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"}, @TIPC_NLA_NODE_ID={0x94, 0x3, "0df78fe0e968f223422d02a471476476433ed2ba5fbf1e8de808cbc9bc18f8747ad6ccdf49d85da7539213b30cc88f31f73ed254ea0a7f15a7240619cfb55a201ce725919c32df34ace4212825596716f079fb16c6e547d1e5f89a51bf861f3ce846d29d4b2e9f5c430712f855741293946fae485375c5a7be2bbab360c8f0a6a989a7c5feb28873037ebe9f1c86fcec"}, @TIPC_NLA_NODE_KEY={0x4c, 0x4, {'gcm(aes)\x00', 0x24, "b585088514f333319c9bc6a9f3f4dc930bd1faf3d51c88add17084651fb41392515567cb"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x20}, @TIPC_NLA_NODE_KEY={0x3e, 0x4, {'gcm(aes)\x00', 0x16, "a14e3f09ab0ec76752e12a7b517c2e178c1300c5fea4"}}]}, @TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x9}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x1f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x57eb}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x643}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9f}]}, @TIPC_NLA_MEDIA={0x14, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_MEDIA={0xa0, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10001}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x40}]}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7a4356ab}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fff}]}]}]}, 0x147c}, 0x1, 0x0, 0x0, 0x20004041}, 0x20008000) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) [ 1843.752822] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9612 comm=syz-executor.1 [ 1843.762769] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9612 comm=syz-executor.1 23:55:11 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 7) 23:55:11 executing program 6: r0 = open$dir(&(0x7f0000000040)='./file1\x00', 0x0, 0x0) lseek(r0, 0x0, 0x3) fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000080), &(0x7f0000000400)=ANY=[@ANYBLOB="00fb2a0305e90a778c76633ed20000003d0402a20e174c9be604aec55cff9112ef2d822a"], 0x2a, 0x2) r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write(0xffffffffffffffff, &(0x7f0000000000)="cd656d69f282f46caedc9da09676f7d5fb29e8f4e5806ac5ea118e763750a91ce6ccb5e3206389", 0x27) fallocate(r2, 0x2, 0x2, 0x6985) r3 = socket$netlink(0x10, 0x3, 0x0) getsockopt$ARPT_SO_GET_INFO(r1, 0x0, 0x60, &(0x7f0000000140)={'filter\x00', 0x0, [0xfffff4b7, 0xb6, 0x401]}, &(0x7f00000001c0)=0x44) sendmsg$nl_generic(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000004200210e003f00"/20], 0x14}}, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[], 0xfdef) timerfd_create(0x0, 0x0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[@ANYBLOB="06000ecbd2b900da00", @ANYRES16=r4, @ANYBLOB="000229bd7000ffdbdf25370000000c009900010400006a00000008009f000700000005001801110000000800a10004000000"], 0x38}, 0x1, 0x0, 0x0, 0x50}, 0x0) open_tree(r0, &(0x7f0000000100)='./file1\x00', 0x100) timerfd_create(0x0, 0x0) clock_gettime(0x0, &(0x7f0000000440)={0x0, 0x0}) timerfd_settime(0xffffffffffffffff, 0x0, &(0x7f0000000480)={{}, {r5, r6+10000000}}, &(0x7f00000004c0)) unshare(0x48020200) [ 1843.902963] FAULT_INJECTION: forcing a failure. [ 1843.902963] name failslab, interval 1, probability 0, space 0, times 0 [ 1843.905681] CPU: 0 PID: 9617 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 1843.907166] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1843.908952] Call Trace: [ 1843.909530] dump_stack+0x107/0x167 [ 1843.910335] should_fail.cold+0x5/0xa [ 1843.911173] ? jbd2__journal_start+0x246/0x7e0 [ 1843.912174] should_failslab+0x5/0x20 [ 1843.912992] kmem_cache_alloc+0x5b/0x310 [ 1843.913915] jbd2__journal_start+0x246/0x7e0 [ 1843.914919] __ext4_journal_start_sb+0x214/0x390 [ 1843.915968] ext4_writepages+0x102d/0x3350 [ 1843.916927] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1843.918115] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1843.919183] ? SOFTIRQ_verbose+0x10/0x10 [ 1843.920186] ? __lock_acquire+0x1657/0x5b00 [ 1843.921189] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1843.922344] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1843.923397] do_writepages+0xee/0x2a0 [ 1843.924245] ? page_writeback_cpu_online+0x20/0x20 [ 1843.925312] ? lock_acquire+0x197/0x470 [ 1843.926171] ? __ext4_ioctl+0x1543/0x4190 [ 1843.927095] ? lock_release+0x680/0x680 [ 1843.927983] __filemap_fdatawrite_range+0x24b/0x2f0 [ 1843.929071] ? delete_from_page_cache_batch+0xa30/0xa30 [ 1843.930254] ? down_write+0xe0/0x160 [ 1843.931072] ? down_write_killable+0x180/0x180 [ 1843.932086] filemap_write_and_wait_range+0x65/0x100 [ 1843.933191] __ext4_ioctl+0x1578/0x4190 [ 1843.934100] ? ext4_reset_inode_seed+0x450/0x450 [ 1843.935144] ? perf_trace_lock+0xac/0x490 [ 1843.936038] ? SOFTIRQ_verbose+0x10/0x10 [ 1843.936987] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1843.938224] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1843.939347] ? do_vfs_ioctl+0x283/0x10d0 [ 1843.940231] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1843.941350] ? generic_block_fiemap+0x60/0x60 [ 1843.942319] ? lock_downgrade+0x6d0/0x6d0 [ 1843.943229] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1843.944292] ? wait_for_completion_io+0x270/0x270 [ 1843.945383] ? selinux_file_ioctl+0xb6/0x270 [ 1843.946352] ? __ext4_ioctl+0x4190/0x4190 [ 1843.947275] __x64_sys_ioctl+0x19a/0x210 [ 1843.948160] do_syscall_64+0x33/0x40 [ 1843.948966] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1843.950061] RIP: 0033:0x7f93b5e79b19 [ 1843.950883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1843.954799] RSP: 002b:00007f93b33ef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1843.956443] RAX: ffffffffffffffda RBX: 00007f93b5f8cf60 RCX: 00007f93b5e79b19 [ 1843.957975] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 1843.959506] RBP: 00007f93b33ef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1843.961039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1843.962556] R13: 00007ffe7c940f6f R14: 00007f93b33ef300 R15: 0000000000022000 [ 1843.964965] EXT4-fs (sda): ext4_writepages: jbd2_start: 9223372036854775807 pages, ino 16027; err -12 23:55:25 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) accept4$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @multicast2}, &(0x7f0000000080)=0x10, 0x1800) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.procs\x00', 0x2, 0x0) r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000001c0), 0x28040, 0x0) ioctl$BTRFS_IOC_SNAP_DESTROY(r2, 0x5000940f, &(0x7f0000000780)={{r1}, "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"}) r3 = openat(0xffffffffffffffff, &(0x7f00000000c0)='/proc/self/exe\x00', 0x0, 0x0) r4 = socket$netlink(0x10, 0x3, 0x9) openat2(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x1a52a1f043cd5731, 0x0, 0x18}, 0x18) sendfile(r4, r3, 0x0, 0x4000007ffffffc) 23:55:25 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 8) [ 1857.836516] FAULT_INJECTION: forcing a failure. [ 1857.836516] name failslab, interval 1, probability 0, space 0, times 0 [ 1857.839019] CPU: 0 PID: 9629 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 1857.840286] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1857.841788] Call Trace: [ 1857.842281] dump_stack+0x107/0x167 [ 1857.842957] should_fail.cold+0x5/0xa [ 1857.843676] ? create_object.isra.0+0x3a/0xa20 [ 1857.844526] should_failslab+0x5/0x20 [ 1857.845218] kmem_cache_alloc+0x5b/0x310 [ 1857.845955] ? mark_held_locks+0x9e/0xe0 [ 1857.846708] create_object.isra.0+0x3a/0xa20 [ 1857.847512] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1857.848448] kmem_cache_alloc+0x159/0x310 [ 1857.849227] jbd2__journal_start+0x246/0x7e0 [ 1857.850045] __ext4_journal_start_sb+0x214/0x390 [ 1857.850930] ext4_writepages+0x102d/0x3350 [ 1857.851744] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1857.852725] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1857.853611] ? SOFTIRQ_verbose+0x10/0x10 [ 1857.854447] ? __lock_acquire+0x1657/0x5b00 [ 1857.855295] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1857.856261] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1857.857149] do_writepages+0xee/0x2a0 [ 1857.857857] ? page_writeback_cpu_online+0x20/0x20 [ 1857.858751] ? lock_acquire+0x197/0x470 [ 1857.859479] ? __ext4_ioctl+0x1543/0x4190 [ 1857.860248] ? lock_release+0x680/0x680 [ 1857.861007] __filemap_fdatawrite_range+0x24b/0x2f0 [ 1857.861914] ? delete_from_page_cache_batch+0xa30/0xa30 [ 1857.862887] ? down_write+0xe0/0x160 [ 1857.863567] ? down_write_killable+0x180/0x180 [ 1857.864406] filemap_write_and_wait_range+0x65/0x100 [ 1857.865549] __ext4_ioctl+0x1578/0x4190 [ 1857.866312] ? ext4_reset_inode_seed+0x450/0x450 [ 1857.867174] ? perf_trace_lock+0xac/0x490 [ 1857.867931] ? SOFTIRQ_verbose+0x10/0x10 [ 1857.868732] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1857.869777] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1857.870718] ? do_vfs_ioctl+0x283/0x10d0 [ 1857.871458] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1857.872408] ? generic_block_fiemap+0x60/0x60 [ 1857.873231] ? lock_downgrade+0x6d0/0x6d0 [ 1857.873988] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1857.874868] ? wait_for_completion_io+0x270/0x270 [ 1857.875785] ? selinux_file_ioctl+0xb6/0x270 [ 1857.876601] ? __ext4_ioctl+0x4190/0x4190 [ 1857.877358] __x64_sys_ioctl+0x19a/0x210 [ 1857.878272] do_syscall_64+0x33/0x40 [ 1857.879624] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1857.880533] RIP: 0033:0x7f93b5e79b19 [ 1857.881195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1857.884422] RSP: 002b:00007f93b33ef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1857.885768] RAX: ffffffffffffffda RBX: 00007f93b5f8cf60 RCX: 00007f93b5e79b19 [ 1857.887018] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 1857.888273] RBP: 00007f93b33ef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1857.889519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1857.890768] R13: 00007ffe7c940f6f R14: 00007f93b33ef300 R15: 0000000000022000 23:55:25 executing program 1: r0 = perf_event_open(&(0x7f0000000180)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/packet\x00') r2 = dup3(r1, r0, 0x0) syz_io_uring_setup(0x2539, &(0x7f0000000000)={0x0, 0x53e9, 0x8, 0x1, 0x20, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)) r4 = syz_io_uring_setup(0x4d50, &(0x7f0000000140), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, 0x0}, 0x0) r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) accept4$inet6(r2, 0x0, &(0x7f0000000100), 0x80800) openat(r1, &(0x7f0000000240)='./file0\x00', 0x101000, 0x80) r8 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r11 = syz_io_uring_setup(0x4d50, &(0x7f0000000140), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r12, r13, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, 0x0}, 0x0) r14 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r11, 0x0) syz_io_uring_submit(r14, r13, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r3, r13, &(0x7f0000000280)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x3, 0x0, @fd=r2, 0x7, 0x0, 0x3ff, 0x4, 0x1}, 0xffffffff) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r15 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r15}}, 0x0) 23:55:25 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 24) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:55:25 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) r1 = signalfd(r0, &(0x7f0000001040)={[0x6]}, 0x8) sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001140)={&(0x7f00000010c0)={0x64, 0x1, 0x9, 0x5, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFCTH_STATUS={0x8}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFCTH_STATUS={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x10, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}, @NFCTH_TUPLE={0x18, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @rand_addr=0x64010102}}}]}]}, 0x64}}, 0x0) ioctl$sock_bt_hci(r0, 0x400448e0, &(0x7f0000000040)="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") ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") ioctl$sock_bt_hci(r0, 0x400448ca, 0x0) 23:55:25 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:55:25 executing program 3: open_tree(0xffffffffffffffff, 0x0, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) unlink(&(0x7f0000000040)='./file0\x00') socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) close_range(r1, r0, 0x0) sendmsg$nl_generic(r1, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB], 0x14}}, 0x20040000) sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000600)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="eb0127222c15fd0aa6e99f25be9abd7000fedbdf250f40000005003c0006eaffff070007000000000008003b00070000000000000000000a821ade48b987dc21abc748daa3258b776d5a17da570a83b3de90bf31a4c7934e3e4146f115fdbc4296d32dc0ec4440e2cffb9cfe86809c018efa64bded78265289e3f969667af4b7d897dbf353314fd5c4b38cf3b22db3a62bd0b5583ab495dc13a6f3380b301f3c616dc7d094922978e7a939c66a835bffc911229b6e655718ff9c31a007f6e4ab0584e48d"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) r2 = socket$packet(0x11, 0x2, 0x300) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendto$packet(r2, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @random="c480e72d13a8"}, 0x14) sendmsg$ETHTOOL_MSG_RINGS_SET(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x94, 0x0, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_RINGS_TX={0x8, 0x9, 0x9}, @ETHTOOL_A_RINGS_HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}]}, @ETHTOOL_A_RINGS_RX_MINI={0x8}]}, 0x94}, 0x1, 0x0, 0x0, 0xc0}, 0x8840) creat(&(0x7f0000000000)='./file0\x00', 0x0) 23:55:25 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1857.938105] FAULT_INJECTION: forcing a failure. [ 1857.938105] name failslab, interval 1, probability 0, space 0, times 0 [ 1857.940258] CPU: 0 PID: 9644 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1857.941427] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1857.942860] Call Trace: [ 1857.943318] dump_stack+0x107/0x167 [ 1857.943934] should_fail.cold+0x5/0xa [ 1857.944586] ? create_object.isra.0+0x3a/0xa20 [ 1857.945368] should_failslab+0x5/0x20 [ 1857.946023] kmem_cache_alloc+0x5b/0x310 [ 1857.946718] create_object.isra.0+0x3a/0xa20 [ 1857.947466] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1857.948317] kmem_cache_alloc+0x159/0x310 [ 1857.949034] __alloc_file+0x21/0x320 [ 1857.949668] alloc_empty_file+0x6d/0x170 [ 1857.950357] alloc_file+0x5e/0x5a0 [ 1857.950964] alloc_file_pseudo+0x16a/0x250 [ 1857.951692] ? alloc_file+0x5a0/0x5a0 [ 1857.952351] anon_inode_getfile+0xc8/0x1f0 [ 1857.953066] io_uring_setup+0x138b/0x2980 [ 1857.953774] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1857.954634] ? wait_for_completion_io+0x270/0x270 [ 1857.955485] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1857.956383] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1857.957254] do_syscall_64+0x33/0x40 [ 1857.957878] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1857.958739] RIP: 0033:0x7f624aeccb19 [ 1857.959379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1857.962476] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1857.963744] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1857.964935] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1857.966143] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1857.967346] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1857.968534] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 [ 1858.003120] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9642 comm=syz-executor.3 23:55:25 executing program 6: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000580)=@updsa={0x10c, 0x1a, 0x9, 0x0, 0x0, {{@in=@remote, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0xee00}, {@in, 0x0, 0x3c}, @in6=@private1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x2000000000000}, {}, 0x0, 0x0, 0xa}, [@encap={0x1c, 0x4, {0x0, 0x0, 0x0, @in=@local}}]}, 0x10c}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000000)={'wg0\x00'}) 23:55:25 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) r1 = signalfd(r0, &(0x7f0000001040)={[0x6]}, 0x8) sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001140)={&(0x7f00000010c0)={0x64, 0x1, 0x9, 0x5, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFCTH_STATUS={0x8}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFCTH_STATUS={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x10, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}, @NFCTH_TUPLE={0x18, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @rand_addr=0x64010102}}}]}]}, 0x64}}, 0x0) ioctl$sock_bt_hci(r0, 0x400448e0, &(0x7f0000000040)="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") ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") ioctl$sock_bt_hci(r0, 0x400448ca, 0x0) [ 1858.055112] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9648 comm=syz-executor.3 23:55:25 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 9) 23:55:25 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) r1 = signalfd(r0, &(0x7f0000001040)={[0x6]}, 0x8) sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001140)={&(0x7f00000010c0)={0x64, 0x1, 0x9, 0x5, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFCTH_STATUS={0x8}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFCTH_STATUS={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x10, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}, @NFCTH_TUPLE={0x18, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @rand_addr=0x64010102}}}]}]}, 0x64}}, 0x0) ioctl$sock_bt_hci(r0, 0x400448e0, &(0x7f0000000040)="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") ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") ioctl$sock_bt_hci(r0, 0x400448ca, 0x0) [ 1858.177358] FAULT_INJECTION: forcing a failure. [ 1858.177358] name failslab, interval 1, probability 0, space 0, times 0 [ 1858.179383] CPU: 0 PID: 9658 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 1858.180346] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1858.181506] Call Trace: [ 1858.181891] dump_stack+0x107/0x167 [ 1858.182410] should_fail.cold+0x5/0xa [ 1858.182955] ? ext4_alloc_io_end_vec+0x1f/0x120 [ 1858.183619] should_failslab+0x5/0x20 [ 1858.184158] kmem_cache_alloc+0x5b/0x310 [ 1858.184746] ext4_alloc_io_end_vec+0x1f/0x120 [ 1858.185392] ext4_writepages+0x17a5/0x3350 [ 1858.186090] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1858.186792] ? SOFTIRQ_verbose+0x10/0x10 [ 1858.187458] ? __lock_acquire+0x1657/0x5b00 [ 1858.188117] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1858.188867] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1858.189561] do_writepages+0xee/0x2a0 [ 1858.190111] ? page_writeback_cpu_online+0x20/0x20 [ 1858.190821] ? lock_acquire+0x197/0x470 [ 1858.191382] ? __ext4_ioctl+0x1543/0x4190 [ 1858.191985] ? lock_release+0x680/0x680 [ 1858.192576] __filemap_fdatawrite_range+0x24b/0x2f0 [ 1858.193285] ? delete_from_page_cache_batch+0xa30/0xa30 [ 1858.194051] ? down_write+0xe0/0x160 23:55:25 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 25) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1858.194583] ? down_write_killable+0x180/0x180 [ 1858.195367] filemap_write_and_wait_range+0x65/0x100 [ 1858.196087] __ext4_ioctl+0x1578/0x4190 [ 1858.196682] ? ext4_reset_inode_seed+0x450/0x450 [ 1858.197350] ? perf_trace_lock+0xac/0x490 [ 1858.197930] ? SOFTIRQ_verbose+0x10/0x10 [ 1858.198548] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1858.199361] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1858.200089] ? do_vfs_ioctl+0x283/0x10d0 [ 1858.200670] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1858.201411] ? generic_block_fiemap+0x60/0x60 [ 1858.202040] ? lock_downgrade+0x6d0/0x6d0 [ 1858.202627] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1858.203342] ? wait_for_completion_io+0x270/0x270 [ 1858.204058] ? selinux_file_ioctl+0xb6/0x270 [ 1858.204690] ? __ext4_ioctl+0x4190/0x4190 [ 1858.205291] __x64_sys_ioctl+0x19a/0x210 [ 1858.205874] do_syscall_64+0x33/0x40 [ 1858.206398] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1858.207108] RIP: 0033:0x7f93b5e79b19 [ 1858.207636] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1858.210181] RSP: 002b:00007f93b33ef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1858.211251] RAX: ffffffffffffffda RBX: 00007f93b5f8cf60 RCX: 00007f93b5e79b19 [ 1858.212240] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 1858.213224] RBP: 00007f93b33ef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1858.214215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1858.215211] R13: 00007ffe7c940f6f R14: 00007f93b33ef300 R15: 0000000000022000 23:55:25 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000180)={{{@in6=@empty}}, {{@in=@broadcast}, 0x0, @in=@local}}, &(0x7f0000000100)=0xffffffd8) clone3(&(0x7f0000000740)={0x0, &(0x7f0000000480)=0xffffffffffffffff, &(0x7f00000004c0), &(0x7f0000000500), {}, &(0x7f0000000540)=""/201, 0xc9, 0x0, &(0x7f0000000700)}, 0x58) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f00000007c0)={0x0, 0x81, 0x667, 0x0, 0x8}) fsetxattr$security_capability(r0, 0x0, 0x0, 0x0, 0x0) fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, &(0x7f0000000180)='./file2\x00', 0x8, 0x2) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001) read(r1, &(0x7f00000002c0)=""/190, 0xbe) bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @mcast1, 0x2}, 0x1c) socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef) [ 1858.241659] FAULT_INJECTION: forcing a failure. [ 1858.241659] name failslab, interval 1, probability 0, space 0, times 0 [ 1858.243252] CPU: 0 PID: 9665 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1858.244163] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1858.245274] Call Trace: [ 1858.245629] dump_stack+0x107/0x167 [ 1858.246115] should_fail.cold+0x5/0xa [ 1858.246622] ? security_file_alloc+0x34/0x170 [ 1858.247238] ? security_file_alloc+0x34/0x170 [ 1858.247849] should_failslab+0x5/0x20 [ 1858.248367] kmem_cache_alloc+0x5b/0x310 [ 1858.248921] security_file_alloc+0x34/0x170 [ 1858.249496] __alloc_file+0xb7/0x320 [ 1858.250005] alloc_empty_file+0x6d/0x170 [ 1858.250546] alloc_file+0x5e/0x5a0 [ 1858.251033] alloc_file_pseudo+0x16a/0x250 [ 1858.251605] ? alloc_file+0x5a0/0x5a0 [ 1858.252126] anon_inode_getfile+0xc8/0x1f0 [ 1858.252692] io_uring_setup+0x138b/0x2980 [ 1858.253251] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1858.253935] ? wait_for_completion_io+0x270/0x270 [ 1858.254595] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1858.255293] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1858.255974] do_syscall_64+0x33/0x40 [ 1858.256464] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1858.257147] RIP: 0033:0x7f624aeccb19 [ 1858.257650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1858.260120] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1858.261130] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1858.262071] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1858.263152] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1858.264118] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1858.265056] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:55:25 executing program 3: r0 = open_tree(0xffffffffffffff9c, 0x0, 0x80) r1 = open(&(0x7f0000000140)='./file0\x00', 0x2, 0x12) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) creat(&(0x7f0000000080)='./file0\x00', 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r2) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0xbbbb13940471c2dc) r3 = fork() ptrace$setopts(0x4206, r3, 0x10001, 0x3d) getpriority(0x0, r3) perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x9, 0x9, 0xff, 0x8, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x4f8c, 0x1, @perf_bp={&(0x7f0000000000), 0x1}, 0x0, 0xfffffffffffffffc, 0x80000000, 0x1, 0x8, 0x7c028a02, 0x5, 0x0, 0xffffffff, 0x0, 0x80000001}, r3, 0x7, 0xffffffffffffffff, 0x1) 23:55:25 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:55:25 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:55:26 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) r1 = signalfd(r0, &(0x7f0000001040)={[0x6]}, 0x8) sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001140)={&(0x7f00000010c0)={0x64, 0x1, 0x9, 0x5, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFCTH_STATUS={0x8}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFCTH_STATUS={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x10, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}, @NFCTH_TUPLE={0x18, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @rand_addr=0x64010102}}}]}]}, 0x64}}, 0x0) ioctl$sock_bt_hci(r0, 0x400448e0, &(0x7f0000000040)="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") ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") ioctl$sock_bt_hci(r0, 0x400448ca, 0x0) 23:55:26 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0xc, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x3, 0x2, 0x0, 0xfffffffffffffffc}, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x8) r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x2001) ioctl$SG_IO(r0, 0x2285, 0x0) write$binfmt_elf64(r0, &(0x7f0000000940)={{0x7f, 0x45, 0x4c, 0x46, 0x4f, 0x60, 0x5, 0x0, 0x400, 0x2, 0x3e, 0x3, 0x2b5, 0x40, 0x29b, 0xfffffffa, 0xff, 0x38, 0x1, 0xfff3, 0x101, 0xbba3}, [{0x6474e551, 0x9, 0x40, 0x7fff, 0x6, 0x6, 0x5, 0x5}, {0x60000000, 0x7fff, 0x2, 0x7, 0x18db, 0x6f, 0x7fffffff, 0x7}], "1e564753e51459f42377a4a4892f4e4c53db77962d0049a65842530b7b76d3b3c0325a6c989cb25066463867a2b230ef2e3722ed1dcddcf81ee8b3dd15149def3ef45f7fd4538a00300072177ccab771398fa89067c484d56653f2dcb2eef7dc8717ddc0b75500c64d40538f0e2c12342ebb38acd2d2c8c48cf5babebf44066a2bb82af1394b5018835588971d35cac0a6eef437919e673c5f7e8d4392c70d55d2fc6fb48429229eab8c17b6fff0bcbc063d4cda7155799e8b2cf4e6500f26cbdc8dae7f26b94c3a3238941458c1b5766b3b6cbedb5e3550c7cad7f36fd2d3a4a327", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xb92) fallocate(0xffffffffffffffff, 0x8, 0x4, 0x1) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000001008000180085005529311faa54defc329cff6528a1dc43571e3dd2c9f134687a3df19fc9d00ed24583a6dd53af76065d0501806f3c6bec4f964ae0eb4782dfb0e8ec848e698c44889cf90023d7da32bb73078e4efeae1e12c8dad9d1d9b1ee7f35cf3d47ee845be981af99410b14497346b9e437fcfc996c1f35f946e1363b386fc5d68722f42acb14bba358a8c5d1e6274d501786af8bf6432957afb1a0f313fe8df3917d57b11215b8adae52af90905d6b069862d0ff96087f05fb932700771070f4a5f84a4d", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file1\x00']) kcmp(r1, 0x0, 0x0, r2, r0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@version_L}], [{@context={'context', 0x3d, 'root'}}]}}) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r6, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0xff4d) sendmsg$NL80211_CMD_NEW_MPATH(r3, &(0x7f00000004c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000340)={&(0x7f0000000440)={0x74, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x7, 0x2d}}}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}]}, 0x74}, 0x1, 0x0, 0x0, 0x20048855}, 0x4000004) r7 = fcntl$dupfd(r6, 0x0, r5) bind$bt_l2cap(r7, &(0x7f0000000080)={0x1f, 0x4, @any, 0x400, 0x2}, 0xe) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000140)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000180)) 23:55:26 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) r1 = signalfd(r0, &(0x7f0000001040)={[0x6]}, 0x8) sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001140)={&(0x7f00000010c0)={0x64, 0x1, 0x9, 0x5, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFCTH_STATUS={0x8}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFCTH_STATUS={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x10, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}, @NFCTH_TUPLE={0x18, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @rand_addr=0x64010102}}}]}]}, 0x64}}, 0x0) ioctl$sock_bt_hci(r0, 0x400448e0, &(0x7f0000000040)="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") ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") 23:55:26 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:55:26 executing program 3: open_tree(0xffffffffffffffff, 0x0, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x5b) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x2, 0x8}}, './file1\x00'}) 23:55:26 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) r1 = signalfd(r0, &(0x7f0000001040)={[0x6]}, 0x8) sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001140)={&(0x7f00000010c0)={0x64, 0x1, 0x9, 0x5, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFCTH_STATUS={0x8}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFCTH_STATUS={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x10, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}, @NFCTH_TUPLE={0x18, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @rand_addr=0x64010102}}}]}]}, 0x64}}, 0x0) ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") 23:55:26 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 26) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1858.559432] FAULT_INJECTION: forcing a failure. [ 1858.559432] name failslab, interval 1, probability 0, space 0, times 0 [ 1858.562950] CPU: 1 PID: 9700 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1858.564710] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1858.566870] Call Trace: [ 1858.567573] dump_stack+0x107/0x167 [ 1858.568521] should_fail.cold+0x5/0xa [ 1858.569518] ? create_object.isra.0+0x3a/0xa20 [ 1858.570708] should_failslab+0x5/0x20 [ 1858.571704] kmem_cache_alloc+0x5b/0x310 [ 1858.572751] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1858.574168] create_object.isra.0+0x3a/0xa20 [ 1858.575319] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1858.576644] kmem_cache_alloc+0x159/0x310 [ 1858.577730] security_file_alloc+0x34/0x170 [ 1858.578641] __alloc_file+0xb7/0x320 [ 1858.579608] alloc_empty_file+0x6d/0x170 [ 1858.580683] alloc_file+0x5e/0x5a0 [ 1858.581614] alloc_file_pseudo+0x16a/0x250 [ 1858.582716] ? alloc_file+0x5a0/0x5a0 [ 1858.583735] anon_inode_getfile+0xc8/0x1f0 [ 1858.584841] io_uring_setup+0x138b/0x2980 [ 1858.585924] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1858.587262] ? wait_for_completion_io+0x270/0x270 [ 1858.588536] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1858.589898] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1858.591258] do_syscall_64+0x33/0x40 [ 1858.592230] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1858.593564] RIP: 0033:0x7f624aeccb19 [ 1858.594519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1858.599330] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1858.601322] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1858.603172] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1858.605024] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1858.606860] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1858.608713] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:55:40 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 27) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1873.223421] FAULT_INJECTION: forcing a failure. [ 1873.223421] name failslab, interval 1, probability 0, space 0, times 0 [ 1873.226462] CPU: 1 PID: 9710 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1873.228200] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1873.230307] Call Trace: [ 1873.230974] dump_stack+0x107/0x167 [ 1873.231904] should_fail.cold+0x5/0xa [ 1873.232869] ? io_uring_alloc_task_context+0x99/0x6a0 [ 1873.234172] should_failslab+0x5/0x20 [ 1873.235132] kmem_cache_alloc_trace+0x55/0x320 [ 1873.236305] io_uring_alloc_task_context+0x99/0x6a0 [ 1873.237569] ? io_import_iovec+0x1120/0x1120 [ 1873.238689] ? lock_downgrade+0x6d0/0x6d0 [ 1873.239731] ? do_raw_spin_lock+0x121/0x260 [ 1873.240837] ? rwlock_bug.part.0+0x90/0x90 [ 1873.241918] __io_uring_add_tctx_node+0x2c6/0x520 [ 1873.243132] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1873.244479] ? alloc_fd+0x2e7/0x670 [ 1873.245415] io_uring_setup+0x1fbb/0x2980 [ 1873.246483] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1873.247781] ? wait_for_completion_io+0x270/0x270 [ 1873.249039] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1873.250358] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1873.251682] do_syscall_64+0x33/0x40 [ 1873.252632] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1873.253942] RIP: 0033:0x7f624aeccb19 [ 1873.254877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1873.259586] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1873.261550] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1873.263375] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1873.265207] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1873.267032] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1873.268863] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:55:40 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) readahead(0xffffffffffffffff, 0x6, 0x2e) ftruncate(0xffffffffffffffff, 0x0) openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x418080, 0x110) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x406, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="200000001e00213d3fb1bccb8bf7b93907"], 0x20}}, 0x0) perf_event_open(0x0, 0x0, 0x1, r1, 0x8) ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r1, 0x8983, &(0x7f0000000040)={0x6, 'bridge_slave_0\x00', {0xffff5cfc}, 0x401}) ioprio_set$pid(0x2, 0x0, 0x6000) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)) socket$inet6(0xa, 0x1, 0x8) 23:55:40 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:55:40 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0) 23:55:40 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) signalfd(r0, &(0x7f0000001040)={[0x6]}, 0x8) ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") 23:55:40 executing program 6: syz_emit_ethernet(0x3e, &(0x7f0000000140)=ANY=[@ANYBLOB="1180c2000000aaaa0000aa000800450000300000000000029078030000000000000014009078e000000216542155b6a7fc5b627c187cb94b0af05c2020ec"], 0x0) syz_emit_ethernet(0xf5, &(0x7f0000000000)={@broadcast, @random="0a94f42a4f42", @val={@void, {0x8100, 0x7, 0x1}}, {@x25={0x805, {0x3, 0x0, 0xfb, "24d7a029db8e560bac0c55d829cd5b1fde60d3aaecfa7ac9e58098241b0ea7beeea86e86226298a2f5c97b53ddc6fa91158f2b95ed95ca3357934d15ca741d5150710e4ceee9be4046563bb32f598b34f199a032b6af9170142133b8c0a62375e0fa9d79ba82f37711df486faeb72193ac5bbff9d3ee4736426a0b4f2c56fdf0f41e2fff2e37fca92eb255eeea202791b00643d40f586c1c35deb4787ce5669df1230987ef26f816120d18d26def23900da2400a9163289eb2da60191b977608f839c55faef69842fe3e3cf75a54ad33c0cab3df4b1d57d9d531cc7bbdbd0db7"}}}}, &(0x7f0000000100)={0x1, 0x4, [0xad4, 0xed9, 0x78f, 0x5e4]}) syz_emit_ethernet(0x274, &(0x7f0000000180)={@empty, @local, @val={@val={0x9100, 0x2, 0x0, 0x2}, {0x8100, 0x7, 0x0, 0x3}}, {@ipv6={0x86dd, @gre_packet={0xe, 0x6, "8c081b", 0x236, 0x2f, 0xff, @private2={0xfc, 0x2, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x11}}, {[@dstopts={0x2b, 0x1, '\x00', [@pad1, @ra={0x5, 0x2, 0x400}, @pad1]}], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x880b, 0xb6, 0x1, [0x1000], "4e294ce879a3935b6babfe3a3df6bba53c8486c750e2941cfe0e59c9c736cd468a44ddd38ed4145c8bc19d78408f8032122ebe6dfff825acb503fd834eb968c2cbbf8d1279f2167629c3d9886ea243ba6909f426e2dbb1921aefe36ef2a91238d8cd541ec7f7d709128c84ba7181668ce29fe6aabf9d5e92e1d66d583c03a1791bebd7e6b36f1cada88023b08e253791fbe2a249b735d09633f48315dc5176efdcd2dc38e56b375bb1657e193687ca982ca10b315aa3"}, {0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x800, [0x37], "231f9f7bb2b4e50a76e091bef13cb1246f30cc98011bba83cc33c8194d757a57047d62258b0408dc193e4220c661765f6eb9745f8d918149be2621eeb28809e557fd0fda5d3e8219d6490afd1c125c71af7c4c60f966c2ed5b4f9ff1866aa910a67bfeabd78a2f4ecde74ad2f8e0e24c"}, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x86dd, [], "e3f2503d18bcc725cf96e00e67221ac0a0cfa7e649eb62a1b91205f57b0b7b8028fc5d61c00801696d3b2b3695d29a812358a7dfe385fd0c897a186c9779fbfbcdc81e98b1664f67caff5af8e25aa1f44e0899"}, {0x8, 0x88be, 0x3, {{0x0, 0x1, 0xfb, 0x1, 0x1, 0x0, 0x2, 0x1}, 0x1, {0x800}}}, {0x8, 0x22eb, 0x3, {{0x9, 0x2, 0x1, 0x3, 0x1, 0x0, 0x1, 0x40}, 0x2, {0x9, 0x8, 0x3, 0x7, 0x1, 0x1, 0x2, 0x1}}}, {0x8, 0x6558, 0x3, "702fa0bf79730dacd353dcfa1ea2611c49acd175ed25880e80fb247955b50939d14c21e9c9205a25c36728c5266456cf045af77c2fdbc9e1ac1832d1cdd01d0422c857442797f7c8de0761af13dccd2c495205c405d0ec35d4648d2a0b"}}}}}}}, 0x0) 23:55:40 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 10) 23:55:40 executing program 3: open_tree(0xffffffffffffffff, 0x0, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="280000002000210c0081b293233d78e56c2e1b55856ff8da0000251fdd9539c3dd3607445e00000000039c00000008000000a0a4918f1b603fb9c33c357f6ff7", @ANYRES32=0x0, @ANYBLOB="0c0011000000000000000000"], 0x28}}, 0x0) close_range(r2, r1, 0x0) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000280)={0x6, 0x0, 0x5}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x28, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x28}}, 0x0) sendmsg$NL80211_CMD_DEL_PMK(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x68, r4, 0x1, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x68}, 0x1, 0x0, 0x0, 0x40000}, 0x11) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) 23:55:41 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") [ 1873.427461] FAULT_INJECTION: forcing a failure. [ 1873.427461] name failslab, interval 1, probability 0, space 0, times 0 [ 1873.430439] CPU: 1 PID: 9718 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 1873.431925] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1873.433700] Call Trace: [ 1873.434292] dump_stack+0x107/0x167 [ 1873.435107] should_fail.cold+0x5/0xa [ 1873.435954] ? create_object.isra.0+0x3a/0xa20 [ 1873.436959] should_failslab+0x5/0x20 [ 1873.437797] kmem_cache_alloc+0x5b/0x310 [ 1873.438718] create_object.isra.0+0x3a/0xa20 [ 1873.439671] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1873.440808] kmem_cache_alloc+0x159/0x310 [ 1873.441751] ext4_alloc_io_end_vec+0x1f/0x120 [ 1873.442732] ext4_writepages+0x17a5/0x3350 [ 1873.443826] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1873.444895] ? SOFTIRQ_verbose+0x10/0x10 [ 1873.445917] ? __lock_acquire+0x1657/0x5b00 [ 1873.446933] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1873.448110] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1873.449173] do_writepages+0xee/0x2a0 [ 1873.450029] ? page_writeback_cpu_online+0x20/0x20 [ 1873.451107] ? lock_acquire+0x197/0x470 [ 1873.451989] ? __ext4_ioctl+0x1543/0x4190 [ 1873.452909] ? lock_release+0x680/0x680 [ 1873.453810] __filemap_fdatawrite_range+0x24b/0x2f0 [ 1873.454900] ? delete_from_page_cache_batch+0xa30/0xa30 [ 1873.456104] ? down_write+0xe0/0x160 [ 1873.456927] ? down_write_killable+0x180/0x180 [ 1873.457950] filemap_write_and_wait_range+0x65/0x100 [ 1873.459058] __ext4_ioctl+0x1578/0x4190 [ 1873.459991] ? ext4_reset_inode_seed+0x450/0x450 [ 1873.461017] ? perf_trace_lock+0xac/0x490 [ 1873.461922] ? SOFTIRQ_verbose+0x10/0x10 [ 1873.462875] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1873.464107] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1873.465237] ? do_vfs_ioctl+0x283/0x10d0 [ 1873.466115] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1873.467262] ? generic_block_fiemap+0x60/0x60 [ 1873.468243] ? lock_downgrade+0x6d0/0x6d0 [ 1873.469175] ? clockevents_program_event+0x131/0x360 [ 1873.470331] ? selinux_file_ioctl+0xb6/0x270 [ 1873.471318] ? __ext4_ioctl+0x4190/0x4190 [ 1873.472253] __x64_sys_ioctl+0x19a/0x210 [ 1873.473154] do_syscall_64+0x33/0x40 [ 1873.473971] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1873.475075] RIP: 0033:0x7f93b5e79b19 [ 1873.475897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1873.479841] RSP: 002b:00007f93b33ef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1873.481486] RAX: ffffffffffffffda RBX: 00007f93b5f8cf60 RCX: 00007f93b5e79b19 [ 1873.483028] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 1873.484577] RBP: 00007f93b33ef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1873.486110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1873.487648] R13: 00007ffe7c940f6f R14: 00007f93b33ef300 R15: 0000000000022000 23:55:56 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 11) 23:55:56 executing program 1: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, &(0x7f0000000300)) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x9080, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffffffffffff, 