clone+0xdc/0x590 [ 2484.766176] __split_vma+0x17c/0x4e0 [ 2484.767010] __do_munmap+0x365/0x1260 [ 2484.767862] ? arch_get_unmapped_area+0x450/0x450 [ 2484.768950] ? lock_release+0x680/0x680 [ 2484.769841] mmap_region+0x7cc/0x1500 [ 2484.770719] do_mmap+0x868/0x1370 [ 2484.771509] vm_mmap_pgoff+0x198/0x1f0 [ 2484.772392] ? randomize_page+0xb0/0xb0 [ 2484.773301] ksys_mmap_pgoff+0x41c/0x560 [ 2484.774224] ? find_mergeable_anon_vma+0x250/0x250 [ 2484.775329] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2484.776497] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2484.777648] do_syscall_64+0x33/0x40 [ 2484.778495] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2484.779639] RIP: 0033:0x7f530d0e5b62 [ 2484.780470] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2484.784573] RSP: 002b:00007f530a65b0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2484.786296] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f530d0e5b62 [ 2484.787867] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 2484.789446] RBP: 0000000020ff8000 R08: 0000000000000004 R09: 0000000000000000 [ 2484.791028] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 2484.792605] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:05:41 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 64) 06:05:41 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) syz_io_uring_setup(0x24b0, &(0x7f0000000080)={0x0, 0xab30, 0x2, 0x1, 0x203}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) r2 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000180), 0x101800, 0x0) r3 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r8 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0) syz_io_uring_submit(r11, r10, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(0x0, r10, &(0x7f00000003c0)=@IORING_OP_NOP={0x0, 0x1}, 0x8) write$binfmt_script(r7, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r7, 0x0) open_tree(r7, &(0x7f0000000040)='./file0\x00', 0x89801) syz_io_uring_submit(r6, r1, &(0x7f0000000380)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r7}, 0x2) ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r2, 0x80286722, &(0x7f0000000340)={&(0x7f0000000240)=""/248, 0xf8, 0x4, 0x7}) 06:05:41 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80000000}, 0x6140, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x209ffa8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = dup2(r1, r0) fcntl$getflags(r0, 0x401) ioctl$BTRFS_IOC_DEFRAG_RANGE(r2, 0x40309410, 0x0) r3 = openat$incfs(r1, &(0x7f0000000080)='.pending_reads\x00', 0x10000, 0x100) r4 = getpgrp(0xffffffffffffffff) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r5, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r5, 0x0) open_tree(r5, &(0x7f0000000040)='./file0\x00', 0x89801) recvmsg$unix(r5, &(0x7f0000001800)={0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000000380)=""/210, 0xd2}, {&(0x7f0000000480)=""/218, 0xda}, {&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/86, 0x56}, {&(0x7f0000001600)=""/255, 0xff}], 0x5, &(0x7f0000001780)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000010000000100000000000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x60}, 0x40) perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x0, 0x81, 0x6, 0x1, 0x0, 0x7, 0x11100, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3f, 0x2, @perf_bp={0xfffffffffffffffe, 0x5}, 0xad0, 0xffffffffffffffff, 0x1c000, 0x3, 0x8bd, 0x20000000, 0x1, 0x0, 0x0, 0x0, 0x8c}, r4, 0x1, r1, 0x1) migrate_pages(r4, 0x8, &(0x7f0000000300)=0x80, &(0x7f0000000340)=0x4) perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0xff, 0x81, 0x81, 0x1, 0x0, 0x3, 0x8102, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x80, 0x4, @perf_bp={&(0x7f0000000140), 0x4}, 0x220, 0x1f, 0x2, 0x1, 0x4, 0xcb, 0x8001, 0x0, 0xffff}, 0x0, 0x2, r0, 0x2) syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r1) ioctl$BINDER_FREEZE(r3, 0x400c620e, &(0x7f0000000100)={0x0, 0x1, 0x8000}) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(0xffffffffffffffff, 0x4008941a, &(0x7f0000000280)) 06:05:41 executing program 5: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xa9, 0x3, 0x8a, 0x5, 0x0, 0x9, 0xc824, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x1, @perf_bp={&(0x7f0000000080)}, 