0xee00}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000001700)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYRES32=r3, @ANYRES32=0xee01, @ANYBLOB="2e2f66696c652fe1451d4e7b754bc7f05f0ff404807bf64d176a29993195992c14f39ee8328796f81d1886f6cb48f1ed71a941835b5840190114208ef9dda4756eab00fcd38d0a302906ffc3e8f25260ef7b4e28db855ed9e895bd4b0fbdedef955a9ddf4161dc9347ef97623a3ebf9ca8933a81653dd955d769a92740fbed0519a0fe8fb2bb1420fa5a24997c0cf4682cd464c3bcd44c267b10cfd7565652376257be8c2ef9d94e9ad1d44011543b4d0e2c77577a1157a58a7edab4a0981d3549776f00"/210]) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000100)={0x3000000a}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = dup(r5) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) preadv(r6, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0xffff57e9, 0x4) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000440)={0x2000}) r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x80202, 0x100) r8 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r8, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0x4) sendmsg$nl_generic(r8, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000001a0011cd"], 0x1c}}, 0x0) readv(r8, &(0x7f0000000400)=[{&(0x7f0000000180)=""/43, 0x2b}], 0x1) openat(r7, &(0x7f0000000380)='./file0\x00', 0x20000, 0x20) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) 23:55:56 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x30803, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000009c0)=ANY=[@ANYBLOB="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"/865], 0x98}}, 0x0) close_range(r1, r0, 0x0) fcntl$addseals(r1, 0x409, 0x8) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000440)=0x7, 0x4) r2 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd_index=0x3, 0x8, &(0x7f0000000140)="ef3003e7d4d5730dd9bc0d2116cbd2ec2d4cef0397c67262d0882d05da47c1147ab3a8e1b3dfac797791d00529f0be39c7c3024d4751fcbfb4d3ec4b7b6dc1", 0x3f, 0xc, 0x1}, 0x9) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000640)={{{@in=@initdev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in=@multicast1}}, &(0x7f0000000240)=0xe8) sendmsg$nl_generic(r1, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000003c0)={&(0x7f0000003580)=ANY=[@ANYBLOB="5c160000110009052abd7000fcdbdf251400000014001900fe8000000000000000000000000000328d018f8008004000640101010e00340069645f6c656761637900000008001600", @ANYRES32, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="08008700", @ANYRES32=0x0, @ANYBLOB="055e3a623c51b7115cd4cdf26163a5835090cebaa69c623c3de17f1e93405d7e03b7d7111ee8b1f4b15e2608196667467e998bbb6b8a6f0fc5cdf139e5c024895a0b03c2b6e6cecc03a38f3381ce2b6ec05aee525c322298c88753834fc9b2cf842c9790a32a1115d8437a646dcbbf5c595531f32df31cbd592b52250e750574127828fdc8e3fe601a529b9d53a077ff6c3f72491165b2256b87a5552e3ee7d38fb817ce24262f326e30af9472cdade88710518aff0c3ff63ef25edc696bf65ff573f1dc1586e66515fee894579e250db3ff845cb5853919f1b01c410c0eff5a880c822d5953d28f2f31a48b3a09df90de5ff0aa066c", @ANYRES32=0xee01, @ANYBLOB='\b\x00m\x00', @ANYRES32=r3, @ANYBLOB="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"], 0x165c}, 0x1, 0x0, 0x0, 0x80}, 0x4000) r4 = add_key$keyring(&(0x7f0000000080), 0x0, 0x0, 0x0, r2) add_key$keyring(&(0x7f0000000000), &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, r2) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000500)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r1, &(0x7f0000000780)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000740)={&(0x7f0000000480)={0x30, 0x0, 0x18, 0x70bd28, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x1c, 0x3f}}}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x81}, 0x800) request_key(&(0x7f00000002c0)='id_legacy\x00', &(0x7f0000000340)={'syz', 0x2}, &(0x7f0000000380)='\x00', r4) r5 = add_key(&(0x7f0000000200)='keyring\x00', &(0x7f00000004c0)={'syz', 0x1}, &(0x7f0000000540)="18726d0eed55eaa57fc580dc3a0b12e0a5ee08da294ac8119c4c73f93694f2a935d17a81959d084839f846dca8739131e4a9c45c6509af44529537eae3b5a4793a9a0aacfd7a75f2b566b874939829b82a35d20d1985a92c5d7ba971251e89286f64438db33a7f05fb0d1707fd3fa27a56032a79c1d09558fbbfcb2e5f36d3e7e1c749ad35c2064fa087cf6359507a36eb69853e0cdd920cbb7586aedf5a2e5a9a1a6b8d11c08a14918b01d07c92179dfae1ef58835b5fa4be28fbd3b3eac1c9f3cf74fbe25748c55d23902439133eecfafb2e0f", 0xd4, 0xfffffffffffffffa) add_key(0x0, 0x0, 0x0, 0x0, r5) syz_open_procfs(0xffffffffffffffff, 0x0) unshare(0x48020200) 23:55:56 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:55:56 executing program 3: open_tree(0xffffffffffffffff, 0x0, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="280000002000210c0081b293233d78e56c2e1b55856ff8da0000251fdd9539c3dd3607445e00000000039c00000008000000a0a4918f1b603fb9c33c357f6ff7", @ANYRES32=0x0, @ANYBLOB="0c0011000000000000000000"], 0x28}}, 0x0) close_range(r2, r1, 0x0) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000280)={0x6, 0x0, 0x5}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x28, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x28}}, 0x0) sendmsg$NL80211_CMD_DEL_PMK(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x68, r4, 0x1, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x68}, 0x1, 0x0, 0x0, 0x40000}, 0x11) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) 23:55:56 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") [ 1888.932412] netlink: 124 bytes leftover after parsing attributes in process `syz-executor.6'. 23:55:56 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x4, 0x0, 0x0, 0x0) 23:55:56 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 28) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1888.966794] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1888.973566] FAULT_INJECTION: forcing a failure. [ 1888.973566] name failslab, interval 1, probability 0, space 0, times 0 [ 1888.976905] CPU: 1 PID: 9754 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1888.978347] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1888.980108] Call Trace: [ 1888.980677] dump_stack+0x107/0x167 [ 1888.981448] should_fail.cold+0x5/0xa [ 1888.982254] ? create_object.isra.0+0x3a/0xa20 [ 1888.983228] should_failslab+0x5/0x20 [ 1888.984027] kmem_cache_alloc+0x5b/0x310 [ 1888.984904] create_object.isra.0+0x3a/0xa20 [ 1888.985826] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1888.986902] kmem_cache_alloc_trace+0x151/0x320 [ 1888.987885] io_uring_alloc_task_context+0x99/0x6a0 [ 1888.988948] ? io_import_iovec+0x1120/0x1120 [ 1888.989879] ? lock_downgrade+0x6d0/0x6d0 [ 1888.990750] ? do_raw_spin_lock+0x121/0x260 [ 1888.991655] ? rwlock_bug.part.0+0x90/0x90 [ 1888.992560] __io_uring_add_tctx_node+0x2c6/0x520 [ 1888.993574] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1888.994679] ? alloc_fd+0x2e7/0x670 [ 1888.995465] io_uring_setup+0x1fbb/0x2980 [ 1888.996356] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1888.997434] ? wait_for_completion_io+0x270/0x270 [ 1888.998475] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1888.999573] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1888.999601] FAULT_INJECTION: forcing a failure. [ 1888.999601] name failslab, interval 1, probability 0, space 0, times 0 [ 1889.000668] do_syscall_64+0x33/0x40 [ 1889.000688] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1889.000700] RIP: 0033:0x7f624aeccb19 [ 1889.000717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1889.000727] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1889.000747] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1889.000757] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1889.000768] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1889.000778] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1889.000788] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 [ 1889.021879] CPU: 0 PID: 9748 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 1889.023288] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1889.025005] Call Trace: [ 1889.025564] dump_stack+0x107/0x167 [ 1889.026342] should_fail.cold+0x5/0xa [ 1889.027150] ? ext4_find_extent+0xa77/0xd70 [ 1889.028057] should_failslab+0x5/0x20 [ 1889.028860] __kmalloc+0x72/0x390 [ 1889.029621] ext4_find_extent+0xa77/0xd70 [ 1889.030491] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1889.031568] ext4_ext_map_blocks+0x1c8/0x5830 [ 1889.032593] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1889.033669] ? SOFTIRQ_verbose+0x10/0x10 [ 1889.034502] ? perf_trace_lock+0xac/0x490 [ 1889.035378] ? SOFTIRQ_verbose+0x10/0x10 [ 1889.036251] ? __lockdep_reset_lock+0x180/0x180 [ 1889.037243] ? ext4_ext_release+0x10/0x10 [ 1889.038125] ? ext4_map_blocks+0x5cd/0x1910 [ 1889.039039] ? lock_release+0x680/0x680 [ 1889.039880] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1889.040891] ? lock_downgrade+0x6d0/0x6d0 [ 1889.041809] ? down_write+0xe0/0x160 [ 1889.042589] ? down_write_killable+0x180/0x180 [ 1889.043584] ext4_map_blocks+0x63f/0x1910 [ 1889.044504] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1889.045430] ? trace_hardirqs_on+0x5b/0x180 [ 1889.046352] ? kmem_cache_alloc+0x2a6/0x310 [ 1889.047299] ext4_writepages+0x19bf/0x3350 [ 1889.048368] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1889.049380] ? SOFTIRQ_verbose+0x10/0x10 [ 1889.050355] ? __lock_acquire+0x1657/0x5b00 [ 1889.051333] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1889.052469] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1889.053484] do_writepages+0xee/0x2a0 [ 1889.054312] ? page_writeback_cpu_online+0x20/0x20 [ 1889.055347] ? lock_acquire+0x197/0x470 [ 1889.056177] ? __ext4_ioctl+0x1543/0x4190 [ 1889.057086] ? lock_release+0x680/0x680 [ 1889.057949] __filemap_fdatawrite_range+0x24b/0x2f0 [ 1889.058995] ? delete_from_page_cache_batch+0xa30/0xa30 [ 1889.060134] ? down_write+0xe0/0x160 [ 1889.060931] ? down_write_killable+0x180/0x180 [ 1889.061919] filemap_write_and_wait_range+0x65/0x100 [ 1889.062985] __ext4_ioctl+0x1578/0x4190 [ 1889.063865] ? ext4_reset_inode_seed+0x450/0x450 [ 1889.064877] ? perf_trace_lock+0xac/0x490 [ 1889.065733] ? SOFTIRQ_verbose+0x10/0x10 [ 1889.066652] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1889.067837] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1889.068927] ? do_vfs_ioctl+0x283/0x10d0 [ 1889.069782] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1889.070871] ? generic_block_fiemap+0x60/0x60 [ 1889.071804] ? lock_downgrade+0x6d0/0x6d0 [ 1889.072690] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1889.073723] ? wait_for_completion_io+0x270/0x270 [ 1889.074775] ? selinux_file_ioctl+0xb6/0x270 [ 1889.075713] ? __ext4_ioctl+0x4190/0x4190 [ 1889.076603] __x64_sys_ioctl+0x19a/0x210 [ 1889.077454] do_syscall_64+0x33/0x40 [ 1889.078232] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1889.079299] RIP: 0033:0x7f93b5e79b19 [ 1889.080076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1889.083831] RSP: 002b:00007f93b33ef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1889.085411] RAX: ffffffffffffffda RBX: 00007f93b5f8cf60 RCX: 00007f93b5e79b19 [ 1889.086876] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 1889.088361] RBP: 00007f93b33ef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1889.089823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1889.091275] R13: 00007ffe7c940f6f R14: 00007f93b33ef300 R15: 0000000000022000 23:55:56 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") [ 1889.102396] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1889.103867] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1889.112733] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1889.153787] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 23:55:56 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000001c80)=[{{&(0x7f0000000000)={0xa, 0x4e24, 0x2, @mcast1}, 0x1c, 0x0}}, {{&(0x7f0000000280)={0xa, 0x4e20, 0x0, @dev}, 0x1c, &(0x7f0000000480)=[{&(0x7f00000002c0)}, {&(0x7f0000000640)="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", 0x1000}], 0x2, &(0x7f0000000500)=[@dontfrag={{0x14, 0x29, 0x3e, 0x1}}], 0x18}}], 0x2, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$sock_TIOCINQ(r1, 0x541b, 0x0) setsockopt$inet6_opts(r1, 0x29, 0x37, &(0x7f0000000040)=@fragment={0x6c, 0x0, 0x6a, 0x1, 0x0, 0x19, 0x68}, 0x8) fcntl$dupfd(r0, 0xaec189fd75db754b, r0) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="280000002000210c00000000000000000200000008000000", @ANYRES32=0x0, @ANYBLOB="0c0011000000000000000000ae7098e193c47c52f70b060bf211867a90f566f6f7ccb6a537bd93743d5cfceaa7ad68d17ab310a929d2c94df8f47a20848cfe64bf86fb37ad1f694b2fd100a6356b9ec766f5ada7d426519cf243a85a58c795558682beb6a42bd100"/115], 0x28}}, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) close_range(r5, r4, 0x0) sendmsg$nl_generic(r5, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB], 0x14}}, 0x20040000) sendmsg$BATADV_CMD_SET_MESH(r5, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000600)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="eb0127222c15fd0aa6e99f25be9abd7000fedbdf250f40000005003c0006eaffff070007000000000008003b00070000000000000000000a821ade48b987dc21abc748daa3258b776d5a17da570a83b3de90bf31a4c7934e3e4146f115fdbc4296d32dc0ec4440e2cffb9cfe86809c018efa64bded78265289e3f969667af4b7d897dbf353314fd5c4b38cf3b22db3a62bd0b5583ab495dc13a6f3380b301f3c616dc7d094922978e7a939c66a835bffc911229b6e655718ff9c31a007f6e4ab0584e48d"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) ioctl$sock_SIOCADDRT(r5, 0x890b, &(0x7f0000000200)={0x0, @qipcrtr={0x2a, 0xffffffffffffffff, 0x4000}, @vsock, @l2tp={0x2, 0x0, @multicast1, 0x3}, 0xed, 0x0, 0x0, 0x0, 0x4, 0x0, 0xbc1, 0x3, 0x1}) close_range(r3, r2, 0x0) sendmsg$nl_generic(r3, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB], 0x14}}, 0x20040000) sendmsg$BATADV_CMD_SET_MESH(r3, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000600)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="eb0127222c15fd0aa6e99f25be9abd7000fedbdf250f40000005003c0006eaffff070007000000000008003b00070000000000000000000a821ade48b987dc21abc748daa3258b776d5a17da570a83b3de90bf31a4c7934e3e4146f115fdbc4296d32dc0ec4440e2cffb9cfe86809c018efa64bded78265289e3f969667af4b7d897dbf353314fd5c4b38cf3b22db3a62bd0b5583ab495dc13a6f3380b301f3c616dc7d094922978e7a939c66a835bffc911229b6e655718ff9c31a007f6e4ab0584e48d"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x2c, 0x0, 0x100, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4805}, 0x4) 23:55:57 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1889.268576] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9770 comm=syz-executor.6 23:55:57 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") 23:55:57 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x9) syz_open_dev$vcsu(&(0x7f00000000c0), 0x200, 0x8000) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r1, 0x8, 0x0, 0x8000) fchmodat(r1, &(0x7f0000000040)='./file1\x00', 0x128) fallocate(r0, 0x0, 0x0, 0x1000002) r2 = fcntl$dupfd(r1, 0x0, r1) perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x1, 0x13, 0xff, 0x3, 0x0, 0x2, 0x1, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x9, 0x0, @perf_config_ext={0x100}, 0x20, 0xfffffffffffff2ef, 0x5, 0x2, 0x8, 0xffff7fff, 0x4, 0x0, 0x0, 0x0, 0x23ef}, 0x0, 0xffffffffffffffff, r2, 0xb) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) close_range(r4, r3, 0x0) write$binfmt_elf64(r3, &(0x7f0000000500)={{0x7f, 0x45, 0x4c, 0x46, 0x2, 0x3, 0x1b, 0x0, 0xdc4, 0x3, 0x3, 0x2, 0x91, 0x40, 0x2e8, 0x7b2, 0x40, 0x38, 0x2, 0x4, 0x0, 0x6}, [{0x70000000, 0x6, 0x7, 0x4, 0x6, 0x101, 0xffffffffffffff00, 0x10000}, {0x5, 0xff, 0xdea, 0x2, 0x377, 0x31fe, 0xffffffff, 0x585c}], "28643b96cfb0c0560cb28c78c57c6f881db4b9a28498e3376b19147e4ea58a4d65bc071247bb602498ca550a083c344cfc323b", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x5e3) 23:55:57 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 29) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:55:57 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 12) 23:55:57 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x80641, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000000240), 0x9}, 0x580, 0x0, 0x0, 0xb9998546a837ad48, 0x0, 0x0, 0x1, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x5e20, 0x6, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) r1 = accept4(r0, 0x0, &(0x7f0000000180), 0x800) recvmsg(r1, &(0x7f0000000480)={&(0x7f00000001c0)=@pppoe={0x18, 0x0, {0x0, @link_local}}, 0x80, 0x0, 0x0, &(0x7f0000000400)=""/104, 0x68}, 0x40000000) r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r2, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x3) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) getsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000280), 0x10) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$getown(r3, 0x9) readv(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f00000004c0)=""/4089, 0xff9}], 0x1) syz_io_uring_submit(r2, 0x0, &(0x7f0000000300)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x1}}, 0xb3f0) write$P9_RUNLINKAT(r3, &(0x7f0000000040)={0x7}, 0x7) fallocate(r3, 0x20, 0x0, 0x8000) [ 1889.415385] FAULT_INJECTION: forcing a failure. [ 1889.415385] name failslab, interval 1, probability 0, space 0, times 0 [ 1889.418152] CPU: 1 PID: 9781 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1889.419548] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1889.421248] Call Trace: [ 1889.421795] dump_stack+0x107/0x167 [ 1889.422537] should_fail.cold+0x5/0xa [ 1889.423305] ? create_object.isra.0+0x3a/0xa20 [ 1889.424231] should_failslab+0x5/0x20 [ 1889.425012] kmem_cache_alloc+0x5b/0x310 [ 1889.425841] create_object.isra.0+0x3a/0xa20 [ 1889.426736] kmemleak_alloc_percpu+0xa0/0x100 [ 1889.427648] pcpu_alloc+0x4e2/0x1240 [ 1889.428423] __percpu_counter_init+0x10d/0x2d0 [ 1889.429355] io_uring_alloc_task_context+0xcc/0x6a0 [ 1889.430362] ? io_import_iovec+0x1120/0x1120 [ 1889.431248] ? lock_downgrade+0x6d0/0x6d0 [ 1889.432085] ? do_raw_spin_lock+0x121/0x260 [ 1889.433006] ? rwlock_bug.part.0+0x90/0x90 [ 1889.434069] __io_uring_add_tctx_node+0x2c6/0x520 [ 1889.435049] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1889.436102] ? alloc_fd+0x2e7/0x670 [ 1889.437025] io_uring_setup+0x1fbb/0x2980 [ 1889.437875] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1889.438901] ? wait_for_completion_io+0x270/0x270 [ 1889.439890] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1889.440954] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1889.441987] do_syscall_64+0x33/0x40 [ 1889.442738] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1889.443769] RIP: 0033:0x7f624aeccb19 [ 1889.444528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1889.448222] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1889.449775] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1889.451189] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1889.452615] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1889.454027] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1889.455440] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:55:57 executing program 2: bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") 23:55:57 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x6, 0x0, 0x0, 0x0) [ 1889.587325] FAULT_INJECTION: forcing a failure. [ 1889.587325] name failslab, interval 1, probability 0, space 0, times 0 [ 1889.589614] CPU: 1 PID: 9787 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 1889.590904] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1889.592478] Call Trace: [ 1889.592992] dump_stack+0x107/0x167 [ 1889.593706] should_fail.cold+0x5/0xa [ 1889.594444] ? create_object.isra.0+0x3a/0xa20 [ 1889.595325] should_failslab+0x5/0x20 [ 1889.596055] kmem_cache_alloc+0x5b/0x310 [ 1889.596866] create_object.isra.0+0x3a/0xa20 [ 1889.597697] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1889.598668] __kmalloc+0x16e/0x390 [ 1889.599370] ext4_find_extent+0xa77/0xd70 [ 1889.600154] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1889.601137] ext4_ext_map_blocks+0x1c8/0x5830 [ 1889.602042] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1889.603027] ? SOFTIRQ_verbose+0x10/0x10 [ 1889.603787] ? perf_trace_lock+0xac/0x490 [ 1889.604573] ? SOFTIRQ_verbose+0x10/0x10 [ 1889.605359] ? __lockdep_reset_lock+0x180/0x180 [ 1889.606237] ? ext4_ext_release+0x10/0x10 [ 1889.607035] ? ext4_map_blocks+0x5cd/0x1910 [ 1889.607869] ? lock_release+0x680/0x680 [ 1889.608639] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1889.609722] ? lock_downgrade+0x6d0/0x6d0 [ 1889.610596] ? down_write+0xe0/0x160 [ 1889.611301] ? down_write_killable+0x180/0x180 23:55:57 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = dup2(r0, r0) ioctl$HIDIOCINITREPORT(r1, 0x550c, 0x20000000) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000000)='\\-.[/[\x00') r3 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3, {0xffffffffffffffff, 0xee01}}, './file0\x00'}) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x12, r4, 0xc76cc000) fsetxattr$security_ima(r3, &(0x7f0000000100), &(0x7f0000000200)=@ng={0x4, 0x14, "e2"}, 0x3, 0x2) syz_mount_image$nfs(&(0x7f0000000240), &(0x7f00000002c0)='./file0/../file0\x00', 0x6, 0x3, &(0x7f0000000500)=[{&(0x7f0000000300)="b09456e1cc1abe3be01b5ab628f4f34a9a6cc65a92f9877ae3771e21d09c820335483bdc14c4696a6b7661a1c0cd40bf760bbd9d7976fb11c6db4c32f90d212b2447c78c0bb70e2341b9135a36e3d037b1", 0x51, 0xffffffffffffffff}, {&(0x7f00000003c0)="734392bf111e34ad89833539b8bc9d0c90f5905723c06cb62a77178037bdf869a9e9f9cf93423b1c6c08e00a09fffd1739e62303500b707c15a15ce9cff7d35d67b8f1929ea5dbb86e30efc44374d16ea8b43e80ec4d305a95b6b85adc47c8abfc", 0x61, 0x40}, {0x0, 0x0, 0x5}], 0x0, &(0x7f0000000580)={[{'-$'}, {'rfdno'}, {'9p\x00'}, {'[\x89'}], [{@hash}]}) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = getpid() perf_event_open(&(0x7f0000000440)={0x1, 0x80, 0x1, 0x3f, 0xa2, 0xbe, 0x0, 0x8, 0x40, 0x7, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x5, 0x0, @perf_config_ext={0x6, 0x7}, 0x22a, 0xf2, 0x1, 0x4, 0x8001, 0x401, 0x9, 0x0, 0x4, 0x0, 0x7}, r6, 0x8, 0xffffffffffffffff, 0x2) r7 = dup2(0xffffffffffffffff, 0xffffffffffffffff) fcntl$F_SET_RW_HINT(r7, 0x40c, &(0x7f0000000140)=0x7c0283a40842d60c) mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000005c0)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@noextend}, {@fscache}, {@version_L}, {@cache_loose}, {@posixacl}, {@uname={'uname', 0x3d, 'hash'}}, {@version_9p2000}, {@version_L}]}}) 23:55:57 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 30) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:55:57 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1889.612207] ext4_map_blocks+0x63f/0x1910 [ 1889.613198] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1889.614050] ? trace_hardirqs_on+0x5b/0x180 [ 1889.614884] ? kmem_cache_alloc+0x2a6/0x310 [ 1889.615746] ext4_writepages+0x19bf/0x3350 23:55:57 executing program 2: bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") [ 1889.616703] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1889.617758] ? SOFTIRQ_verbose+0x10/0x10 [ 1889.618644] ? __lock_acquire+0x1657/0x5b00 [ 1889.619529] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1889.620532] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1889.621441] do_writepages+0xee/0x2a0 [ 1889.622170] ? page_writeback_cpu_online+0x20/0x20 [ 1889.623094] ? lock_acquire+0x197/0x470 [ 1889.623833] ? __ext4_ioctl+0x1543/0x4190 [ 1889.624630] ? lock_release+0x680/0x680 [ 1889.625406] __filemap_fdatawrite_range+0x24b/0x2f0 [ 1889.626338] ? delete_from_page_cache_batch+0xa30/0xa30 [ 1889.627352] ? down_write+0xe0/0x160 [ 1889.628045] ? down_write_killable+0x180/0x180 [ 1889.628941] filemap_write_and_wait_range+0x65/0x100 [ 1889.629902] __ext4_ioctl+0x1578/0x4190 [ 1889.630698] ? ext4_reset_inode_seed+0x450/0x450 [ 1889.631586] ? perf_trace_lock+0xac/0x490 [ 1889.632369] ? SOFTIRQ_verbose+0x10/0x10 [ 1889.633190] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1889.634260] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1889.635233] ? do_vfs_ioctl+0x283/0x10d0 [ 1889.635995] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1889.636994] ? generic_block_fiemap+0x60/0x60 [ 1889.637830] ? lock_downgrade+0x6d0/0x6d0 [ 1889.638612] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1889.639535] ? wait_for_completion_io+0x270/0x270 [ 1889.640479] ? selinux_file_ioctl+0xb6/0x270 [ 1889.641318] ? __ext4_ioctl+0x4190/0x4190 [ 1889.642104] __x64_sys_ioctl+0x19a/0x210 [ 1889.642871] do_syscall_64+0x33/0x40 [ 1889.643570] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1889.644517] RIP: 0033:0x7f93b5e79b19 [ 1889.645207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1889.648596] RSP: 002b:00007f93b33ef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1889.650003] RAX: ffffffffffffffda RBX: 00007f93b5f8cf60 RCX: 00007f93b5e79b19 [ 1889.651306] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 1889.652632] RBP: 00007f93b33ef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1889.653215] kauditd_printk_skb: 1 callbacks suppressed [ 1889.653233] audit: type=1400 audit(1738626957.407:37): avc: denied { map } for pid=9793 comm="syz-executor.1" path="pipe:[32946]" dev="pipefs" ino=32946 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=fifo_file permissive=1 [ 1889.653938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1889.653953] R13: 00007ffe7c940f6f R14: 00007f93b33ef300 R15: 0000000000022000 23:55:57 executing program 6: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r0, 0x0, 0x0, 0x1000002) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) close_range(r4, r3, 0x0) stat(&(0x7f00000000c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r5, 0x0) r6 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x38) statx(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x100, 0x8, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, &(0x7f0000000500)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@dfltgid={'dfltgid', 0x3d, r7}}, {@posixacl}, {@loose}, {@version_u}, {@dfltgid={'dfltgid', 0x3d, r8}}, {@version_9p2000}], [{@fowner_eq}, {@dont_hash}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@smackfshat={'smackfshat', 0x3d, '\',\'A'}}, {@seclabel}, {@pcr={'pcr', 0x3d, 0x33}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@appraise}]}}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3, {r5, r7}}, './file1\x00'}) sendfile(r1, r2, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0) [ 1889.689834] FAULT_INJECTION: forcing a failure. [ 1889.689834] name failslab, interval 1, probability 0, space 0, times 0 [ 1889.692207] CPU: 1 PID: 9800 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1889.693438] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1889.694914] Call Trace: [ 1889.695383] dump_stack+0x107/0x167 [ 1889.696028] should_fail.cold+0x5/0xa [ 1889.696705] ? create_object.isra.0+0x3a/0xa20 [ 1889.697511] should_failslab+0x5/0x20 [ 1889.698177] kmem_cache_alloc+0x5b/0x310 [ 1889.698907] create_object.isra.0+0x3a/0xa20 [ 1889.699685] kmemleak_alloc_percpu+0xa0/0x100 [ 1889.700484] pcpu_alloc+0x4e2/0x1240 [ 1889.701153] __percpu_counter_init+0x10d/0x2d0 [ 1889.701952] ? __sanitizer_cov_trace_pc+0x45/0x60 [ 1889.702799] io_uring_alloc_task_context+0xcc/0x6a0 [ 1889.703674] ? io_import_iovec+0x1120/0x1120 [ 1889.704463] ? lock_downgrade+0x6d0/0x6d0 [ 1889.705199] ? do_raw_spin_lock+0x121/0x260 [ 1889.705954] ? rwlock_bug.part.0+0x90/0x90 [ 1889.706701] __io_uring_add_tctx_node+0x2c6/0x520 [ 1889.707542] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1889.708484] ? alloc_fd+0x2e7/0x670 [ 1889.709134] io_uring_setup+0x1fbb/0x2980 [ 1889.709870] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1889.710759] ? wait_for_completion_io+0x270/0x270 [ 1889.711609] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1889.712539] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1889.713440] do_syscall_64+0x33/0x40 [ 1889.714079] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1889.714974] RIP: 0033:0x7f624aeccb19 [ 1889.715611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1889.718807] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1889.720133] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1889.721379] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1889.722613] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1889.723861] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1889.725111] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 [ 1890.064259] Zero length message leads to an empty skb 23:56:13 executing program 6: r0 = syz_open_dev$mouse(&(0x7f0000000040), 0x8000, 0x480000) sendto(r0, &(0x7f0000000080)="4b8eeae3353990def416a57839b5e79afa972ea4fd3ccba00fc4fe19f5882490643680ce712789295e00066aae418abc6e93009a43ebcfd65f757df531ad9e001125a8194c466634b6f3d9cc540050146367f2a622627f98d2eefca01e14aee946cd1f138339d3820facd21a20985011687b73f029575f122e0d490e7feea965ed90d67383323c86ac1348ac8c7985ae8d5a6bdbf6b9997b9ce24811136362150a4a32179f3cf3f18016964ad5c7749668f58558fc414a2b4457cdae3bddd9055b7341d222d121d26b001d7cd2f3ad3dd37ac3dc0cca5efb9e153fae35e916548b5530f31871c2ee2db5f8715519", 0xee, 0x40, 0x0, 0x0) r1 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000100)}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) syz_io_uring_submit(r4, r3, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000006, 0x30, r0, 0x8000000) syz_io_uring_submit(r5, r3, &(0x7f00000001c0)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x5, 0x0, r0, &(0x7f0000000180)}, 0x5) r6 = accept4$packet(0xffffffffffffffff, &(0x7f0000000200), &(0x7f0000000240)=0x14, 0x40800) setsockopt(r6, 0x8, 0xffffffff, &(0x7f0000000280)="362caaf938de67aa0e06a5b4b411eb3b94d342826e0522b3c7b5dfbd3d857ed13b57354552a72c6a99bb7067185a21e11f02", 0x32) r7 = mq_open(&(0x7f0000000000)='\xe1\xdc\x92', 0x1, 0x0, 0x0) ftruncate(r7, 0x100000000) 23:56:13 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x9) syz_open_dev$vcsu(&(0x7f00000000c0), 0x200, 0x8000) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r1, 0x8, 0x0, 0x8000) fchmodat(r1, &(0x7f0000000040)='./file1\x00', 0x128) fallocate(r0, 0x0, 0x0, 0x1000002) r2 = fcntl$dupfd(r1, 0x0, r1) perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x1, 0x13, 0xff, 0x3, 0x0, 0x2, 0x1, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x9, 0x0, @perf_config_ext={0x100}, 0x20, 0xfffffffffffff2ef, 0x5, 0x2, 0x8, 0xffff7fff, 0x4, 0x0, 0x0, 0x0, 0x23ef}, 0x0, 0xffffffffffffffff, r2, 0xb) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) close_range(r4, r3, 0x0) write$binfmt_elf64(r3, &(0x7f0000000500)={{0x7f, 0x45, 0x4c, 0x46, 0x2, 0x3, 0x1b, 0x0, 0xdc4, 0x3, 0x3, 0x2, 0x91, 0x40, 0x2e8, 0x7b2, 0x40, 0x38, 0x2, 0x4, 0x0, 0x6}, [{0x70000000, 0x6, 0x7, 0x4, 0x6, 0x101, 0xffffffffffffff00, 0x10000}, {0x5, 0xff, 0xdea, 0x2, 0x377, 0x31fe, 0xffffffff, 0x585c}], "28643b96cfb0c0560cb28c78c57c6f881db4b9a28498e3376b19147e4ea58a4d65bc071247bb602498ca550a083c344cfc323b", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x5e3) 23:56:13 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 31) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:56:13 executing program 1: syz_io_uring_complete(0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000340)={{0x1, 0x1, 0x18}, './file0\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x80080, 0x0) readlinkat(r0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000380)=""/137, 0x89) mount$cgroup(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000001c0)={[{@subsystem='freezer'}]}) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) syz_mount_image$ext4(&(0x7f00000000c0)='ext3\x00', &(0x7f0000000300)='./file1\x00', 0x2, 0x8, &(0x7f0000001900)=[{&(0x7f0000000440)="d405e283798ce2f69ccb10c6fb1777da8c197892dd2bbe089540594ee2b85232b40670d9ed9c98246a9c840f72b1d6de014f1b3d55d77f03319da38128549d4cf312e22c04bc9f2d79e97f7d7956c585c3fd05", 0x53, 0x2}, {&(0x7f00000004c0)="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", 0x1000, 0x3}, {&(0x7f00000014c0)="12c51452c07d1e4297ed1dc376601408de32e80d458792ec6a741e69ce1cd553b842c822a5352837a8d19bad3fd1817fdfeb060ac775b293d85a95f5bc8240678a1022d822b9e4c0853845dc928b0de52baf298e603903ceb0b94d04893f7a66115b20dc20cd2cc8de693962b73347bfc069c72ac3b767ac65b2eea9c25deb22982fb5c7e5c46dbfac6beedd2da99f87f8c5fcc71be470e9cc23a847947387901bb07af88ae473f6a5408d8c7c0e192f69f1faa3037a6f337f3147f7e28f1565", 0xc0, 0x200}, {&(0x7f0000001580)="8f6290c984c58d8c75ce15b1d59e8861b4f91e50500ec9bc67ca82b6269d06a36d755a39778f26960f7b93cdef93dc65bd301c674acb7cb7d39eeec69917892ad519a2bb7112a352c0b7f992c0da7d085c07315f1d071ac15012b722ad5d93a2523be783822412204f5ed2d5e15f019a58f723be825fb558ffb6d678d671f7f05801dfecbe8850847edac9139392bd05195fa844e12e452bffd8507d1f5fd5daa0e58c4552b26f19df5468be1ee7fdce184a1a7d83440adacbeef7", 0xbb, 0x10001}, {&(0x7f0000001640)="a7a5d5c7144f500c30c877dc347a139572da85b61db23ed1b081af7b315ee19d7b2715e413a0b8ec012bc828453986f0ba1ad94c14d7c1acbac0510cb490eb0c623f505525c4fa2df174ed823ff80b788cb47275f9ea67f786", 0x59}, {&(0x7f00000016c0)="6123d70db95034d15dd9b5fa598e95ee437d73312947ea2342778ac1fb0a39159ab99d9e9d09c2e02d1de7e0e697e15e77d0e985946cf504432a142d5907675f5989736b31bb19b5a2d1921ac8", 0x4d, 0x9}, {&(0x7f0000001740)="3e313b5c82a364160cde4ed6e86ae6f874900644f6235247913d397f9a1598d09a4632d52aab23ddd60859ea0d78140c1ed80f0bc949f909b3a91ba66bb2e101f99ee65590ce6ac68aecfe0324f5e1d5b56d150e5a4d4cd6ccbc9a0f2fe5e9ec7109f0f04eb022100d9fa2570634dfac1377d47e3169c836e72018e1387104efc08618ca0a3161a7f1b9377adb43143f9a7914662604fa5d5249f884d8800aedaabe9bb02159701c25b41814ac3771c0064b686f4a449ef58abf535468119ed0979ec32a769e674276", 0xc9, 0x7fff}, {&(0x7f0000001840)="b71ea273bf82a38a209f4c79063fc07f0ac49cbd8078aa6a5c6eeaed9eff376a0b7e65f823327ea916311cc154f622575920590f47ed543f1a189564cfa4972ec517c240d3807d56aacb8ebb09d5be0da88f6fcc3df402034fdcd25bcd92635a21afdd87b2543cf31073ab5e8bcb2ecb36a3ad1c85e18d36cd2dc7bb10b4d7dafde8efe9c68e850c4cb35b23acb74d8bde0cffb34e2bc28a44ea93aebfb300049caef667", 0xa4, 0x3}], 0x82010, &(0x7f00000019c0)={[{@nouser_xattr}, {@quota}, {@norecovery}, {@barrier}, {@dioread_lock}, {@init_itable}, {@bh}], [{@seclabel}, {@obj_type={'obj_type', 0x3d, '\x00'}}, {@appraise_type}]}) mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0) ioctl$SNAPSHOT_GET_IMAGE_SIZE(0xffffffffffffffff, 0x8008330e, &(0x7f0000000000)) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000200)={0x4, 0x8, 0x20, 0x8, 0xe0a}) sendmsg$NL80211_CMD_RELOAD_REGDB(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r2, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x2004c0c0}, 0x4c040) 23:56:13 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x7, 0x0, 0x0, 0x0) 23:56:13 executing program 2: bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") 23:56:13 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 13) 23:56:13 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1906.178185] FAULT_INJECTION: forcing a failure. [ 1906.178185] name failslab, interval 1, probability 0, space 0, times 0 [ 1906.181515] CPU: 1 PID: 9829 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1906.182958] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1906.184809] Call Trace: [ 1906.185454] dump_stack+0x107/0x167 [ 1906.186210] should_fail.cold+0x5/0xa [ 1906.187009] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 1906.188107] should_failslab+0x5/0x20 [ 1906.188947] kmem_cache_alloc_trace+0x55/0x320 [ 1906.189323] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1906.189924] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1906.189973] ? io_import_iovec+0x1120/0x1120 [ 1906.189996] ? lock_downgrade+0x6d0/0x6d0 [ 1906.190014] ? do_raw_spin_lock+0x121/0x260 [ 1906.190033] ? rwlock_bug.part.0+0x90/0x90 [ 1906.190061] __io_uring_add_tctx_node+0x2c6/0x520 [ 1906.197112] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1906.198246] ? alloc_fd+0x2e7/0x670 [ 1906.199044] io_uring_setup+0x1fbb/0x2980 [ 1906.199927] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1906.200994] ? wait_for_completion_io+0x270/0x270 [ 1906.202030] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1906.203128] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1906.204241] do_syscall_64+0x33/0x40 [ 1906.205057] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1906.206161] RIP: 0033:0x7f624aeccb19 [ 1906.206964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1906.210920] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1906.211047] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1906.212559] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1906.212572] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1906.212583] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1906.212595] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1906.212606] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 [ 1906.248099] FAULT_INJECTION: forcing a failure. [ 1906.248099] name failslab, interval 1, probability 0, space 0, times 0 [ 1906.249949] CPU: 0 PID: 9835 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 1906.250960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1906.252181] Call Trace: [ 1906.252579] dump_stack+0x107/0x167 [ 1906.253135] should_fail.cold+0x5/0xa [ 1906.253705] ? ext4_mb_new_blocks+0x698/0x45c0 [ 1906.254385] should_failslab+0x5/0x20 [ 1906.254930] kmem_cache_alloc+0x5b/0x310 [ 1906.255536] ext4_mb_new_blocks+0x698/0x45c0 [ 1906.256194] ? mark_held_locks+0x9e/0xe0 [ 1906.256807] ? trace_hardirqs_on+0x5b/0x180 [ 1906.257462] ? kasan_unpoison_shadow+0x33/0x50 [ 1906.258137] ? ext4_cache_extents+0x68/0x2d0 [ 1906.258784] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1906.259533] ? ext4_discard_preallocations+0xd80/0xd80 [ 1906.260308] ? ext4_ext_search_right+0x2e3/0xbd0 [ 1906.261020] ? ext4_inode_to_goal_block+0x320/0x430 [ 1906.261768] ext4_ext_map_blocks+0x1d49/0x5830 [ 1906.262453] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1906.263222] ? SOFTIRQ_verbose+0x10/0x10 [ 1906.263815] ? perf_trace_lock+0xac/0x490 [ 1906.264420] ? SOFTIRQ_verbose+0x10/0x10 [ 1906.265036] ? __lockdep_reset_lock+0x180/0x180 [ 1906.265728] ? ext4_ext_release+0x10/0x10 [ 1906.266341] ? ext4_map_blocks+0x5cd/0x1910 [ 1906.266977] ? lock_release+0x680/0x680 [ 1906.267562] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1906.268258] ? lock_downgrade+0x6d0/0x6d0 [ 1906.268885] ? down_write_killable+0x180/0x180 [ 1906.269575] ext4_map_blocks+0x63f/0x1910 [ 1906.270195] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1906.270850] ? trace_hardirqs_on+0x5b/0x180 [ 1906.271487] ? kmem_cache_alloc+0x2a6/0x310 [ 1906.272140] ext4_writepages+0x19bf/0x3350 [ 1906.272760] ? rwlock_bug.part.0+0x90/0x90 [ 1906.273420] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1906.274114] ? SOFTIRQ_verbose+0x10/0x10 [ 1906.274690] ? __lockdep_reset_lock+0x180/0x180 [ 1906.275357] ? mark_held_locks+0x9e/0xe0 [ 1906.275955] ? __lock_acquire+0x1657/0x5b00 [ 1906.276588] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1906.277352] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1906.278050] do_writepages+0xee/0x2a0 [ 1906.278604] ? page_writeback_cpu_online+0x20/0x20 [ 1906.279318] ? lock_acquire+0x197/0x470 [ 1906.279881] ? __ext4_ioctl+0x1543/0x4190 [ 1906.280476] ? lock_release+0x680/0x680 [ 1906.281067] __filemap_fdatawrite_range+0x24b/0x2f0 [ 1906.281783] ? delete_from_page_cache_batch+0xa30/0xa30 [ 1906.282536] ? down_write+0xe0/0x160 [ 1906.283058] ? down_write_killable+0x180/0x180 [ 1906.283718] filemap_write_and_wait_range+0x65/0x100 [ 1906.284428] __ext4_ioctl+0x1578/0x4190 [ 1906.285019] ? ext4_reset_inode_seed+0x450/0x450 [ 1906.285692] ? perf_trace_lock+0xac/0x490 [ 1906.286273] ? SOFTIRQ_verbose+0x10/0x10 [ 1906.286866] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1906.287673] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1906.288403] ? do_vfs_ioctl+0x283/0x10d0 [ 1906.288990] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1906.289726] ? generic_block_fiemap+0x60/0x60 [ 1906.290354] ? lock_downgrade+0x6d0/0x6d0 [ 1906.290954] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1906.291642] ? wait_for_completion_io+0x270/0x270 [ 1906.292326] ? selinux_file_ioctl+0xb6/0x270 [ 1906.292963] ? __ext4_ioctl+0x4190/0x4190 [ 1906.293545] __x64_sys_ioctl+0x19a/0x210 [ 1906.294127] do_syscall_64+0x33/0x40 [ 1906.294654] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1906.295369] RIP: 