0x8400, 0x40004, 0x9, 0x2, 0x80000000, 0x1, 0x7}, 0x0, 0xe, 0xffffffffffffffff, 0x1) r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r2, 0x10, r0, 0x8) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r3, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r3, 0x0) open_tree(r3, &(0x7f0000000040)='./file0\x00', 0x89801) perf_event_open(&(0x7f00000001c0)={0x4, 0x80, 0x0, 0xff, 0x7f, 0x2, 0x0, 0x81, 0x82908, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x7, 0x0, @perf_config_ext={0x4, 0x4}, 0x8800, 0x56, 0x8, 0x3, 0x60a, 0x3, 0x8c06, 0x0, 0xffffffa1, 0x0, 0x40c2f710}, r2, 0x9, r3, 0xe) r4 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x0, 0x10000000}, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000180), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) 06:05:41 executing program 2: fork() (fail_nth: 74) 06:05:41 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x80) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) 06:05:41 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:41 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:41 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:41 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x300}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:41 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) mkdirat(r1, &(0x7f0000000040)='./file1\x00', 0x100) 06:05:41 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:41 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa00}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:41 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r3, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r3, 0x0) r4 = open_tree(r3, &(0x7f0000000040)='./file0\x00', 0x89801) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r3, 0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r6, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r6, 0x0) open_tree(r6, &(0x7f0000000040)='./file0\x00', 0x89801) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r6, 0xc018937d, &(0x7f0000000140)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'}) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_STATX={0x15, 0x7, 0x0, 0xffffffffffffff9c, &(0x7f0000000240), &(0x7f0000000080)='./file2\x00', 0x40, 0x4000, 0x0, {0x0, r5}}, 0x9) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) 06:05:41 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x80c2, 0x0) openat(r0, &(0x7f0000000040)='./file0\x00', 0x400000, 0xe8edf54ba0f632f0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x20440, 0x182) 06:05:41 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:41 executing program 6: ioctl$BLKFLSBUF(0xffffffffffffffff, 0x1261, &(0x7f0000000080)=0x2) r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb96, 0x3}, 0x10000, 0x4fca6905, 0x0, 0x4, 0x0, 0xfffffff8, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x89801) r2 = openat(r1, &(0x7f0000000000)='./file1\x00', 0x803c3, 0x0) write$binfmt_script(r2, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) open_tree(r2, &(0x7f0000000040)='./file0\x00', 0x89801) fsetxattr$security_selinux(r2, &(0x7f00000001c0), &(0x7f0000000200)='system_u:object_r:dri_device_t:s0\x00', 0x22, 0x3) perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x81, 0x8, 0x8a, 0x0, 0x0, 0x66d, 0x100, 0x5, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xaf, 0x1, @perf_bp={&(0x7f0000000100), 0x4}, 0x80c2, 0x0, 0x1ff, 0x6, 0x7, 0x13, 0x8, 0x0, 0x1, 0x0, 0xb5d}, 0xffffffffffffffff, 0xd, r0, 0x8) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r3, r0) 06:05:41 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 65) 06:05:41 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2485.186119] FAULT_INJECTION: forcing a failure. [ 2485.186119] name failslab, interval 1, probability 0, space 0, times 0 [ 2485.188732] CPU: 1 PID: 11761 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2485.190314] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2485.192190] Call Trace: [ 2485.192795] dump_stack+0x107/0x167 [ 2485.193617] should_fail.cold+0x5/0xa [ 2485.194491] ? vm_area_alloc+0x1c/0x110 [ 2485.195408] should_failslab+0x5/0x20 [ 2485.196276] kmem_cache_alloc+0x5b/0x310 [ 2485.197202] vm_area_alloc+0x1c/0x110 [ 2485.198079] mmap_region+0x982/0x1500 [ 2485.198956] do_mmap+0x868/0x1370 [ 2485.199755] vm_mmap_pgoff+0x198/0x1f0 [ 2485.200635] ? randomize_page+0xb0/0xb0 [ 2485.201552] ksys_mmap_pgoff+0x41c/0x560 [ 2485.202490] ? find_mergeable_anon_vma+0x250/0x250 [ 2485.203609] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2485.204786] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2485.205964] do_syscall_64+0x33/0x40 [ 2485.206810] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2485.207963] RIP: 0033:0x7f530d0e5b62 [ 2485.208815] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 06:05:41 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x43f4, &(0x7f0000000080)={0x0, 0x9a2f, 0x0, 0x3, 0x3b}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x5, 0x0, 0x207, 0x2, &(0x7f0000000240)="cad16a1eadf1feb2c833fe0b9e89ada630171e70073afcfbf9e780593136c188dd34b79e7fa2c13b0dc414f1062dfc396c7b04563378cae5bd1d8b10af55d36ebff0e82d47e173244e994814", 0x7, 0x0, 0x1}, 0x6) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) [ 2485.212972] RSP: 002b:00007f530a65b0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2485.214965] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f530d0e5b62 [ 2485.216584] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 2485.218216] RBP: 0000000020ff8000 R08: 0000000000000004 R09: 0000000000000000 [ 2485.219843] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 2485.221464] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:05:54 executing program 2: fork() (fail_nth: 75) 06:05:54 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1) r2 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0) dup2(r1, r2) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0xf, 0x13, r0, 0x8000000) 06:05:54 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:54 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:54 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r0, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0) open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x89801) r1 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x114}, 0x0, 0x0, r0, 0x0) statx(r0, &(0x7f0000000100)='./file1\x00', 0x100, 0x1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0}) r3 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000640)='./binderfs/binder-control\x00', 0x800, 0x0) sendfile(r3, r0, 0x0, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000600)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000240)={0x34c, 0x1c, 0x100, 0x70bd28, 0x25dfdbfe, {0x1}, [@typed={0x8, 0x66, 0x0, 0x0, @uid=r2}, @nested={0x10f, 0x41, 0x0, 0x1, [@typed={0xab, 0x4e, 0x0, 0x0, @binary="22ff7266285d9bb6971df55490c1b99b76808b08a68525cdeb81d3db31ee0db6117090d8d079318eecc97b7311fb05cebdc0e05ab9bee4dd65b2cf1460c5eab58c17c77b4570a0b2056c1a35392996fafbc6e53b34d629a74a2c387884211b05ac937cedeca2a83e9b79e6796d0cdb0b8411a86f368b540090636b55aebfb20f2445a61b8ef2c0c803d1b0db1dfb35378e77de31d72ef1b4b07048f1a057f3f482f7a803a325c0"}, @generic="ed5d3f8cb3adc8dc2af759f0553880f0b013610bc14a4683e6646a20172443d0e606282e01a3f30172b61a684ac2769fe91b15566e71c347fcd92e78f1eb6e73e5e88cf3e1ae8c32d2fb31fa0cf742b2212e9148162eaf4606571dd6559551"]}, @nested={0x21e, 0x6e, 0x0, 0x1, [@generic="e366cbef5984c1dd90f594c0d71eb4f8dc204b421fb8ae04544bc7792c4dec771a9eb5d296a79929cd4f8969fc1b394e6158f0d1db59d5dc82a98ef9689c3c376196a136a93c5f3c0ae2c0fbc9d7c8ed2c8fdbe519d32d41e853172d8930406cd714e7d4b1c89ddd145e5e6b0f3d6b760cefee4bfd89f134b0dd52396c360a8392350fd50d711e93d88c64f1cf3e04b82c04f198b33843297036407301aee60a51480196832a637e9857700ed76a1a2dfbe0fbb6f98d64bdf3357e57b65d09fc127e4de1bbb645beb475914622f3aabd3b794d", @generic="d74c7e1c91456a27b56d115ba3e7830cd67b10d92739945f9f0c9c3c229339c67b85eafeed", @generic="e4219a01a5fafc5b91bee2975a592d7d8356742daa3f6ac0ce274c1d9da7f24025b81949d0bb56b149eda5276f3c72db176fdd8577f72c31de", @typed={0x8, 0x47, 0x0, 0x0, @uid=0xffffffffffffffff}, @generic="2aafffba318bf1", @generic="20bcea45b067e5c9b5599cc85e7de99b2a44be1ab9cc48bb76f9bbdfe80feca26f887d38ce1d434875f03a8b6cb4d9018aa1b8aff54df2eb71a224b9cb5ea6d0093803cf0c638d98196b3c31b1260d9d5fcbbf165cd9e9b29d27cc84be55dda1083b0bedcee3c40f68ce8683a9a0aec61ed30ad881283f1fba2eb9d72f7a83194a2d24f08ba482fad264f2aedbd14174f91c7f4f2242512d635b458f7049002710c08344ed041f9384b5d78d8ded36f44488c5cb6ee5518bf85108646ae7ac222a5d35b1e409107396c745cc1317c554c12e", @typed={0x8, 