0033:0x7f93b5e79b19 [ 1906.295890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1906.298483] RSP: 002b:00007f93b33ce188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1906.299550] RAX: ffffffffffffffda RBX: 00007f93b5f8d020 RCX: 00007f93b5e79b19 [ 1906.300550] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 1906.301569] RBP: 00007f93b33ce1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1906.302565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1906.303549] R13: 00007ffe7c940f6f R14: 00007f93b33ce300 R15: 0000000000022000 23:56:31 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") 23:56:31 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 14) 23:56:31 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x8, 0x0, 0x0, 0x0) 23:56:31 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000100)}, 0x0) r1 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000100)}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) syz_io_uring_submit(r4, r3, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r3, &(0x7f00000003c0)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4, 0x0, {0x0, r5}}, 0x80000001) r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$sock_TIOCINQ(r6, 0x541b, 0x0) ioctl$KDFONTOP_SET(r6, 0x4b72, &(0x7f0000000180)={0x0, 0x0, 0x1e, 0x1d, 0xd7, &(0x7f00000004c0)="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"}) r7 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x244201, 0x0) accept(r7, 0x0, &(0x7f0000000140)) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="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"]) 23:56:31 executing program 6: r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000001ac0)={{{@in6, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@private1}, 0x0, @in=@initdev}}, &(0x7f0000001a80)=0xfffffffffffffda2) r2 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe) getegid() r3 = creat(&(0x7f0000000440)='./file0\x00', 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) sendmsg$nl_generic(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001e00)=ANY=[@ANYBLOB="181200001c00000129bd70000000000005000000050000000000000043528f5a5fc023dfec5a769aa844193b4a4bf4d7f1ae0307feb6f20c317f596f086ed5111c80309443558a47ee00e75cb784aa86c476b5ec1204eac5a128660705ff979925460ffc802cb1a8617ed0d7a8fb46f0449915af8df517cc1bd0a63f659fe5aa70923c38e4f5db3526127787dd5cf1a71aa05ccfca18478ed5976b02604b13d9f1fd00a7a17041c440d9d779eca664be398575026aaf7d781d612e24ac76662a9c8dfa03e8a826fca00d4f30a13cc8cdabe91124c6e48786699e4469b84cb4704ebba0cb831b88a8f6fca0363bc5ceaa13a48c238be1d180c7619257aaf7ee7948e16694c3c0a11a0627e5068f3659ec67ba91d6a351d4af986bac2c229aa984b8e1bd6d339eba35a774f53cb248f7722e1eedcf5c6d1bc58f72ba0537ebc3f8dd982b37fdc064aab69c0d76cec70b14a776d8e82d0dfed7e16b91720742399cba0030b612a0a40f3033b7f075888fb239f78296e98c58518cccec7f4c7a4d8ea7e499ec1f9999af9252870176439bedee44c1a1689d34f8c652c52bd81e993f87c23dc5829d58f87a0b687861c5da3cee13f07245accad60a396cca08b98c5e770296f553c4aeee5df727351eccc3223085a9573f0bd9bd94d6f7ec935d44050e604b01facd843c5b5dcf8dbab9edd08d8d11fa351d231769dcc443a4f06f866a159277f2156171328413395bbb8a9e86c650eaf04b351da31fe3556df7b97436a8af560d3a506129919039da310fc7d60af901c0c2f81af6cb54e19629e39fb74859371a51450d7493798ff61328535679acada3086230e76f4297dc8615ec742151cce72b4ba8186e14e473c6b3af9721f1c6d5deb6ea6141ee0978e6449d1e08c64c02f48b0f4398fd6cd8bb82bce87f7ce29ec48fd4cbf708860a756fc6111ed904f7f3e423f8adae7cb082a45eb63daf4fc96d63f921e1136d78f95eff83fd0f719ef7542c54db1015c54fa9d1f78db223ea6a90cabf03368cd5047734b46dbd8d4c1a4000cf0b5dd54985045ea66b31151a425b59d3c6602fd8cd93dfce8e35b36b76e264f04055b1ea09afa90ce018fc27708e7ed261a8bfafc2e6272c80c938931748d62bf24f859235c4655e48cc753a94c1b9ff6efa48868fa25d8377d57d1d486aef1696018fa765d3f643446be518ecd10c6e06eb2486e48d7034bd0e6f6d45226958cd76d2cd36727da706f7f51dbbdbe414c49a367e1c4b6b91558f25658f135d5f577da152705973bb0cd723ba1eb91b81fe9d34589cb3605413b77aa3026e4671d86ed72b1589173cea060712f5cac68f891fb5bfe91f5f5fe6f4c1ef6d7c932dd8d288f607ab97f70594f8fef749e0f8415a5d9013dd50b59179d2bc8419221d4605acd070f16579760e252b81130652953635f3e3c48b21e330b3b3723bd6653c3fc2f4b30a81f2bf007b5f364dec9d5d0a5e6a766727aca3d56bc0d65eeb76f996c78b73e416acd5d708446dd4dcac22dfe2e2d63bd3c6a949c743bfd11c17cefbb502746030eb94710b9a4060d4ccdbdaa57f17eb3d0cd6bb5dfb7a5d0491823f46e01183133685a7ffbba362c5883c22e3c987aaa825565d05306e1d0575a4fe75688ee422768a574fe85ea90928b33914ca360f11bb1444f174ff2b2daefb8d944880ef0ada01c15a83063356b5b3704a5d4102fe398eb6ee325e9de234a36d937c7399b68051adc99fa658ded51be14a6f3ba4ca9fbe5296ed89068c79f5ae331913cfc5cf327417964c58e51926ab102240360383537b06190fa50bb30012e6b898427ac9d133fa21166c5cb878aab7bb53b38e7f02309e73b462a1c8ae73d0ad13475fb45ec6bfd651a11eeead866ccb02a899836a632423856da4e809f72868e635e13ff7bf63099e18a4e378fed48395532fbe2147dd827da45114218cc4af2ec0f81d24d2e3cd89f92f653941ef09c639af9400be3b1603798db8d8c1b4188eec08f1f2cc9799f1271c7370ed84050bec67994b077498524dc0a02942e0799e2c535526fa5cdd460c9a3499201479d5f124c7e8702f9fa56f8b232b863d80cfbea9053183d3a90e42b2a7cfdaecafc7de2a0b0f761259b303b73553bd34bac8ae5fd777e10cb4a6a4878b172a06cfcd7323d986ac171a0592c9be88fdd626ab5773ed8a5a8efbe3d53494d3b5d1cfd7f8a161bd9223689da999348a01a1bf67ebaa9313fa2f95bc945be3220c03e38b63fdf12d308343f073be65f45a57dcbd67211092908ea5368bbf391e3feb0c2c7257c56fab72d644757de1233af3878d1646efbe9ca613cf6942ae1f80f63a16556c9bf29093b92c747029fc01cc62eddce6856b0802a9eae026b097bba48b5361b2b23ab90f566a0e3feb6f25eff8663bd7fb0b57a2b4f826199b7acfc2f765dc39291184f5d73b4a9d1c73e00026fce928a96fe72bd2026bf8c7460f4fc52b78e4006236b341c613b856a545437a94ea54b5635f5e7102bc2c6b6f67886acada69741b69550ce0d4538319ab7286bfd74e249ae1301d4e5c487d2ed25b1728aa9001a3788dec99c60ad802663244688e78f30e8731c9c17c7fb416d570dc63328b68e6aae8b89b490e5191562516b250332f6545c6d09cd58de510047c9713c0eb748b98a99e4b413fc04b05f7844ea63c28f86acc8842a02df68bdaf6463a1b95481f5d0f5a767131f121f02e0a82750acb62b267e45a4b631daf68cccf0b876050e8902c87168ec830a7c0238ac135a0aa719ec3ae6f0ff2b7ea43a8854c95faf843e9d91f59493b3b273e7ef0b85df95dfcf4527fd16bafd75d62e9c65fac7e2867abfd2f4c8f23d189fb28ddb13469d7cdfad0a569e38629442a4a4e66fb83a0bdd7f7b1bfc25d55ad4fe026971e2f906e78479b187a08eda32d254878e49f3695ca81d58dd98074036c532ad6d1afc18577219b2f4b6ddab3ee16f923939a886a21e0e5cd79b1d2724b90388ac309024af25f8e5d23d4257b9725f28ad62abadc7c60cb63669415e3e62a28ef86ad75cf1a948d7480d613751cd5cf7cf008faba1cd36a32dbd5b7f72d995e31e5afa9434ef3ccefd15454fd25d4b96d7f6637fce6f6585819b05778074589372d97f2e077366213d6c7e76f93cc4ffd18fa1055e4740723edf015f2ddcb369b9284b995e9fca9899cf85bbc1e79954625f9ecee90ad7ff44194acd82ac5d7a34531ea316a54e80f733fba8c2d867c3f64e6a491dd503ab4a9cff54f3422b0893ef78ff8608bf0d8d85ed7256f474602d0474015644f82e5b5977ccda3542231a08e0f1ec19d834186a1c68353317ea3bbd211f838b9e8aee8a2131ff669aae37848fde8c892e3a1f9e42039fab55a12f438256b9fff3f63b0a7edd1ed1ee5cad8fbc59b0c9aae28ace3c2e83efe53d2808750ed5c072d537e58d979a7613d5ef5e31681ece694e6b190ec8c6709fd91bc4e95532b078e15fe22e6aa233c870aa1afcc7dc3b6932de5fec05cf49e584922a2238b8a1581a4539612ec67181bf63a40f37b226cb7a751e37cefe924065131daa416a544731abb8e1a4bea28fb0a50f05c9f557507ca575f4415a4fad15e03961a7a5df26b76d8a3e77bafb847b1e00e5842548bbf4aa661ba39f8b96f4684373a78d180e53a14148615a460ffa3fc2e443468e421ed958df5deb76ab3ceb0c9f6ba1bf0e91264572ac1ac31e3b30c929f0bc8de23cc3512e63d6a44d0a5671805d4df7a51a6fe4f92701a214d794285a69db23b17ba6c9d4b1bf63597c9690f918f1ce22788a820e72f3b69d52581420cc80ff73779c1590bc78fa185d1f97e4d3861d1b30d978403371ca094c19abe9888b3ba65b2ea249e7ed015c75d345b8c49dd8e1af9c2fae1a7871c8edef797713d1f1789017b660c2fc137950bfe34fb0f4e8c9f937d08dbaa894855ec01da1df3097134446e108c3f1fa3967b7188ed4295adcd217bafd74b5a2d31fef6f67791b0c005413ebf127b47ffb560abf1643cb75bafac3bbb5497052e5501cb3dcc24757a0982326fd0a48e39a7259de81dd5e2e8d8638242651fa48e0df9009afb600e03005d521fe358482870489ab1237c5c0392cc9b2b611a601bce0e9cf7106560d0532a04d67401b860241dc0839b0bed3521cd52e86bef7019673758782d522c9f23ad296ea43a61ba0c90f7933a4581f8a61f1bd57801313a85fd19f66616cb4573adf1b8bdfded77b388f9bf2a3887f31d155ad8f58b9db6e0a059f9f799e38cb7c6dd84e21fa6daef0e654885cd454d6b085a54e0b491ff958aee15b5e8f6e2725124699543b387d9113a962e49fb9887326755bbaf7ca6ad372b3e06b0f928dbb21f3b0ccceab27753a0198101a7316459d850ac799363f6f0a19e6c86a96f030090b8ab3dbb0c8086dc6f537268e894c5104cbbbbcd8a44f816f988724aeab330c2c7570a1a75ed118f1b145852797ad900399b931090d95156f2f478081c4d392d556559d4cf615245d770e2e5460a673f8beb1962b704204c05b803ef0e22b65a47c7225923e817014e33494316b288045430506b446d1923979f0223a4c4db320212e24601dfed161ecb46901ceb72fc8329d81f3af0f60ea05ddc739fad8ab3a5f4ecc1348049afea88147c0a145fe7c4b41e887bff7050721095c57cc62c61661b705617d18e093b4d17baaaf00ad527a1b1e3474874d0d31fe203604b725605d38bc54304e293b787e33f13219dad00e393e878906eeb1157a1193033dfc0e5806eb0286ef4249daebb13490280096c62358611f88161fa635de49d2d03d59c8cda5f6305b681033c1d20170b2ee09a13b1374b73e30707acc41858bbb89912b4e393c6f18442bb2fabd3b8c988f481ed6a8729d12c8f12fbe55defc83dd6102f7a520adda10969da9aebc871a5f9c0676cb1671de8b1fcaf414d437304a8e8ac7978dc8c07ca4614fb05b6716006931d73fe140f7ce527842c17e447f0487185e1384358b179a9ab4a11946d00731e946405296cd8c2dd3cb5b39fb83ecd8bff15d8950bf6048bb7928d6b9ce201da684daadc14ea857051185c2d57e1c393248e2997d04134fb0ba7d52175a54a4c917041a5e35ddb8a516a70f6d9ff22901f896dd787f6b671df9cee84398d33a19a126e46b35c0ada85a59e869a26ea9eaf15bc5f23331890435ef56ccf9458914c08810c9b30f487b33646fbca2a6aec66fd64af9f13fc890953f67db29409458c484689b69223af42d81bd7b85941a0bfa97708b0ae9ce38563cef2b4d88a91cbfd049703f39b91dc25859ef8346c50ca81e19e79ad03c65501bbc71d733e437cbc0a522de3fabebf1c1753ef9fb66bedf1435f67555455096972214b867b348ae8993c63a5b732ac9b59344bc8473a41ed88ed416d26f52680cb6628bc92fedc6b5945ae2e8ea38edb365246cee514bdae4e8aca2b0950b6e23548a05365ec6b43c81a8ddee291d77e4683ab294a3f3952a4c1ef9248649ecd748455c0c3d6aea8056c48d768c606a418b5b19bf34f11f1293fd5bc9858f13f4f8e91704d8b50935d05d3f306377247be41de26992c1c114c86ef2ee87b6bf2496899772b4d7f4f76f41e8b25542a2284295c727989b43d71b47eda2fd16a55211d57c1c5a3d545ba708911a8ff406901fbf58a75166c2a610a4d84f7d7affc3c90cdd8ce7f0202cd558181b4b08b6d5a767fb686f3260f83fbd66f9e296a92d4e1dce420a4d6751b158cf7684f3b67593a5e2297abaeddf276de6d0e91cc9863cada4488afa7f255a5d6f36ad53774c33e6ad1a53f775547e64d7975a29e9491a8b34d620288bbc35e07af528d7dcdc621cc07878edbe91f47dfa33f7c109ab1708519526d2dc3234cc3eb873d11634c632059940fb597b2755b9cbbcd3d295a2cea704e6da6705403721a792a2e4707ee11de476834e629722a9c5eb62fe3cab939e5dbe92367bc084ad7ed26fdebd4fc04f019a6beb79013149b2284241188b4b57708dbbc44425f75b992a5dda3a2a2ec5d36d5d0904e1bc10400040066b16c697e0abd0481ea0d0a89fb123b6c98398df91ee00285698d3a1d84e04d4e7dcbc328dbedb30a590d13e8b462a8b374f56a7afeebb752375cff469553308990ce52dab9bfd7f23be1b2a91421fc81a774c9473834beb6e7814769b950f4cb1a2bb45b045cf7efef1204b31d4ed367e0eac683393429351e5e7ccb2b2dbd7ec0a79605e5b895ea5621292e45ccec40f1eff1fb8fe756837cc7320aeb46976833abe3cca6970df9d6416eb6e394b80c2999c69025ca145d3168ab7d4120a6c22c2f57065a603ee42a92b6f3dc5a6fd5539b03a809ce5859abe02505c56159e1a9e0a6f4c6966d2c92ceaf08169778d1a9da14331c77b3f6297b38d36b74262b23bd779d575d927fe6854484f35bd0f88fd235df88ab477f8412b050ac211613bdcb893624a3c14f00c05a2608be07dd6b281c57b4054f9889ff208d09bdc2796152aee8f3e30434ce0000000000"], 0x1218}}, 0x0) setsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000001a40)={r1, @multicast1, @multicast1}, 0xc) r6 = openat(r3, &(0x7f0000000280)='./file0\x00', 0x418000, 0xf) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_DSTOPTS(r7, 0x29, 0x3b, &(0x7f0000000200)=ANY=[], 0x8) sendmmsg$inet6(r7, &(0x7f0000000040)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x0, @empty}, 0x1c, 0x0}}, {{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000008c0)="7f", 0x1}], 0x1}}], 0x2, 0x8080) add_key$user(&(0x7f00000000c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000340)="2231969735e99d62bb073c41b562f0d507a0b5d4f430495100a11c1d3e55596a9a088fc1e5c8a36eb5aab8c002eeeacf89809fb1bcb1a6031193b0", 0x3b, r2) preadv2(r6, &(0x7f0000000800)=[{&(0x7f0000000480)=""/164, 0xa4}, {&(0x7f0000000540)=""/255, 0xff}, {&(0x7f0000000680)=""/198, 0xc6}, {&(0x7f0000000100)=""/86, 0x56}, {&(0x7f00000002c0)=""/20, 0x14}, {&(0x7f0000000780)=""/6, 0x6}, {&(0x7f0000000940)=""/4096, 0x1000}, {&(0x7f00000007c0)=""/21, 0x15}, {&(0x7f0000001940)=""/236, 0xec}], 0x9, 0x1000, 0x0, 0x0) sendmsg$inet6(r7, &(0x7f0000004380)={0x0, 0x0, 0x0}, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) unshare(0x48020200) 23:56:31 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:56:31 executing program 1: syz_io_uring_complete(0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000340)={{0x1, 0x1, 0x18}, './file0\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x80080, 0x0) readlinkat(r0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000380)=""/137, 0x89) mount$cgroup(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000001c0)={[{@subsystem='freezer'}]}) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) syz_mount_image$ext4(&(0x7f00000000c0)='ext3\x00', &(0x7f0000000300)='./file1\x00', 0x2, 0x8, &(0x7f0000001900)=[{&(0x7f0000000440)="d405e283798ce2f69ccb10c6fb1777da8c197892dd2bbe089540594ee2b85232b40670d9ed9c98246a9c840f72b1d6de014f1b3d55d77f03319da38128549d4cf312e22c04bc9f2d79e97f7d7956c585c3fd05", 0x53, 0x2}, {&(0x7f00000004c0)="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", 0x1000, 0x3}, {&(0x7f00000014c0)="12c51452c07d1e4297ed1dc376601408de32e80d458792ec6a741e69ce1cd553b842c822a5352837a8d19bad3fd1817fdfeb060ac775b293d85a95f5bc8240678a1022d822b9e4c0853845dc928b0de52baf298e603903ceb0b94d04893f7a66115b20dc20cd2cc8de693962b73347bfc069c72ac3b767ac65b2eea9c25deb22982fb5c7e5c46dbfac6beedd2da99f87f8c5fcc71be470e9cc23a847947387901bb07af88ae473f6a5408d8c7c0e192f69f1faa3037a6f337f3147f7e28f1565", 0xc0, 0x200}, {&(0x7f0000001580)="8f6290c984c58d8c75ce15b1d59e8861b4f91e50500ec9bc67ca82b6269d06a36d755a39778f26960f7b93cdef93dc65bd301c674acb7cb7d39eeec69917892ad519a2bb7112a352c0b7f992c0da7d085c07315f1d071ac15012b722ad5d93a2523be783822412204f5ed2d5e15f019a58f723be825fb558ffb6d678d671f7f05801dfecbe8850847edac9139392bd05195fa844e12e452bffd8507d1f5fd5daa0e58c4552b26f19df5468be1ee7fdce184a1a7d83440adacbeef7", 0xbb, 0x10001}, {&(0x7f0000001640)="a7a5d5c7144f500c30c877dc347a139572da85b61db23ed1b081af7b315ee19d7b2715e413a0b8ec012bc828453986f0ba1ad94c14d7c1acbac0510cb490eb0c623f505525c4fa2df174ed823ff80b788cb47275f9ea67f786", 0x59}, {&(0x7f00000016c0)="6123d70db95034d15dd9b5fa598e95ee437d73312947ea2342778ac1fb0a39159ab99d9e9d09c2e02d1de7e0e697e15e77d0e985946cf504432a142d5907675f5989736b31bb19b5a2d1921ac8", 0x4d, 0x9}, {&(0x7f0000001740)="3e313b5c82a364160cde4ed6e86ae6f874900644f6235247913d397f9a1598d09a4632d52aab23ddd60859ea0d78140c1ed80f0bc949f909b3a91ba66bb2e101f99ee65590ce6ac68aecfe0324f5e1d5b56d150e5a4d4cd6ccbc9a0f2fe5e9ec7109f0f04eb022100d9fa2570634dfac1377d47e3169c836e72018e1387104efc08618ca0a3161a7f1b9377adb43143f9a7914662604fa5d5249f884d8800aedaabe9bb02159701c25b41814ac3771c0064b686f4a449ef58abf535468119ed0979ec32a769e674276", 0xc9, 0x7fff}, {&(0x7f0000001840)="b71ea273bf82a38a209f4c79063fc07f0ac49cbd8078aa6a5c6eeaed9eff376a0b7e65f823327ea916311cc154f622575920590f47ed543f1a189564cfa4972ec517c240d3807d56aacb8ebb09d5be0da88f6fcc3df402034fdcd25bcd92635a21afdd87b2543cf31073ab5e8bcb2ecb36a3ad1c85e18d36cd2dc7bb10b4d7dafde8efe9c68e850c4cb35b23acb74d8bde0cffb34e2bc28a44ea93aebfb300049caef667", 0xa4, 0x3}], 0x82010, &(0x7f00000019c0)={[{@nouser_xattr}, {@quota}, {@norecovery}, {@barrier}, {@dioread_lock}, {@init_itable}, {@bh}], [{@seclabel}, {@obj_type={'obj_type', 0x3d, '\x00'}}, {@appraise_type}]}) mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0) ioctl$SNAPSHOT_GET_IMAGE_SIZE(0xffffffffffffffff, 0x8008330e, &(0x7f0000000000)) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000200)={0x4, 0x8, 0x20, 0x8, 0xe0a}) sendmsg$NL80211_CMD_RELOAD_REGDB(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r2, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x2004c0c0}, 0x4c040) 23:56:31 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 32) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1923.496216] audit: type=1326 audit(1738626991.253:38): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9853 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc2665db19 code=0x7ffc0000 [ 1923.504013] audit: type=1326 audit(1738626991.256:39): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9853 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fcc2665db19 code=0x7ffc0000 [ 1923.509253] FAULT_INJECTION: forcing a failure. [ 1923.509253] name failslab, interval 1, probability 0, space 0, times 0 [ 1923.512020] CPU: 1 PID: 9858 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1923.513553] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1923.515400] Call Trace: [ 1923.515998] dump_stack+0x107/0x167 [ 1923.516817] should_fail.cold+0x5/0xa [ 1923.517677] ? create_object.isra.0+0x3a/0xa20 [ 1923.518701] should_failslab+0x5/0x20 [ 1923.519555] kmem_cache_alloc+0x5b/0x310 [ 1923.520483] create_object.isra.0+0x3a/0xa20 [ 1923.521452] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1923.522596] kmem_cache_alloc_trace+0x151/0x320 [ 1923.523442] audit: type=1326 audit(1738626991.258:40): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9853 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc2665db19 code=0x7ffc0000 [ 1923.523635] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1923.523667] ? io_import_iovec+0x1120/0x1120 [ 1923.530228] ? lock_downgrade+0x6d0/0x6d0 [ 1923.531144] ? do_raw_spin_lock+0x121/0x260 [ 1923.532100] ? rwlock_bug.part.0+0x90/0x90 [ 1923.533053] __io_uring_add_tctx_node+0x2c6/0x520 [ 1923.534151] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1923.535309] ? alloc_fd+0x2e7/0x670 [ 1923.536133] io_uring_setup+0x1fbb/0x2980 [ 1923.537070] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1923.538210] ? wait_for_completion_io+0x270/0x270 [ 1923.539310] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1923.540468] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1923.541626] do_syscall_64+0x33/0x40 [ 1923.542462] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1923.543601] RIP: 0033:0x7f624aeccb19 [ 1923.544428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1923.548517] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1923.550078] FAULT_INJECTION: forcing a failure. [ 1923.550078] name failslab, interval 1, probability 0, space 0, times 0 [ 1923.550201] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1923.550217] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1923.550228] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1923.550239] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1923.550250] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 [ 1923.565883] CPU: 0 PID: 9854 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 1923.567360] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1923.569142] Call Trace: [ 1923.569735] dump_stack+0x107/0x167 [ 1923.570552] should_fail.cold+0x5/0xa [ 1923.571399] ? create_object.isra.0+0x3a/0xa20 [ 1923.572403] should_failslab+0x5/0x20 [ 1923.573226] kmem_cache_alloc+0x5b/0x310 [ 1923.574116] ? do_syscall_64+0x33/0x40 [ 1923.574965] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1923.576138] create_object.isra.0+0x3a/0xa20 [ 1923.577094] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1923.578225] kmem_cache_alloc+0x159/0x310 [ 1923.579161] ext4_mb_new_blocks+0x698/0x45c0 [ 1923.580140] ? mark_held_locks+0x9e/0xe0 [ 1923.581067] ? trace_hardirqs_on+0x5b/0x180 [ 1923.582029] ? kasan_unpoison_shadow+0x33/0x50 [ 1923.583027] ? ext4_cache_extents+0x68/0x2d0 [ 1923.583973] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1923.585079] ? ext4_discard_preallocations+0xd80/0xd80 [ 1923.586230] ? ext4_ext_search_right+0x2e3/0xbd0 [ 1923.587258] ? ext4_inode_to_goal_block+0x320/0x430 [ 1923.588378] ext4_ext_map_blocks+0x1d49/0x5830 [ 1923.589428] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1923.590583] ? SOFTIRQ_verbose+0x10/0x10 [ 1923.591463] ? perf_trace_lock+0xac/0x490 [ 1923.592376] ? SOFTIRQ_verbose+0x10/0x10 [ 1923.593284] ? __lockdep_reset_lock+0x180/0x180 [ 1923.594301] ? ext4_ext_release+0x10/0x10 [ 1923.595236] ? ext4_map_blocks+0x5cd/0x1910 [ 1923.596204] ? lock_release+0x680/0x680 [ 1923.597091] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1923.598131] ? lock_downgrade+0x6d0/0x6d0 [ 1923.599112] ? down_write_killable+0x180/0x180 [ 1923.600154] ext4_map_blocks+0x63f/0x1910 [ 1923.601106] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1923.602084] ? trace_hardirqs_on+0x5b/0x180 [ 1923.603057] ? kmem_cache_alloc+0x2a6/0x310 [ 1923.604049] ext4_writepages+0x19bf/0x3350 [ 1923.605144] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1923.606227] ? SOFTIRQ_verbose+0x10/0x10 [ 1923.607114] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1923.608266] ? trace_hardirqs_on+0x5b/0x180 [ 1923.609336] ? __lock_acquire+0x1657/0x5b00 [ 1923.610352] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1923.611513] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1923.612574] do_writepages+0xee/0x2a0 [ 1923.613434] ? page_writeback_cpu_online+0x20/0x20 [ 1923.614524] ? lock_acquire+0x197/0x470 [ 1923.615386] ? __ext4_ioctl+0x1543/0x4190 [ 1923.616312] ? lock_release+0x680/0x680 [ 1923.617218] __filemap_fdatawrite_range+0x24b/0x2f0 [ 1923.618308] ? delete_from_page_cache_batch+0xa30/0xa30 [ 1923.619500] ? down_write+0xe0/0x160 [ 1923.619780] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1923.620310] ? down_write_killable+0x180/0x180 [ 1923.620366] filemap_write_and_wait_range+0x65/0x100 [ 1923.624316] __ext4_ioctl+0x1578/0x4190 [ 1923.625238] ? ext4_reset_inode_seed+0x450/0x450 [ 1923.626442] ? perf_trace_lock+0xac/0x490 [ 1923.626466] ? SOFTIRQ_verbose+0x10/0x10 [ 1923.626562] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1923.626586] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1923.626618] ? do_vfs_ioctl+0x283/0x10d0 [ 1923.626645] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1923.626671] ? generic_block_fiemap+0x60/0x60 [ 1923.626698] ? lock_downgrade+0x6d0/0x6d0 [ 1923.626726] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1923.626773] ? wait_for_completion_io+0x270/0x270 [ 1923.626842] ? selinux_file_ioctl+0xb6/0x270 [ 1923.626890] ? __ext4_ioctl+0x4190/0x4190 [ 1923.626933] __x64_sys_ioctl+0x19a/0x210 [ 1923.626976] do_syscall_64+0x33/0x40 [ 1923.627001] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1923.627019] RIP: 0033:0x7f93b5e79b19 [ 1923.627043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1923.646084] RSP: 002b:00007f93b33ef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1923.647730] RAX: ffffffffffffffda RBX: 00007f93b5f8cf60 RCX: 00007f93b5e79b19 [ 1923.649266] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 1923.650809] RBP: 00007f93b33ef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1923.652352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1923.653910] R13: 00007ffe7c940f6f R14: 00007f93b33ef300 R15: 0000000000022000 [ 1923.658537] audit: type=1326 audit(1738626991.322:41): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9853 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc2665db19 code=0x7ffc0000 23:56:31 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") [ 1923.678824] audit: type=1326 audit(1738626991.322:42): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9853 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc2665db19 code=0x7ffc0000 [ 1923.691530] audit: type=1326 audit(1738626991.336:43): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9853 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc2665db19 code=0x7ffc0000 [ 1923.708537] audit: type=1326 audit(1738626991.344:44): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9853 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fcc2665db19 code=0x7ffc0000 [ 1923.726773] audit: type=1326 audit(1738626991.345:45): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9853 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc2665db19 code=0x7ffc0000 [ 1923.747793] audit: type=1326 audit(1738626991.350:46): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9853 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fcc2665db19 code=0x7ffc0000 [ 1923.748184] EXT4-fs (loop3): Mount option "noacl" will be removed by 3.5 [ 1923.748184] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 1923.748184] [ 1923.757335] audit: type=1326 audit(1738626991.353:47): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9853 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc2665db19 code=0x7ffc0000 23:56:31 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:56:31 executing program 1: creat(0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[]) r0 = creat(&(0x7f0000000100)='./file0\x00', 0x0) chdir(&(0x7f0000000040)='./file0\x00') r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x400, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, @perf_config_ext, 0x40406, 0x0, 0x5, 0x7, 0x4, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_int(r2, 0x29, 0x38, &(0x7f0000000000)=0x7, 0x4) ioctl$BTRFS_IOC_BALANCE_CTL(r1, 0x40049421, 0x2) write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x16) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000002, 0x70, r0, 0x5d75b000) r3 = creat(&(0x7f0000000080)='./file0\x00', 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) pwrite64(r3, &(0x7f00000000c0)="04", 0x1, 0x3ff03) 23:56:31 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 33) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:56:31 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") [ 1923.937825] EXT4-fs (loop3): mounted filesystem without journal. Opts: noacl,,errors=continue 23:56:31 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0xc, 0x0, 0x0, 0x0) [ 1924.031695] FAULT_INJECTION: forcing a failure. [ 1924.031695] name failslab, interval 1, probability 0, space 0, times 0 [ 1924.034254] CPU: 0 PID: 9881 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1924.035676] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1924.037397] Call Trace: [ 1924.037961] dump_stack+0x107/0x167 [ 1924.038729] should_fail.cold+0x5/0xa [ 1924.039544] ? io_wq_create+0xeb/0xc00 [ 1924.040368] should_failslab+0x5/0x20 [ 1924.041163] __kmalloc+0x72/0x390 [ 1924.041910] io_wq_create+0xeb/0xc00 [ 1924.042704] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1924.043760] ? io_import_iovec+0x1120/0x1120 [ 1924.044689] ? io_apoll_task_func+0x2d0/0x2d0 [ 1924.045628] ? __io_req_find_next+0x300/0x300 [ 1924.046554] ? do_raw_spin_lock+0x121/0x260 [ 1924.047446] ? rwlock_bug.part.0+0x90/0x90 [ 1924.048333] __io_uring_add_tctx_node+0x2c6/0x520 [ 1924.049343] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1924.050438] ? alloc_fd+0x2e7/0x670 [ 1924.051210] io_uring_setup+0x1fbb/0x2980 [ 1924.052081] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1924.053150] ? wait_for_completion_io+0x270/0x270 [ 1924.054190] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1924.055284] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1924.056360] do_syscall_64+0x33/0x40 [ 1924.057144] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1924.058217] RIP: 0033:0x7f624aeccb19 [ 1924.058995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1924.062885] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1924.064467] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1924.065958] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1924.067444] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1924.068927] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1924.070432] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:56:31 executing program 1: r0 = creat(0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[]) unlink(&(0x7f0000000000)='./file0\x00') chdir(&(0x7f0000000040)='./file0\x00') perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x400, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x40406, 0x0, 0x0, 0x7, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsmount(r0, 0x0, 0x0) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x6) fcntl$notify(0xffffffffffffffff, 0x402, 0x26) pwrite64(r1, &(0x7f00000000c0)="04", 0x1, 0x3ff03) dup2(0xffffffffffffffff, 0xffffffffffffffff) fcntl$getown(0xffffffffffffffff, 0x9) 23:56:31 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000100)}, 0x0) r1 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000100)}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) syz_io_uring_submit(r4, r3, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r3, &(0x7f00000003c0)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4, 0x0, {0x0, r5}}, 0x80000001) r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$sock_TIOCINQ(r6, 0x541b, 0x0) ioctl$KDFONTOP_SET(r6, 0x4b72, &(0x7f0000000180)={0x0, 0x0, 0x1e, 0x1d, 0xd7, &(0x7f00000004c0)="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"}) r7 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x244201, 0x0) accept(r7, 0x0, &(0x7f0000000140)) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="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"]) 23:56:31 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$nl_generic(r1, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="1423ac00210000092cbd686b46f6470cb3a2ec0c77468efe5886f61b6ba804cdb4a5fbdb7875fba8d15b5ac6e68a732725035c47bb9f6eef0108f479e52f05e3aedb7816b38664d3be6ad16bdb1f05e6d3df1bc5d13400ff3c6dd4c59b12065a606dccd7473488d708f59a463567a36abda1ddf0894ab552bd178f0a1ce5690e842544456d6eb93796473b53c5e4780ad41e8491cc6d88904fbae51e91a2e0c6f5626c07c13005e9293344de80c0695417329fc873439112e0e804ae7679eccbe661aa7f5886522d84969eb44b1f0fc406f803850c60a3e0fb9f3cf80343fe076b48905ac48fc6173f7444934bd8a8c9b80a78034972293121"], 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x20040000) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf250f400000050037000100000008003c000600000008003c000000000008003b000700"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r2, 0x0, 0x0) add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r2) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) dup2(r1, 0xffffffffffffffff) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000500)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000780)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffa) keyctl$revoke(0x3, 0x0) unshare(0x48020200) [ 1924.335096] EXT4-fs (loop3): Mount option "noacl" will be removed by 3.5 [ 1924.335096] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 1924.335096] [ 1924.361445] EXT4-fs (loop3): mounted filesystem without journal. Opts: noacl,,errors=continue 23:56:46 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x12, 0x0, 0x0, 0x0) 23:56:46 executing program 3: syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x3395047e, 0x0, 0x0, 0x40002, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='romfs\x00', 0x40000, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x82040, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7fff, 0x1}, 0x1, 0x8000, 0x0, 0x8, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) syz_open_dev$loop(&(0x7f0000000000), 0x9, 0x220000) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00'}) syz_genetlink_get_family_id$SEG6(&(0x7f0000000300), 0xffffffffffffffff) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='numa_maps\x00') ioctl$BTRFS_IOC_DEFRAG_RANGE(r3, 0x40309410, &(0x7f0000000000)={0x0, 0x8, 0x2, 0x2, 0x2, [0x9, 0x6, 0x0, 0x101]}) sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)={0x28, 0x0, 0x307, 0x0, 0x0, {{}, {@val={0x8, 0x6}, @val={0xc}}}}, 0x28}}, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) 23:56:46 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, 0x0, 0x0) ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") 23:56:46 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$vcsu(0x0, 0x0, 0x8000) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x8, 0x0, 0x8000) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r1, 0x80047210, &(0x7f0000000300)) r4 = creat(0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r4, 0xc0c0583b, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000fffffdfd00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c535479a59460bba00"/192]) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000580)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r5, 0x3) syz_io_uring_setup(0x7c73, &(0x7f00000003c0)={0x0, 0xce8a, 0x8, 0x1, 0x2da, 0x0, r2}, &(0x7f00006a8000/0x2000)=nil, &(0x7f00004a0000/0x1000)=nil, &(0x7f0000000340), &(0x7f0000000440)=0x0) syz_io_uring_submit(0x0, r6, &(0x7f0000000540)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x3, 0x0, r4, &(0x7f0000000500)={0x80000000}, r1, 0x3, 0x0, 0x1}, 0x20) creat(&(0x7f0000000380)='./file0\x00', 0x111) fchmodat(r3, &(0x7f0000000040)='./file1\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x1000002) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000f, 0x1f012, r0, 0x0) 23:56:46 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:56:46 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x13902}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x0) mlock(&(0x7f0000ffc000/0x4000)=nil, 0x4000) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001500), 0x4) syz_emit_ethernet(0x46, &(0x7f0000000040)={@multicast, @local, @val={@void}, {@arp={0x806, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x0, @dev, @remote, @link_local, @rand_addr=' \x01\x00'}}}}, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/drivers\x00', 0x0, 0x0) fsync(r1) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0xb}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$AUTOFS_IOC_READY(r1, 0x9360, 0x800) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c63616368653d6d6d61702c76657273696f6e3d391481d51ccb818e6d819a6347e8006766ce67b363f3d3767defd8202b7e6cec644d072fe7466beceed0a7cdf4caba7f7918efb36ab4ede57f0d8de44bcfac016c21283a227a4b08ec7a5723865ee53cb67a4841ad881937a81b14c6d05dae54"]) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) openat2(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', &(0x7f0000000200)={0x63af2ba475f03b48, 0x100, 0x37}, 0x18) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) ioctl$TUNSETGROUP(0xffffffffffffffff, 0x400454ce, 0x0) dup2(0xffffffffffffffff, r2) openat$cgroup_ro(r1, &(0x7f0000000180)='blkio.bfq.io_wait_time_recursive\x00', 0x0, 0x0) 23:56:46 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 34) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:56:46 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 15) 23:56:46 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, 0x0, 0x0) ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") [ 1939.002654] FAULT_INJECTION: forcing a failure. [ 1939.002654] name failslab, interval 1, probability 0, space 0, times 0 [ 1939.006078] CPU: 0 PID: 9908 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 1939.007536] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1939.009287] Call Trace: [ 1939.009871] dump_stack+0x107/0x167 [ 1939.010688] should_fail.cold+0x5/0xa [ 1939.011514] ? __es_insert_extent+0xed1/0x1370 [ 1939.012517] should_failslab+0x5/0x20 [ 1939.013341] kmem_cache_alloc+0x5b/0x310 [ 1939.014267] __es_insert_extent+0xed1/0x1370 [ 1939.015304] ext4_es_insert_extent+0x45d/0xf10 [ 1939.016335] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 1939.017259] ? lock_downgrade+0x6d0/0x6d0 [ 1939.018234] ? do_raw_read_unlock+0x3b/0x70 [ 1939.019162] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1939.020206] ext4_map_blocks+0x80b/0x1910 [ 1939.021142] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1939.022143] ? trace_hardirqs_on+0x5b/0x180 [ 1939.023104] ? kmem_cache_alloc+0x2a6/0x310 [ 1939.024075] ext4_writepages+0x19bf/0x3350 [ 1939.025151] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1939.026218] ? SOFTIRQ_verbose+0x10/0x10 [ 1939.027224] ? __lock_acquire+0x1657/0x5b00 [ 1939.028224] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1939.029385] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1939.030431] do_writepages+0xee/0x2a0 [ 1939.031283] ? page_writeback_cpu_online+0x20/0x20 [ 1939.032357] ? lock_acquire+0x197/0x470 [ 1939.033215] ? __ext4_ioctl+0x1543/0x4190 [ 1939.034144] ? lock_release+0x680/0x680 [ 1939.035025] __filemap_fdatawrite_range+0x24b/0x2f0 [ 1939.036107] ? delete_from_page_cache_batch+0xa30/0xa30 [ 1939.037279] ? down_write+0xe0/0x160 [ 1939.038101] ? down_write_killable+0x180/0x180 [ 1939.039133] filemap_write_and_wait_range+0x65/0x100 [ 1939.040226] __ext4_ioctl+0x1578/0x4190 [ 1939.041145] ? ext4_reset_inode_seed+0x450/0x450 [ 1939.042189] ? perf_trace_lock+0xac/0x490 [ 1939.043096] ? SOFTIRQ_verbose+0x10/0x10 [ 1939.044061] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1939.045298] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1939.046426] ? do_vfs_ioctl+0x283/0x10d0 [ 1939.047298] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1939.048431] ? generic_block_fiemap+0x60/0x60 [ 1939.049400] ? lock_downgrade+0x6d0/0x6d0 [ 1939.050316] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1939.051376] ? wait_for_completion_io+0x270/0x270 [ 1939.052459] ? selinux_file_ioctl+0xb6/0x270 [ 1939.053436] ? __ext4_ioctl+0x4190/0x4190 [ 1939.054354] __x64_sys_ioctl+0x19a/0x210 [ 1939.055261] do_syscall_64+0x33/0x40 [ 1939.056072] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1939.057175] RIP: 0033:0x7f93b5e79b19 [ 1939.057986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1939.061886] RSP: 002b:00007f93b33ef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1939.063521] RAX: ffffffffffffffda RBX: 00007f93b5f8cf60 RCX: 00007f93b5e79b19 [ 1939.065045] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 1939.066585] RBP: 00007f93b33ef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1939.068104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1939.069627] R13: 00007ffe7c940f6f R14: 00007f93b33ef300 R15: 0000000000022000 [ 1939.168169] FAULT_INJECTION: forcing a failure. [ 1939.168169] name failslab, interval 1, probability 0, space 0, times 0 [ 1939.170692] CPU: 1 PID: 9915 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1939.172120] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1939.173850] Call Trace: [ 1939.174414] dump_stack+0x107/0x167 [ 1939.175178] should_fail.cold+0x5/0xa [ 1939.175978] ? create_object.isra.0+0x3a/0xa20 [ 1939.176942] should_failslab+0x5/0x20 [ 1939.177737] kmem_cache_alloc+0x5b/0x310 [ 1939.178599] create_object.isra.0+0x3a/0xa20 [ 1939.179516] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1939.180585] __kmalloc+0x16e/0x390 [ 1939.181346] io_wq_create+0xeb/0xc00 [ 1939.182142] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1939.183202] ? io_import_iovec+0x1120/0x1120 [ 1939.184124] ? io_apoll_task_func+0x2d0/0x2d0 [ 1939.185055] ? __io_req_find_next+0x300/0x300 [ 1939.185988] ? do_raw_spin_lock+0x121/0x260 [ 1939.186900] ? rwlock_bug.part.0+0x90/0x90 [ 1939.187799] __io_uring_add_tctx_node+0x2c6/0x520 [ 1939.188809] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1939.189902] ? alloc_fd+0x2e7/0x670 [ 1939.190697] io_uring_setup+0x1fbb/0x2980 [ 1939.191571] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1939.192632] ? wait_for_completion_io+0x270/0x270 [ 1939.193677] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1939.194792] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1939.195878] do_syscall_64+0x33/0x40 [ 1939.196655] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1939.197723] RIP: 0033:0x7f624aeccb19 [ 1939.198509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1939.202352] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 23:56:46 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1939.203948] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1939.205651] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1939.207151] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1939.208644] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1939.210141] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 [ 1939.232697] 9pnet: Unknown protocol version 9ÕËŽmšcGè 23:56:47 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x13902}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x0) mlock(&(0x7f0000ffc000/0x4000)=nil, 