0x41, 0x0, 0x0, @ipv4=@private=0xa010101}]}]}, 0x34c}, 0x1, 0x0, 0x0, 0x20004000}, 0x4000800) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r4, r1) 06:05:54 executing program 4: r0 = openat(0xffffffffffffffff, &(0x7f0000000180)='./file0/file0\x00', 0x6886c2, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r1, &(0x7f0000000080)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) r2 = open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x0) r3 = openat(r1, &(0x7f0000000040)='./file1\x00', 0x40, 0x10) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) write$binfmt_script(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[@ANYRESDEC=r0], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) r4 = open_tree(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x89801) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r5, &(0x7f0000000140)=ANY=[@ANYRESDEC=r3, @ANYRES16=r4, @ANYRES64=r2, @ANYRES16=r4, @ANYRES32=r0, @ANYRESOCT=r1, @ANYRES16=r3], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r5, 0x0) open_tree(r5, &(0x7f0000000040)='./file0\x00', 0x89801) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r6, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r6, 0x0) open_tree(r6, &(0x7f0000000040)='./file0\x00', 0x89801) r7 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x280000, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000100)={0x1, 0x0, &(0x7f00000000c0)=[r5, r6, r0, r3, r7]}, 0x5) 06:05:54 executing program 5: sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000002b00)={0x0, 0x2, &(0x7f0000002ac0)={&(0x7f00000029c0)={0x20, 0x0, 0x709, 0x0, 0x0, {{0x15}, {@void, @void, @val={0xc, 0x129}}}}, 0x20}}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)={0x30, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x14, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_RANN_INTERVAL={0x6, 0x10, 0x6}, @NL80211_MESHCONF_GATE_ANNOUNCEMENTS={0x5}]}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_SET_WDS_PEER(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x94, 0x0, 0x800, 0x70bd2a, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @random="31f8e84336db"}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @random="aec07c0f8914"}]}, 0x94}, 0x1, 0x0, 0x0, 0x4000}, 0x84000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = syz_io_uring_setup(0x856, &(0x7f0000000080)={0x0, 0xdb78, 0x2}, &(0x7f00006e1000/0x3000)=nil, &(0x7f00001d8000/0x4000)=nil, &(0x7f00000004c0), &(0x7f0000000100)) r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x28a2c2, 0x0) write$binfmt_script(r5, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r5, 0x0) open_tree(r5, &(0x7f0000000040)='./file0\x00', 0x89801) close_range(r4, r5, 0x2) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r6, &(0x7f00000005c0)=ANY=[], 0xc1) open_tree(r6, &(0x7f0000000040)='./file0\x00', 0x89801) mmap$IORING_OFF_SQ_RING(&(0x7f0000499000/0x3000)=nil, 0x3000, 0x1000000, 0x10, r6, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) 06:05:54 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 66) [ 2498.316807] FAULT_INJECTION: forcing a failure. [ 2498.316807] name failslab, interval 1, probability 0, space 0, times 0 [ 2498.319293] CPU: 0 PID: 11788 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2498.320785] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2498.322580] Call Trace: [ 2498.323163] dump_stack+0x107/0x167 [ 2498.323949] should_fail.cold+0x5/0xa [ 2498.324769] ? anon_vma_clone+0xdc/0x590 [ 2498.325643] should_failslab+0x5/0x20 [ 2498.326474] kmem_cache_alloc+0x5b/0x310 [ 2498.327356] anon_vma_clone+0xdc/0x590 [ 2498.328202] anon_vma_fork+0x82/0x640 [ 2498.329025] ? __vm_enough_memory+0x184/0x360 [ 2498.329996] copy_process+0x72cd/0x78b0 [ 2498.330903] ? __cleanup_sighand+0xb0/0xb0 [ 2498.331828] ? lock_acquire+0x197/0x470 [ 2498.332700] ? find_held_lock+0x2c/0x110 [ 2498.333578] kernel_clone+0xe7/0x980 [ 2498.334389] ? lock_downgrade+0x6d0/0x6d0 [ 2498.335270] ? find_held_lock+0x2c/0x110 [ 2498.336138] ? create_io_thread+0xf0/0xf0 [ 2498.337024] ? ksys_write+0x12d/0x260 [ 2498.337848] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2498.338893] __do_sys_fork+0x8a/0xc0 [ 2498.339686] ? kernel_thread+0xf0/0xf0 [ 2498.340532] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2498.341660] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2498.342768] ? trace_hardirqs_on+0x5b/0x180 [ 2498.343699] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2498.344803] do_syscall_64+0x33/0x40 [ 2498.345596] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2498.346701] RIP: 0033:0x7f22e1959b19 [ 2498.347511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2498.351463] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2498.353082] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2498.354605] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2498.356113] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2498.357623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2498.359148] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2498.367637] FAULT_INJECTION: forcing a failure. [ 2498.367637] name failslab, interval 1, probability 0, space 0, times 0 [ 2498.370134] CPU: 0 PID: 11791 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2498.371623] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2498.373385] Call Trace: [ 2498.373949] dump_stack+0x107/0x167 [ 2498.374740] should_fail.cold+0x5/0xa 06:05:54 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 2498.375556] ? create_object.isra.0+0x3a/0xa30 [ 2498.376698] should_failslab+0x5/0x20 [ 2498.377500] kmem_cache_alloc+0x5b/0x310 [ 2498.378380] create_object.isra.0+0x3a/0xa30 [ 2498.379308] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2498.380401] kmem_cache_alloc+0x159/0x310 [ 2498.381294] vm_area_alloc+0x1c/0x110 [ 2498.382106] mmap_region+0x982/0x1500 [ 2498.382929] do_mmap+0x868/0x1370 [ 2498.383685] vm_mmap_pgoff+0x198/0x1f0 [ 2498.384516] ? randomize_page+0xb0/0xb0 [ 2498.385370] ksys_mmap_pgoff+0x41c/0x560 [ 2498.386242] ? find_mergeable_anon_vma+0x250/0x250 [ 2498.387281] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2498.388393] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2498.389473] do_syscall_64+0x33/0x40 [ 2498.390334] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2498.391550] RIP: 0033:0x7f530d0e5b62 06:05:54 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) r3 = inotify_init() r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r4, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r4, 0x0) open_tree(r4, &(0x7f0000000040)='./file0\x00', 0x89801) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1, {0x0, r5}}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_FILES_UPDATE={0x14, 0x3, 0x0, 0x0, 0x3, &(0x7f0000000000)=[r3, r4], 0x2, 0x0, 0x0, {0x0, r5}}, 0x6) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) [ 2498.392433] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2498.396867] RSP: 002b:00007f530a65b0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2498.398692] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f530d0e5b62 [ 2498.400425] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 2498.402134] RBP: 0000000020ff8000 R08: 0000000000000004 R09: 0000000000000000 [ 2498.403838] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 2498.405556] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:05:54 executing program 5: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0)=0x0, &(0x7f0000000140)) syz_io_uring_setup(0x1d5b, &(0x7f0000000080)={0x0, 0x4947, 0x20, 0x1, 0x37f, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000180)=0x0) r4 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r5, 0x5429, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x6, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x100000000, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r6, 0x10, r4, 0x8) perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x8, 0x7f, 0xc0, 0xff, 0x0, 0x1, 0x4, 0x8, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000340)}, 0x140a6, 0x101, 0x5, 0x2, 0x4, 0x7, 0x5, 0x0, 0x8, 0x0, 0x9}, r6, 0x8, r0, 0x1) r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) write$binfmt_script(r7, &(0x7f00000005c0)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r7, 0x0) open_tree(r7, &(0x7f0000000040)='./file0\x00', 0x89801) r8 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000280), 