0x4000) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001500), 0x4) syz_emit_ethernet(0x46, &(0x7f0000000040)={@multicast, @local, @val={@void}, {@arp={0x806, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x0, @dev, @remote, @link_local, @rand_addr=' \x01\x00'}}}}, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/drivers\x00', 0x0, 0x0) fsync(r1) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0xb}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$AUTOFS_IOC_READY(r1, 0x9360, 0x800) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c63616368653d6d6d61702c76657273696f6e3d391481d51ccb818e6d819a6347e8006766ce67b363f3d3767defd8202b7e6cec644d072fe7466beceed0a7cdf4caba7f7918efb36ab4ede57f0d8de44bcfac016c21283a227a4b08ec7a5723865ee53cb67a4841ad881937a81b14c6d05dae54"]) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) openat2(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', &(0x7f0000000200)={0x63af2ba475f03b48, 0x100, 0x37}, 0x18) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) ioctl$TUNSETGROUP(0xffffffffffffffff, 0x400454ce, 0x0) dup2(0xffffffffffffffff, r2) openat$cgroup_ro(r1, &(0x7f0000000180)='blkio.bfq.io_wait_time_recursive\x00', 0x0, 0x0) [ 1939.429131] FAULT_INJECTION: forcing a failure. [ 1939.429131] name failslab, interval 1, probability 0, space 0, times 0 [ 1939.432066] CPU: 1 PID: 9931 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 1939.433519] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1939.435288] Call Trace: [ 1939.435875] dump_stack+0x107/0x167 [ 1939.436674] should_fail.cold+0x5/0xa [ 1939.437493] ? kmem_cache_free+0x249/0x2d0 [ 1939.438410] ? create_object.isra.0+0x3a/0xa20 [ 1939.439404] should_failslab+0x5/0x20 [ 1939.440222] kmem_cache_alloc+0x5b/0x310 [ 1939.441133] create_object.isra.0+0x3a/0xa20 [ 1939.442085] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1939.443201] kmem_cache_alloc+0x159/0x310 [ 1939.444121] __es_insert_extent+0xed1/0x1370 [ 1939.445138] ext4_es_insert_extent+0x45d/0xf10 [ 1939.446159] ? ext4_es_scan_clu+0x2e0/0x2e0 [ 1939.447083] ? lock_downgrade+0x6d0/0x6d0 [ 1939.448040] ? do_raw_read_unlock+0x3b/0x70 [ 1939.448980] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1939.450016] ext4_map_blocks+0x80b/0x1910 [ 1939.450956] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1939.451908] ? trace_hardirqs_on+0x5b/0x180 [ 1939.452850] ? kmem_cache_alloc+0x2a6/0x310 [ 1939.453825] ext4_writepages+0x19bf/0x3350 [ 1939.454909] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1939.455949] ? SOFTIRQ_verbose+0x10/0x10 [ 1939.456954] ? __lock_acquire+0x1657/0x5b00 [ 1939.457953] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1939.459106] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1939.460160] do_writepages+0xee/0x2a0 [ 1939.461000] ? page_writeback_cpu_online+0x20/0x20 [ 1939.462070] ? lock_acquire+0x197/0x470 [ 1939.462919] ? __ext4_ioctl+0x1543/0x4190 [ 1939.463829] ? lock_release+0x680/0x680 [ 1939.464715] __filemap_fdatawrite_range+0x24b/0x2f0 [ 1939.465785] ? delete_from_page_cache_batch+0xa30/0xa30 [ 1939.466956] ? down_write+0xe0/0x160 [ 1939.467757] ? down_write_killable+0x180/0x180 [ 1939.468770] filemap_write_and_wait_range+0x65/0x100 [ 1939.469858] __ext4_ioctl+0x1578/0x4190 [ 1939.470771] ? ext4_reset_inode_seed+0x450/0x450 [ 1939.471787] ? perf_trace_lock+0xac/0x490 [ 1939.472684] ? SOFTIRQ_verbose+0x10/0x10 [ 1939.473633] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1939.474855] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1939.475956] ? do_vfs_ioctl+0x283/0x10d0 [ 1939.476824] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1939.477947] ? generic_block_fiemap+0x60/0x60 [ 1939.478902] ? lock_downgrade+0x6d0/0x6d0 [ 1939.479797] ? clockevents_program_event+0x131/0x360 [ 1939.480939] ? selinux_file_ioctl+0xb6/0x270 [ 1939.481894] ? __ext4_ioctl+0x4190/0x4190 [ 1939.482781] __x64_sys_ioctl+0x19a/0x210 [ 1939.483674] do_syscall_64+0x33/0x40 [ 1939.484472] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1939.485552] RIP: 0033:0x7f93b5e79b19 [ 1939.486365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1939.490191] RSP: 002b:00007f93b33ef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1939.491812] RAX: ffffffffffffffda RBX: 00007f93b5f8cf60 RCX: 00007f93b5e79b19 [ 1939.493323] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 1939.494835] RBP: 00007f93b33ef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1939.496347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1939.497862] R13: 00007ffe7c940f6f R14: 00007f93b33ef300 R15: 0000000000022000 [ 1939.503479] FAULT_INJECTION: forcing a failure. [ 1939.503479] name failslab, interval 1, probability 0, space 0, times 0 [ 1939.505923] CPU: 1 PID: 9937 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1939.507352] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1939.509087] Call Trace: [ 1939.509643] dump_stack+0x107/0x167 [ 1939.510429] should_fail.cold+0x5/0xa [ 1939.511232] ? io_wq_create+0x6ef/0xc00 [ 1939.512074] should_failslab+0x5/0x20 [ 1939.512878] kmem_cache_alloc_node_trace+0x59/0x340 [ 1939.513934] io_wq_create+0x6ef/0xc00 [ 1939.514762] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1939.515833] ? io_import_iovec+0x1120/0x1120 [ 1939.516760] ? io_apoll_task_func+0x2d0/0x2d0 [ 1939.517697] ? __io_req_find_next+0x300/0x300 [ 1939.518644] ? do_raw_spin_lock+0x121/0x260 [ 1939.519548] ? rwlock_bug.part.0+0x90/0x90 [ 1939.520454] __io_uring_add_tctx_node+0x2c6/0x520 [ 1939.521465] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1939.522584] ? alloc_fd+0x2e7/0x670 [ 1939.523370] io_uring_setup+0x1fbb/0x2980 [ 1939.524254] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1939.525320] ? wait_for_completion_io+0x270/0x270 [ 1939.526371] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1939.527479] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1939.528567] do_syscall_64+0x33/0x40 [ 1939.529347] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1939.530433] RIP: 0033:0x7f624aeccb19 [ 1939.531218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1939.535089] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1939.536696] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1939.538200] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1939.539697] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1939.541198] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1939.542711] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:56:47 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, 0x0, 0x0) ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") 23:56:47 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000002b80)={0x0, 0x0, &(0x7f0000002b40)={&(0x7f0000000080)=@allocspi={0xf8, 0x16, 0x200, 0x0, 0x0, {{{@in=@local}, {@in=@local, 0x0, 0x33}, @in6=@mcast2}, 0x0, 0xffffffff}}, 0xf8}}, 0x0) 23:56:47 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 16) 23:56:47 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 35) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:56:47 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") 23:56:47 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x18, 0x0, 0x0, 0x0) 23:57:07 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x13902}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x0) mlock(&(0x7f0000ffc000/0x4000)=nil, 0x4000) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001500), 0x4) syz_emit_ethernet(0x46, &(0x7f0000000040)={@multicast, @local, @val={@void}, {@arp={0x806, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x0, @dev, @remote, @link_local, @rand_addr=' \x01\x00'}}}}, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/drivers\x00', 0x0, 0x0) fsync(r1) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0xb}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$AUTOFS_IOC_READY(r1, 0x9360, 0x800) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c63616368653d6d6d61702c76657273696f6e3d391481d51ccb818e6d819a6347e8006766ce67b363f3d3767defd8202b7e6cec644d072fe7466beceed0a7cdf4caba7f7918efb36ab4ede57f0d8de44bcfac016c21283a227a4b08ec7a5723865ee53cb67a4841ad881937a81b14c6d05dae54"]) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) openat2(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', &(0x7f0000000200)={0x63af2ba475f03b48, 0x100, 0x37}, 0x18) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) ioctl$TUNSETGROUP(0xffffffffffffffff, 0x400454ce, 0x0) dup2(0xffffffffffffffff, r2) openat$cgroup_ro(r1, &(0x7f0000000180)='blkio.bfq.io_wait_time_recursive\x00', 0x0, 0x0) 23:57:07 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)=0x20) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000101000000000000"]) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0) preadv(r1, &(0x7f0000001580)=[{&(0x7f0000002600)=""/4111, 0x100f}], 0x0, 0x2, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NFNL_MSG_ACCT_NEW(r1, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="44000008000701080000000000000000030000030900010073797a310000000024000780080002400000000108000140000000d30800024000000e780800014000000005af1c1a038cdb0842eedbc2e2df395a"], 0x44}, 0x1, 0x0, 0x0, 0x20000001}, 0x20000081) getsockopt$packet_int(r1, 0x107, 0xb, &(0x7f0000000140), &(0x7f0000000180)=0x4) openat$hpet(0xffffffffffffff9c, &(0x7f0000000480), 0x101000, 0x0) syz_80211_join_ibss(&(0x7f0000000040)='wlan1\x00', 0x0, 0x0, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) r5 = fcntl$dupfd(r0, 0x406, 0xffffffffffffffff) openat2(r5, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000440)={0x4202, 0x49}, 0x18) r6 = creat(&(0x7f0000000000)='./file0\x00', 0x100) close_range(r6, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_PROBE_CLIENT(r2, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x34, 0x0, 0x800, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000004}, 0x14) 23:57:07 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") 23:57:07 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x1e, 0x0, 0x0, 0x0) 23:57:07 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 36) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:57:07 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 17) 23:57:07 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1959.568646] FAULT_INJECTION: forcing a failure. [ 1959.568646] name failslab, interval 1, probability 0, space 0, times 0 [ 1959.570202] CPU: 0 PID: 9962 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1959.571036] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1959.572040] Call Trace: [ 1959.572360] dump_stack+0x107/0x167 [ 1959.572815] should_fail.cold+0x5/0xa [ 1959.573278] ? create_object.isra.0+0x3a/0xa20 [ 1959.573835] should_failslab+0x5/0x20 [ 1959.574291] kmem_cache_alloc+0x5b/0x310 [ 1959.574791] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1959.575437] create_object.isra.0+0x3a/0xa20 [ 1959.575965] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1959.576593] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1959.577203] io_wq_create+0x6ef/0xc00 [ 1959.577667] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1959.578267] ? io_import_iovec+0x1120/0x1120 [ 1959.578802] ? io_apoll_task_func+0x2d0/0x2d0 [ 1959.579352] ? __io_req_find_next+0x300/0x300 [ 1959.579898] ? do_raw_spin_lock+0x121/0x260 [ 1959.580411] ? rwlock_bug.part.0+0x90/0x90 [ 1959.580929] __io_uring_add_tctx_node+0x2c6/0x520 [ 1959.581504] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1959.582136] ? alloc_fd+0x2e7/0x670 [ 1959.582582] io_uring_setup+0x1fbb/0x2980 [ 1959.583093] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1959.583695] ? wait_for_completion_io+0x270/0x270 [ 1959.584285] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1959.584911] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1959.585529] do_syscall_64+0x33/0x40 [ 1959.585972] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1959.586596] RIP: 0033:0x7f624aeccb19 [ 1959.587056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1959.589269] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1959.590173] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1959.591056] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1959.591924] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1959.592776] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1959.593628] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:57:07 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r4, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x34, r5, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_EEE_MODES_OURS={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x24044021}, 0x0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000006c0)={0x1038, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x1010, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x8}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "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"}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x1038}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) perf_event_open(&(0x7f0000000400)={0x5, 0x80, 0x6, 0x1f, 0x7, 0x3, 0x0, 0x1, 0x312f0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8000, 0x1, @perf_bp={&(0x7f00000003c0), 0x7}, 0x41e32, 0xffffffffffffff7d, 0x8ec8, 0x8, 0x3, 0xffffffae, 0x200, 0x0, 0x5, 0x0, 0x40}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x230ae0718ff03c96) r8 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r8, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r2, 0x8, 0x0, 0x8000) fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) [ 1959.615163] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 23:57:07 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 37) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:57:07 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x882c2, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x12418, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140)}, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = memfd_create(&(0x7f0000000000)='\x00', 0x0) lseek(r2, 0x0, 0x3) fallocate(r2, 0x5a, 0x689, 0x80000000) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2000003, 0x1f012, r3, 0x0) openat(0xffffffffffffffff, 0x0, 0x36400, 0xe375d1901a7fcc3b) syz_io_uring_setup(0x8003a75, &(0x7f0000000080)={0x0, 0x0, 0x10, 0x0, 0x3be}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000762000/0x1000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000180)) syz_io_uring_setup(0x8003a75, &(0x7f0000000080)={0x0, 0x0, 0x10, 0x0, 0x3be}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r5, r6, 0x0, 0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r6, &(0x7f0000000040)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r7}}, 0x7ff) readv(0xffffffffffffffff, &(0x7f0000001600), 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r0, 0x0) openat(0xffffffffffffffff, &(0x7f0000000240)='./file1\x00', 0x129140, 0x80) [ 1959.684898] FAULT_INJECTION: forcing a failure. [ 1959.684898] name failslab, interval 1, probability 0, space 0, times 0 [ 1959.687635] CPU: 1 PID: 9965 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 1959.689103] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1959.690887] Call Trace: [ 1959.691478] dump_stack+0x107/0x167 [ 1959.692282] should_fail.cold+0x5/0xa [ 1959.693112] ? mempool_alloc+0x148/0x360 [ 1959.693985] ? mempool_free_pages+0x20/0x20 [ 1959.694934] should_failslab+0x5/0x20 [ 1959.695753] kmem_cache_alloc+0x5b/0x310 [ 1959.696645] ? mempool_free_pages+0x20/0x20 [ 1959.697580] mempool_alloc+0x148/0x360 [ 1959.698460] ? mempool_resize+0x7d0/0x7d0 [ 1959.699413] ? __test_set_page_writeback+0x160/0xbb0 [ 1959.700537] bio_alloc_bioset+0x36e/0x600 [ 1959.701444] ? bvec_alloc+0x2f0/0x2f0 [ 1959.702324] ext4_bio_write_page+0xa79/0x1480 [ 1959.703361] mpage_submit_page+0x14b/0x260 [ 1959.704299] ext4_writepages+0x1f2e/0x3350 [ 1959.705374] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1959.706436] ? SOFTIRQ_verbose+0x10/0x10 [ 1959.707522] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1959.708667] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1959.709715] do_writepages+0xee/0x2a0 [ 1959.710560] ? page_writeback_cpu_online+0x20/0x20 [ 1959.711633] ? lock_acquire+0x197/0x470 [ 1959.712496] ? __ext4_ioctl+0x1543/0x4190 [ 1959.713406] ? lock_release+0x680/0x680 [ 1959.714293] __filemap_fdatawrite_range+0x24b/0x2f0 [ 1959.715389] ? delete_from_page_cache_batch+0xa30/0xa30 [ 1959.716474] FAULT_INJECTION: forcing a failure. [ 1959.716474] name failslab, interval 1, probability 0, space 0, times 0 [ 1959.716559] ? down_write+0xe0/0x160 [ 1959.718620] ? down_write_killable+0x180/0x180 [ 1959.719641] filemap_write_and_wait_range+0x65/0x100 [ 1959.720740] __ext4_ioctl+0x1578/0x4190 [ 1959.721644] ? ext4_reset_inode_seed+0x450/0x450 [ 1959.722673] ? perf_trace_lock+0xac/0x490 [ 1959.723572] ? SOFTIRQ_verbose+0x10/0x10 [ 1959.724528] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1959.725767] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1959.726887] ? do_vfs_ioctl+0x283/0x10d0 [ 1959.727760] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1959.728885] ? generic_block_fiemap+0x60/0x60 [ 1959.729847] ? lock_downgrade+0x6d0/0x6d0 [ 1959.730754] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1959.731805] ? wait_for_completion_io+0x270/0x270 [ 1959.732891] ? selinux_file_ioctl+0xb6/0x270 [ 1959.733853] ? __ext4_ioctl+0x4190/0x4190 [ 1959.734781] __x64_sys_ioctl+0x19a/0x210 [ 1959.735675] do_syscall_64+0x33/0x40 [ 1959.736474] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1959.737573] RIP: 0033:0x7f93b5e79b19 [ 1959.738375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1959.742273] RSP: 002b:00007f93b33ef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1959.743920] RAX: ffffffffffffffda RBX: 00007f93b5f8cf60 RCX: 00007f93b5e79b19 [ 1959.745442] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 1959.746979] RBP: 00007f93b33ef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1959.748506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1959.750007] R13: 00007ffe7c940f6f R14: 00007f93b33ef300 R15: 0000000000022000 [ 1959.751563] CPU: 0 PID: 9975 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1959.752342] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1959.752712] kauditd_printk_skb: 84 callbacks suppressed 23:57:07 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448dc, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") [ 1959.752731] audit: type=1400 audit(1738627027.470:132): avc: denied { tracepoint } for pid=9973 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 1959.753275] Call Trace: [ 1959.753302] dump_stack+0x107/0x167 [ 1959.757470] should_fail.cold+0x5/0xa [ 1959.757906] ? __io_uring_add_tctx_node+0x15c/0x520 [ 1959.758472] should_failslab+0x5/0x20 [ 1959.758914] kmem_cache_alloc_trace+0x55/0x320 [ 1959.759431] __io_uring_add_tctx_node+0x15c/0x520 [ 1959.759974] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1959.760561] ? alloc_fd+0x2e7/0x670 [ 1959.760978] io_uring_setup+0x1fbb/0x2980 [ 1959.761452] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1959.762024] ? wait_for_completion_io+0x270/0x270 [ 1959.762589] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1959.763186] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1959.763765] do_syscall_64+0x33/0x40 [ 1959.764184] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1959.764756] RIP: 0033:0x7f624aeccb19 [ 1959.765174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1959.767248] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1959.768100] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1959.768904] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1959.769703] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1959.770509] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1959.771325] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:57:07 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r4, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x34, r5, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_EEE_MODES_OURS={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x24044021}, 