0x2002) close_range(r7, r8, 0x2) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x1, 0x6, 0x0, 0x0, 0x0, 0x1}, 0xfffffff9) r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='net/connector\x00') io_uring_enter(r9, 0x437d, 0x45e, 0x1, &(0x7f0000000240)={[0x1f]}, 0x8) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) 06:05:54 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80ffff00000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:54 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x8, 0xfd, 0x5, 0xdc, 0x0, 0xe5, 0x40002, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, @perf_config_ext={0x2, 0xa029}, 0x100, 0x400, 0x0, 0x1, 0x80000000, 0x6, 0xfda8, 0x0, 0x8000, 0x0, 0x7}, 0x0, 0x5, 0xffffffffffffffff, 0x2) 06:05:54 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x400000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:54 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80ffff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:05:54 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffc}, 0x0, 0x0, 0xfffffffc, 0x2, 0x1, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000100)='./file1\x00', 0x0) ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000280)=0x0) r4 = perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x4, 0x5, 0x39, 0x7, 0x0, 0x4, 0x10000, 0x16, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000200), 0xa}, 0xae18, 0x3, 0x6, 0x3, 0x80000000, 0x35f, 0x2, 0x0, 0x8, 0x0, 0x8}, r3, 0x10, r1, 0x8) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x24, 0x33, 0x10, 0x70bd2a, 0x25dfdbff, {0x1e}, [@typed={0x8, 0x6, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x89, 0x0, 0x0, @pid=r3}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x4000000) r5 = dup3(r0, r4, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r5) r6 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(r6, r0) [ 2512.255846] FAULT_INJECTION: forcing a failure. [ 2512.255846] name failslab, interval 1, probability 0, space 0, times 0 [ 2512.257210] CPU: 1 PID: 11827 Comm: syz-executor.2 Not tainted 5.10.254 #1 [ 2512.258003] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2512.258966] Call Trace: [ 2512.259271] dump_stack+0x107/0x167 [ 2512.259692] should_fail.cold+0x5/0xa [ 2512.260132] ? create_object.isra.0+0x3a/0xa30 [ 2512.260656] should_failslab+0x5/0x20 [ 2512.261093] kmem_cache_alloc+0x5b/0x310 [ 2512.261562] create_object.isra.0+0x3a/0xa30 [ 2512.262066] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2512.262654] kmem_cache_alloc+0x159/0x310 [ 2512.263138] anon_vma_clone+0xdc/0x590 [ 2512.263587] anon_vma_fork+0x82/0x640 [ 2512.264020] ? __vm_enough_memory+0x184/0x360 [ 2512.264549] copy_process+0x72cd/0x78b0 [ 2512.265018] ? __cleanup_sighand+0xb0/0xb0 [ 2512.265514] ? lock_acquire+0x197/0x470 [ 2512.265971] ? find_held_lock+0x2c/0x110 [ 2512.266441] kernel_clone+0xe7/0x980 [ 2512.266869] ? lock_downgrade+0x6d0/0x6d0 [ 2512.267343] ? find_held_lock+0x2c/0x110 [ 2512.267811] ? create_io_thread+0xf0/0xf0 [ 2512.268287] ? ksys_write+0x12d/0x260 [ 2512.268727] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2512.269277] __do_sys_fork+0x8a/0xc0 [ 2512.269705] ? kernel_thread+0xf0/0xf0 [ 2512.270165] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2512.270761] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2512.271343] ? trace_hardirqs_on+0x5b/0x180 [ 2512.271778] FAULT_INJECTION: forcing a failure. [ 2512.271778] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2512.271840] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2512.271861] do_syscall_64+0x33/0x40 [ 2512.276014] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2512.276596] RIP: 0033:0x7f22e1959b19 [ 2512.277022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2512.279111] RSP: 002b:00007f22deecf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 2512.279974] RAX: ffffffffffffffda RBX: 00007f22e1a6cf60 RCX: 00007f22e1959b19 [ 2512.280795] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 2512.281608] RBP: 00007f22deecf1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2512.282426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2512.283238] R13: 00007fff701ac3ef R14: 00007f22deecf300 R15: 0000000000022000 [ 2512.284078] CPU: 0 PID: 11828 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2512.285977] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2512.288247] Call Trace: [ 2512.288979] dump_stack+0x107/0x167 [ 2512.289972] should_fail.cold+0x5/0xa [ 2512.291022] __alloc_pages_nodemask+0x182/0x600 [ 2512.292308] ? __alloc_pages_slowpath.constprop.0+0x2320/0x2320 06:06:08 executing program 2: fork() (fail_nth: 76) 06:06:08 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000d, 0x1f012, r0, 0x0) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1, {0x0, r1}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1, {0x0, r1}}, 0x3f) 06:06:08 executing program 5: r0 = syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) syz_io_uring_setup(0x7f0, &(0x7f0000000000)={0x0, 0xb2d5, 0x0, 0x2, 0x153, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 06:06:08 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x7bb2, &(0x7f00000002c0), &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000140)) (fail_nth: 67) 06:06:08 executing program 0: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:06:08 executing program 7: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 06:06:08 executing program 1: r0 = syz_io_uring_setup(0x3872, &(0x7f00000001c0)={0x0, 0x0, 0x20}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x13, r0, 0x8000000) [ 2512.294106] ? walk_mem_res+0x170/0x170 [ 2512.295295] alloc_pages_current+0x187/0x280 [ 2512.296500] pte_alloc_one+0x16/0x1a0 [ 2512.297540] __pte_alloc+0x1d/0x330 [ 2512.298580] remap_pfn_range_internal+0x9a3/0xf60 [ 2512.299918] ? lookup_memtype+0x5b/0x200 [ 2512.301062] ? apply_to_existing_page_range+0x40/0x40 [ 2512.302511] remap_pfn_range+0xcd/0x160 [ 2512.303613] ? remap_pfn_range_notrack+0x70/0x70 [ 2512.304919] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 2512.306376] io_uring_mmap+0x398/0x530 [ 2512.307479] mmap_file+0x5e/0xe0 [ 2512.308418] mmap_region+0xc4d/0x1500 [ 2512.309496] do_mmap+0x868/0x1370 [ 2512.310483] vm_mmap_pgoff+0x198/0x1f0 [ 2512.311573] ? randomize_page+0xb0/0xb0 [ 2512.312696] ksys_mmap_pgoff+0x41c/0x560 [ 2512.313830] ? find_mergeable_anon_vma+0x250/0x250 [ 2512.315208] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2512.316325] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2512.317396] do_syscall_64+0x33/0x40 [ 2512.318190] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2512.319258] RIP: 0033:0x7f530d0e5b62 [ 2512.320053] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2512.323921] RSP: 002b:00007f530a65b0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2512.325532] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f530d0e5b62 [ 2512.327066] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 2512.328554] RBP: 0000000020ff8000 R08: 0000000000000004 R09: 0000000000000000 [ 2512.330099] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 2512.331625] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 06:06:08 executing program 6: r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xa}}, 0x0, 0x2, 0xffffffffffffffff, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) r2 = dup2(r1, r0) r3 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_DEL(r3, 0x2, r2) [ 2512.380225] ------------[ cut here ]------------ [ 2512.381354] WARNING: CPU: 0 PID: 11828 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270 [ 2512.383270] Modules linked in: [ 2512.383983] CPU: 0 PID: 11828 Comm: syz-executor.3 Not tainted 5.10.254 #1 [ 2512.385465] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2512.387285] RIP: 0010:get_pat_info+0x216/0x270 [ 2512.388290] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 51 89 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 3a 89 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 15 ad 5a 00 e9 [ 2512.392199] RSP: 0018:ffff888050f97890 EFLAGS: 00010212 [ 2512.393351] RAX: 000000000002581a RBX: ffff888008e0ce00 RCX: ffffc90005807000 [ 2512.394905] RDX: 0000000000040000 RSI: ffffffff81125456 RDI: 0000000000000007 [ 2512.396486] RBP: ffff888050f97948 R08: 0000000000000000 R09: ffff888050f97818 [ 2512.398355] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028 [ 2512.405098] R13: 1ffff1100a1f2f12 R14: 0000000000000000 R15: ffff888008e0ce50 [ 2512.406669] FS: 00007f530a65b700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 2512.408408] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2512.409672] CR2: 00007fb0b1491000 CR3: 0000000051218000 CR4: 0000000000350ef0 [ 2512.411201] Call Trace: [ 2512.411789] ? pgprot_writethrough+0xc0/0xc0 [ 2512.412753] ? finish_task_switch+0x126/0x5d0 [ 2512.413726] ? finish_task_switch+0xef/0x5d0 [ 2512.414712] untrack_pfn+0xdc/0x240 [ 2512.415492] ? track_pfn_insert+0x150/0x150 [ 2512.416440] ? lock_downgrade+0x6d0/0x6d0 [ 2512.417345] ? uprobe_munmap+0x1c/0x560 [ 2512.418237] unmap_single_vma+0x1bc/0x300 [ 2512.419163] zap_page_range_single+0x2ce/0x450 [ 2512.420174] ? unmap_single_vma+0x300/0x300 [ 2512.421119] ? remap_pfn_range_internal+0xc56/0xf60 [ 2512.422234] ? lookup_memtype+0x5b/0x200 [ 2512.423152] ? apply_to_existing_page_range+0x40/0x40 [ 2512.424278] remap_pfn_range+0x139/0x160 [ 2512.425172] ? remap_pfn_range_notrack+0x70/0x70 [ 2512.426216] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 2512.427376] io_uring_mmap+0x398/0x530 [ 2512.428250] mmap_file+0x5e/0xe0 [ 2512.429027] mmap_region+0xc4d/0x1500 [ 2512.429896] do_mmap+0x868/0x1370 [ 2512.430684] vm_mmap_pgoff+0x198/0x1f0 [ 2512.431517] ? randomize_page+0xb0/0xb0 [ 2512.432399] ksys_mmap_pgoff+0x41c/0x560 [ 2512.433298] ? find_mergeable_anon_vma+0x250/0x250 [ 2512.434370] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2512.435514] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2512.437238] do_syscall_64+0x33/0x40 [ 2512.438169] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2512.439298] RIP: 0033:0x7f530d0e5b62 [ 2512.440124] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2512.444086] RSP: 002b:00007f530a65b0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2512.445724] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f530d0e5b62 [ 2512.447270] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ff8000 [ 2512.448811] RBP: 0000000020ff8000 R08: 0000000000000004 R09: 0000000000000000 [ 2512.450367] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 2512.451929] R13: 0000000020ffc000 R14: 00000000200004c0 R15: 0000000020ff8000 [ 2512.453477] irq event stamp: 1359 [ 2512.454257] hardirqs last enabled at (1369): [] console_unlock+0x92d/0xb40 [ 2512.456082] hardirqs last disabled at (1378): [] console_unlock+0x839/0xb40 [ 2512.457920] softirqs last enabled at (1260): [] asm_call_irq_on_stack+0x12/0x20 [ 2512.459855] softirqs last disabled at (1219): [] asm_call_irq_on_stack+0x12/0x20 [ 2512.461778] ---[ end trace de9729cdbbaa2150 ]--- VM DIAGNOSIS: 06:06:08 Registers: info registers vcpu 0 RAX=0000000000000033 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822e8db1 RDI=ffffffff879fa240 RBP=ffffffff879fa200 RSP=ffff888050f972a8 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=0000000000000033 R13=0000000000000033 R14=ffffffff879fa200 R15=dffffc0000000000 RIP=ffffffff822e8e08 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f530a65b700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb0b1491000 CR3=0000000051218000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000ff0000 XMM01=6a6e695f31313230385f7a7973006273 XMM02=000000000000000000ffffffff000000 XMM03=00007f530d1cc7c800007f530d1cc7c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=ffff88801580f9f8 RCX=0000000000000000 RDX=0000000000000000 RSI=0000000000000000 RDI=ffff88801580f9d0 RBP=ffff88800fcf0000 RSP=ffff88801580f918 R8 =0000000000000001 R9 =ffff88801580f970 R10=ffffed1002b01f39 R11=0000000000000001 R12=0000000000000000 R13=ffff88801580f998 R14=ffff88800fcf0000 R15=ffff88801580f970 RIP=ffffffff8203e06b RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fbcdd43d900 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fbcdcbb5080 CR3=000000000ef1c000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ffffffffffffffffffffffffffffffff XMM01=30306234386136303638616663356134 XMM02=38303062343861363036386166633561 XMM03=2f6c616e72756f6a2f676f6c2f6e7572 XMM04=b49bbad4b80e2f4f000000000038a1d8 XMM05=d3fdd5f48436fbd700000000000aeab0 XMM06=62ad9b23b197738e00000000000ae968 XMM07=00000000000000000000000000000000 XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000 XMM10=00000000000020000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000