0x0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000006c0)={0x1038, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x1010, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x8}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "0942a9d067d924223403e29971e640d21e86a0520ce4c920ff0e8984c43d6cbe35a88fd6360e03e5cc3c27dee99b5c7b06f3f2460acc658dad6d559e12423cbf741797f835823427460646a278e732de54ceab1547b58574fc85d3f818842ab6d1b486ec74064fa1d5cfe7f0419b5a45a85f17ddde1ba0c5d3bffa201a53910e56afb89a4d272d4710251767233b8644b04162218df616f21ba0d8d5080ece7094e63e378deab8e09e069553d6ab212c388902ba479ee06a04f3e95f475a909939205d8583bf56482213ccfd38c95a2da8e2d0075736edbcb3c56212b13fada5586330d534ccada82f1988aaaccfc9b90448718619a9db9b75071a8ef3fe2bd6e3d83b1b446d8cc95dd7ea6793d9500ccb39aeccbaf05f0371e0a431a584b6d0fa7cb6807093a34f7d2119c3b61c2b13aa7d28802bf52a12ead916ef99d83f022ae01a308fe1becb1c2e67f19a4edde6ead9ee72c1381a9574e80c79062f10b43e9d3a3efbf9ff9020bc560462a0e74ce4c87bd68568b22669a5fb88d9a60a930ddb1d0bf7d325f7ebea61d726dbf359f4a9865c24fb53da172b2462580d7b1c31c1f818b32f852dcc4015f92a951df72112468bb1fec12d1c5ca4aede2fd41b30e16f9b03057903c35b6622475b382d2f44592fcc361608bae8795c63f63019bdedce286ca7fc0cb851d62e7dba72298cfc7263a66eaf12c3ecfd87bce35108b7da5db3c6a74130c00e877ac70ed23002a9b98a21828d9de61126c8c40644ec8cfaa70b81f6f1cd1b8fe3092eb9cf886439d476fe6fbd60d01a1cff59a56cc30ff81cc8e4a5b8ef89cc5ef808160724323a163933cfe80e4e3a374d749025e62993aa564be65b4e9856827e6046012e3adfef4623c519fe9faa411a41ce5e1cf5739eb1e4894e7f629184e52335221086002228d75c60d26541887419629a67718ba2bcdf59229ae05ecd9c498aecd0ebdcd73fcd39a382b29f382d7e554befaca7ffba91009f96fc044de54a39757d7b47be4eb7a4cb4cc3bd7b8176d86a8fdde8dfa756fa7e262ed14f9d98ea3ae15a200e5b1e839918ad9126de3c4c2a070fca33004e5e4e4e19593fd332de0f8992b994a452a7114624a96dcfd558a70b515f2f3c4a78cbb0b1b30e5f911e33edcf5d02fe416eb2a5927da29548db5e28ec940f0942ab18ed7959c5c9ce225f700b807e3572bf402ef7a45a51f634eceafc6d555aa7bf9846e639a2cb26c49cf120d7606446abe9cd2f3d8827031717fcabf1605fdac6149720b86df8376de109991df4caa60f9b385879801dbd63374df0a131b10a96287c01cc3322c2f748854160fe64f4f9ee9783edd8d4cc593e2b6d261bd339cdcac43f08a49ace65a230b7277d85234427083cf88d268c54cc83589953b522dc9cb6362595a15d6a325e39644404a2a9d495525233a8ab13076ca25338c28aa4b06658c28a517459434b1a5555e5fe0f8b6babbd071e0307f93f6a025598aacbabd4a18bccb42b0e85d650aa8efc73608086992a0f7155c238f1da9d856ea63e7a6bf669ab2050bb04eb245ff8b578f2bedcd977e081ac1f2b174a693345ddb4f0003c7f1e225fc965ee93b6f877dd355d7f570d0166d16bb129ebc7e2e15a3878055d1346b6e1d39f7b3580675ecf9826e5b23cb8c79da330f101b5e6d86f5fff2405b7718934c5886a8706db6480f2a476b73919a7b3e8dd7119ebb64a4a504886ed056b381acd88790a5d6d3e9852cb696f8023e6692d8197a356d9620e72c38a9ac1ddb15baf6452837ac12a1282af01f7bf99af03f8d1a4eadb20235dc444b5f420ef7d3297e4f2487a9306fb2d26630691f009a7bf49eff31910e7e59ea68870f8a351577985758728500c3c75176f921d0d438d959d63be3052e4f6f287af57e8c8a75c90a39211e8f8a3f2405727fc1d48e76d7ac313b558604613c740d736194a1360bba9bdd0df0e86edeefb14aaaa4ef47a06d4b64dc3f343efa9e50e33656d938505588086edc5244f0ddd0b8200a88f913ffb8c104589aa0ae885a03e770686e9fd133c7280eb5897af8df6c9600968be21af84d8dd61822419388bb05904406c4fd9fd497950fcf5341d77c4752c6f4f31c9336a6abd4704ace9ec22dd795b534b361bb497208072a9aa1c031adf9b1493fc54f4b42ccbc03bffb1cd2be25ba64c7d1304e83f151d4c5cc7a2ccf4bbd670c35118644dccd3c6f2656cab2bbf6e49ef0017709f332b0da6e381fd1e2fa523fcdd0edade72e9d82c4e9427be6aaebff4d7c70234f48eca88da018b9073bb63fc46e54aaa8248a3a6afe9876fbc41b1c6dd690b3d5f569f32eb943e374e1b5afb13bf2677b85198c39c9f775e7a0200dd2561dcbf66a4702f7e3942d7c255bdf6321d0b5c6c63c978d4742e20f84a962a20ec08fa029cc8c55f171ff9b2a614145ea5a6c6c80d88afca76e7826931230f433ad0543eb782989098b1c0d6ab1d79c5c52b5bab346d397a8a0a2c0d42efadffb3d1c98ddf2b919c28daa416fe843c38d19a708fdf71ceb0d474a413609dfe845bd019acbd65b1b6eae7d2954383be96ffba328a6566d349cc0d040f895eeacdaf85a2e51e9f2f61e68f9195ecf0e09356f0d3ada5ee9741a45fae7ade0a768058cf05f1f598da240e2dd6c2638064deb3e72692b9d27f7cfaf108c30a9f5545c07850a6b06e06ad40da90167b8aa1baf77af323fdfc27a3e3378f8ec7a0cf833c1032b42d680855baadbbec10a0639b55b3c0b5582c1f876701ea3353f950081a16af4facbaf174f1bc168e730eaae0784c4e0ec9dc9ffb786232596e4fd2e53db32cb3b7089c5a74c5dbfd7006da5d062d1444e89d90ccf5064545db039effb28b50aab91279bc7a339abe4d3e7cbd443d7cd37665cbd0132f618e1312c0aeb8bcf3083f6d689710dddc62341021d661bd533dc6f6f1610fef283ee51d81071050b628bf83dd97bff97c5441529254386dcca692088b513e5feae5e0220b952b77714557500b9a5b83fac30edb5f6a34859ac62cf449a74ff0897c0ee09368c7f3fc44df159a2248efacdf34cdf16eaa0d44246ca3d372586c99ff606b8bb82b96ad1e30a4dfa9a0026735b1c47edd5d1a831b8d59b69c7d781769ab04772a9e8aa84f80e0062112f874a697503f3552c599f7f2536adbfc6178583f3aeb13ecb6aba5aefcc73339b0b04db36a63910bb56c7d4c7aa53cd1d33fdefe4d2b3c3ac694b8b4171cca0fcdc89b03d236bc0b0ff7b37431e6edeb9b2ce454785e68c53f3f189b3bc4e2ef0ce208a3277166547f850090ef38de7f93460e8544545ca7b6fc0bbf5f868a13cfc5d35c5ee247336bfceb96f8fe68a2eb07bf44ee52452602fbacd124a4b42ce375e96a1c5bdc309b0651b72601df0fff975b600c60bb3b4e32582bdeaa348f2186cd00cd779223fa7d62aab35e662f4dfe353d1e9ba1f34cf363c39c04b902ea0185ef40fee1a9fe44530cc8e584084f7d46402744d7ad630c78b4677dc4c9533a7be910e22b12c51d6121005d01121bbb7f46ec9600aea36c4966f901abb58c77f4e2e0f5e38ddfd9a9a2d69fab6bc93e78ee83ed9fa23e6999e554d05fe98cbf4f7e62e981effa7bede4d49f83cbfa011b9453da51d3bb5ea46d66a6d8aa0129a0f3fe59d7b4144e08f43b373d4421665057750caf1a81323c082d49aca35b91b61460a25b8abbfae4a8502b7c905815a1d7fb5e95d28316b5fd0fb5789b3ca955fdc0ab9782a2d571119df4b8e38e7289fc2bcb149923a345be1fbd11bcec61cc6c82e2c2788e8cf84e1d40ba24b7606bea81d587e3da223de5884b1e60aca13f88d072d40ec0f3856c4eed4318edd0e1a8fad62a581a449ba41862410803138c219f92795c4829386dfe0fccb553d0495c7d78aa1e0e0afd76bc22a5f0befaef4c375a400df3c7d9ed396b5a174f8bd8606e99207a3bfd0a4e827f40aed2ffef3c6c614bba255af7f39cf04dd701f66b53f68c870c9849fbceebf5b17c3fa0986cd4882d176cb251f7d841a239235a68dade12458d60b9fd05bc6f71edf56f1abbbb07186486fe7fb6ad691b7fe33a8f03409cdc211f73affcc41a3a4a58f418730eb869a4ca378be6e3fca014c721fdcd5c2871d7c2ba71add57fe3c5c59615b16e9120931e233434f6fe3da502fae711c1df8a7874994c57d4a7538ae98bbdcaccc908f3dfc5b835e3f1ed09676be52eda1599d60a6cc5a911031a278ed73afe03d706c65f6bfbc1a6f772409f5e7399815acdc78ea0551718329eee3c20d017d3109ba49c71b5b0d52252f3eff3380ee8d94e8c01578a75f2f36e4519d47b195f4f421ebe8f0ad23306878f2c183f1780430eaec69e0e5e7061baa1127cdf7b36219f4d2af96bfc2bec08cc38bfe68502d437d083b6184af883f62fb1173d49d0c2a025670a5bd3a568da3b2b6d5d9da85aaa56ce20e4d3870c53a83f32b8f1ecc18cd79d0c58839b48e6344b74886b4e5f8b24036ea5f18cbba7a23e6814fc2633dd8525caaface513c4042b16ee8bbe1daca1c65a2c617ea3a29936b90f47b31d6a457259429c835137ac9f8b62b928619b8c0994c3c7ea5c8c2ab3bc69a6d971983bac7b7d629ecae7a89918d366ca17702a69a52a1b7fb8b35ea26bcbf67c44d25b5386ee7257d256554fa80a52ec5bf375c6d9563efbf383fe952f7c0880bce80e7f86c3d963350c5b15fb7d75ef89a85d635a342235740e8aa3b83adeaaf99f56d7ff0b0c6d3d170d715bd85df3e03fad572770271ed1ddc6c7280b1ee042e22a975ca352b6529a45bb8978abe2f03cdb237258dd52e517ac3b1baacafff415cfb0c51381c4d4e4549eaa86af7e74ce242199db43794dc526d5e4e05df47b76f7d755657d322ff4cafca742f30e6cc13e3f22d06c1b5600ba7446d2a993d68132a04511d9cb992385d3c5bd4fe3903f89b9225506b7be9b90a0b8ff7071920665c4947aa6c48a71544bb08ac5ce4a485af61d2853e1818fac3eafc942f7ebab8e4d9eda2119bd5db6588a7c8dd506bc47f59fdec319ab5c40e00c72d71bf54fd23b7e0e3a2fe9fdea6a7a5e561e1a93f27a4530d5dc7d5d9a3250fa814cf64f08c95e1bda1aa7b5ade91652bc3977c02ef72c17233f0c2c532d4272ac6d8f84dc1e0dd8464a70c4cdbaff36f4f72ecee38122d295452498b31a36a2d7fa250ffb6b2e448ce4da7543c57a332a0d0da2db6ebf2484e37e76f6d17e25bcd11dc2f81d8c950730811afde5bb69e3312b4bfaaef09f5e00285fa6e239f012b5ae9228489bf675d5f6922c27d2e47a033d2c5052841898e61e4162b78cb7aa116f67dc9612a6f14f9df2e60529244dd0fdb60ad3698607626b2dafbd60adb1f8acd06e25a6ca0e66a686bbc32c3a875fa38d71e97aff58c5bc56936f67d130aa3f4b2fa0373c62155158fccc43c59b39b6815866fe45f996bc13b0a7d32037c8b6553f6df8a7ce9fc326f6b206b6c499bd20b9aef47a9b92ce055819b50dce000bd314b5e69f6ef696627bfb38945f0860044bb5754bd439cd6f59fd3607b6b1df3c4e6a45fb35cb5180adaf98ac9160a3827255a0517a01f26518fcff59dd24ad647adb7acc92c2fa8ce852aadb199d11cb1a1f8eb4b4d80e48e125f1d94a251356e357514256b19b6e1a2f5ae4d303f28ab59ba179485beca3cd47d29ce36e180ddd156605dd6dca73df0c3d3b351edf94887572551f3e14c3c8cbe68618c846f58d6039e7b83757362956ff53bb1dbaea0f91f513e6646760fb0195d5ce5de1d6"}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x1038}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) perf_event_open(&(0x7f0000000400)={0x5, 0x80, 0x6, 0x1f, 0x7, 0x3, 0x0, 0x1, 0x312f0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8000, 0x1, @perf_bp={&(0x7f00000003c0), 0x7}, 0x41e32, 0xffffffffffffff7d, 0x8ec8, 0x8, 0x3, 0xffffffae, 0x200, 0x0, 0x5, 0x0, 0x40}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x230ae0718ff03c96) r8 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r8, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r2, 0x8, 0x0, 0x8000) fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) 23:57:07 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x13902}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x0) mlock(&(0x7f0000ffc000/0x4000)=nil, 0x4000) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000001500), 0x4) syz_emit_ethernet(0x46, &(0x7f0000000040)={@multicast, @local, @val={@void}, {@arp={0x806, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x0, @dev, @remote, @link_local, @rand_addr=' \x01\x00'}}}}, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/drivers\x00', 0x0, 0x0) fsync(r1) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {0xb}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$AUTOFS_IOC_READY(r1, 0x9360, 0x800) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c63616368653d6d6d61702c76657273696f6e3d391481d51ccb818e6d819a6347e8006766ce67b363f3d3767defd8202b7e6cec644d072fe7466beceed0a7cdf4caba7f7918efb36ab4ede57f0d8de44bcfac016c21283a227a4b08ec7a5723865ee53cb67a4841ad881937a81b14c6d05dae54"]) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) openat2(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', &(0x7f0000000200)={0x63af2ba475f03b48, 0x100, 0x37}, 0x18) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) ioctl$TUNSETGROUP(0xffffffffffffffff, 0x400454ce, 0x0) dup2(0xffffffffffffffff, r2) openat$cgroup_ro(r1, &(0x7f0000000180)='blkio.bfq.io_wait_time_recursive\x00', 0x0, 0x0) 23:57:07 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x0, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") [ 1959.882970] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 23:57:07 executing program 6: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000001500)=ANY=[]) r1 = openat(r0, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r3, 0x0, 0x10000000c) syz_io_uring_setup(0x52c1, &(0x7f0000000140)={0x0, 0x6d6f, 0x24, 0x2, 0xbb}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000080)) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000340)=ANY=[@ANYRES64=r4, @ANYBLOB="c0ff000001000000000000000000000009000000000000000000361500000000000000000000000500000000000000040000007747000004000000e0ffffff0001000000000000050000000000000009000000000000000700000000000f002000000000000000000000000000000000000000000000000000000000000000000000000000000026ce72f95122e1e5718ab9767043cec498378c5f3a110bac716943ed974f09bb5c81356b79cad7187434ed0f03edd2bf35a3425198f760b623001e33a67fc36d60f172be312829f18654b38c76a337563e83668e2891c106e2c23fe48c3795a1c96a"]) ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f0000056b00)={{0x0, 0x8, 0x7, 0x0, 0x3, 0x5, 0x6, 0xffff, 0x3, 0x1, 0x0, 0x2, 0x3f, 0x1000, 0x5}}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000440)) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000057b00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5, r8}], 0x80, "5fabd34a60e47f"}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000640)=ANY=[@ANYRES64, @ANYBLOB="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"]) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r3, 0xd000943d, 0x0) r10 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x200000, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r10, 0x81f8943c, &(0x7f0000000800)) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000300)={0x8, 0x0, 0x3, 0x1, 0x563, 0x2}) 23:57:07 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x24, 0x0, 0x0, 0x0) 23:57:07 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:57:07 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x0, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") 23:57:07 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 38) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:57:07 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="2503001e8bfc00005a6e1f"], 0x24}}, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$TIPC_CMD_GET_LINKS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x9084000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x24, 0x0, 0x400, 0x70bd26, 0x25dfdbfb, {{}, {}, {0x8, 0x11, 0xfff}}, ["", "", ""]}, 0x24}}, 0x4004041) dup2(0xffffffffffffffff, r4) openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) recvmmsg(r1, &(0x7f0000002e80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x32}}], 0x1, 0x0, 0x0) [ 1960.027287] FAULT_INJECTION: forcing a failure. [ 1960.027287] name failslab, interval 1, probability 0, space 0, times 0 [ 1960.028713] CPU: 0 PID: 10003 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1960.029496] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1960.030439] Call Trace: [ 1960.030740] dump_stack+0x107/0x167 [ 1960.031159] should_fail.cold+0x5/0xa [ 1960.031599] ? create_object.isra.0+0x3a/0xa20 [ 1960.032117] should_failslab+0x5/0x20 [ 1960.032548] kmem_cache_alloc+0x5b/0x310 [ 1960.033010] create_object.isra.0+0x3a/0xa20 [ 1960.033504] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1960.034081] kmem_cache_alloc_trace+0x151/0x320 [ 1960.034613] __io_uring_add_tctx_node+0x15c/0x520 [ 1960.035171] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1960.035773] ? alloc_fd+0x2e7/0x670 [ 1960.036195] io_uring_setup+0x1fbb/0x2980 [ 1960.036668] ? vfs_write+0x2ac/0xb10 [ 1960.037097] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1960.037674] ? wait_for_completion_io+0x270/0x270 [ 1960.038241] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1960.038847] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1960.039432] do_syscall_64+0x33/0x40 [ 1960.039853] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1960.040432] RIP: 0033:0x7f624aeccb19 [ 1960.040854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1960.042958] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1960.043825] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1960.044641] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1960.045453] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1960.046265] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1960.047150] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:57:23 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:57:23 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r4, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x34, r5, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_EEE_MODES_OURS={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x24044021}, 0x0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000006c0)={0x1038, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x1010, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x8}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "0942a9d067d924223403e29971e640d21e86a0520ce4c920ff0e8984c43d6cbe35a88fd6360e03e5cc3c27dee99b5c7b06f3f2460acc658dad6d559e12423cbf741797f835823427460646a278e732de54ceab1547b58574fc85d3f818842ab6d1b486ec74064fa1d5cfe7f0419b5a45a85f17ddde1ba0c5d3bffa201a53910e56afb89a4d272d4710251767233b8644b04162218df616f21ba0d8d5080ece7094e63e378deab8e09e069553d6ab212c388902ba479ee06a04f3e95f475a909939205d8583bf56482213ccfd38c95a2da8e2d0075736edbcb3c56212b13fada5586330d534ccada82f1988aaaccfc9b90448718619a9db9b75071a8ef3fe2bd6e3d83b1b446d8cc95dd7ea6793d9500ccb39aeccbaf05f0371e0a431a584b6d0fa7cb6807093a34f7d2119c3b61c2b13aa7d28802bf52a12ead916ef99d83f022ae01a308fe1becb1c2e67f19a4edde6ead9ee72c1381a9574e80c79062f10b43e9d3a3efbf9ff9020bc560462a0e74ce4c87bd68568b22669a5fb88d9a60a930ddb1d0bf7d325f7ebea61d726dbf359f4a9865c24fb53da172b2462580d7b1c31c1f818b32f852dcc4015f92a951df72112468bb1fec12d1c5ca4aede2fd41b30e16f9b03057903c35b6622475b382d2f44592fcc361608bae8795c63f63019bdedce286ca7fc0cb851d62e7dba72298cfc7263a66eaf12c3ecfd87bce35108b7da5db3c6a74130c00e877ac70ed23002a9b98a21828d9de61126c8c40644ec8cfaa70b81f6f1cd1b8fe3092eb9cf886439d476fe6fbd60d01a1cff59a56cc30ff81cc8e4a5b8ef89cc5ef808160724323a163933cfe80e4e3a374d749025e62993aa564be65b4e9856827e6046012e3adfef4623c519fe9faa411a41ce5e1cf5739eb1e4894e7f629184e52335221086002228d75c60d26541887419629a67718ba2bcdf59229ae05ecd9c498aecd0ebdcd73fcd39a382b29f382d7e554befaca7ffba91009f96fc044de54a39757d7b47be4eb7a4cb4cc3bd7b8176d86a8fdde8dfa756fa7e262ed14f9d98ea3ae15a200e5b1e839918ad9126de3c4c2a070fca33004e5e4e4e19593fd332de0f8992b994a452a7114624a96dcfd558a70b515f2f3c4a78cbb0b1b30e5f911e33edcf5d02fe416eb2a5927da29548db5e28ec940f0942ab18ed7959c5c9ce225f700b807e3572bf402ef7a45a51f634eceafc6d555aa7bf9846e639a2cb26c49cf120d7606446abe9cd2f3d8827031717fcabf1605fdac6149720b86df8376de109991df4caa60f9b385879801dbd63374df0a131b10a96287c01cc3322c2f748854160fe64f4f9ee9783edd8d4cc593e2b6d261bd339cdcac43f08a49ace65a230b7277d85234427083cf88d268c54cc83589953b522dc9cb6362595a15d6a325e39644404a2a9d495525233a8ab13076ca25338c28aa4b06658c28a517459434b1a5555e5fe0f8b6babbd071e0307f93f6a025598aacbabd4a18bccb42b0e85d650aa8efc73608086992a0f7155c238f1da9d856ea63e7a6bf669ab2050bb04eb245ff8b578f2bedcd977e081ac1f2b174a693345ddb4f0003c7f1e225fc965ee93b6f877dd355d7f570d0166d16bb129ebc7e2e15a3878055d1346b6e1d39f7b3580675ecf9826e5b23cb8c79da330f101b5e6d86f5fff2405b7718934c5886a8706db6480f2a476b73919a7b3e8dd7119ebb64a4a504886ed056b381acd88790a5d6d3e9852cb696f8023e6692d8197a356d9620e72c38a9ac1ddb15baf6452837ac12a1282af01f7bf99af03f8d1a4eadb20235dc444b5f420ef7d3297e4f2487a9306fb2d26630691f009a7bf49eff31910e7e59ea68870f8a351577985758728500c3c75176f921d0d438d959d63be3052e4f6f287af57e8c8a75c90a39211e8f8a3f2405727fc1d48e76d7ac313b558604613c740d736194a1360bba9bdd0df0e86edeefb14aaaa4ef47a06d4b64dc3f343efa9e50e33656d938505588086edc5244f0ddd0b8200a88f913ffb8c104589aa0ae885a03e770686e9fd133c7280eb5897af8df6c9600968be21af84d8dd61822419388bb05904406c4fd9fd497950fcf5341d77c4752c6f4f31c9336a6abd4704ace9ec22dd795b534b361bb497208072a9aa1c031adf9b1493fc54f4b42ccbc03bffb1cd2be25ba64c7d1304e83f151d4c5cc7a2ccf4bbd670c35118644dccd3c6f2656cab2bbf6e49ef0017709f332b0da6e381fd1e2fa523fcdd0edade72e9d82c4e9427be6aaebff4d7c70234f48eca88da018b9073bb63fc46e54aaa8248a3a6afe9876fbc41b1c6dd690b3d5f569f32eb943e374e1b5afb13bf2677b85198c39c9f775e7a0200dd2561dcbf66a4702f7e3942d7c255bdf6321d0b5c6c63c978d4742e20f84a962a20ec08fa029cc8c55f171ff9b2a614145ea5a6c6c80d88afca76e7826931230f433ad0543eb782989098b1c0d6ab1d79c5c52b5bab346d397a8a0a2c0d42efadffb3d1c98ddf2b919c28daa416fe843c38d19a708fdf71ceb0d474a413609dfe845bd019acbd65b1b6eae7d2954383be96ffba328a6566d349cc0d040f895eeacdaf85a2e51e9f2f61e68f9195ecf0e09356f0d3ada5ee9741a45fae7ade0a768058cf05f1f598da240e2dd6c2638064deb3e72692b9d27f7cfaf108c30a9f5545c07850a6b06e06ad40da90167b8aa1baf77af323fdfc27a3e3378f8ec7a0cf833c1032b42d680855baadbbec10a0639b55b3c0b5582c1f876701ea3353f950081a16af4facbaf174f1bc168e730eaae0784c4e0ec9dc9ffb786232596e4fd2e53db32cb3b7089c5a74c5dbfd7006da5d062d1444e89d90ccf5064545db039effb28b50aab91279bc7a339abe4d3e7cbd443d7cd37665cbd0132f618e1312c0aeb8bcf3083f6d689710dddc62341021d661bd533dc6f6f1610fef283ee51d81071050b628bf83dd97bff97c5441529254386dcca692088b513e5feae5e0220b952b77714557500b9a5b83fac30edb5f6a34859ac62cf449a74ff0897c0ee09368c7f3fc44df159a2248efacdf34cdf16eaa0d44246ca3d372586c99ff606b8bb82b96ad1e30a4dfa9a0026735b1c47edd5d1a831b8d59b69c7d781769ab04772a9e8aa84f80e0062112f874a697503f3552c599f7f2536adbfc6178583f3aeb13ecb6aba5aefcc73339b0b04db36a63910bb56c7d4c7aa53cd1d33fdefe4d2b3c3ac694b8b4171cca0fcdc89b03d236bc0b0ff7b37431e6edeb9b2ce454785e68c53f3f189b3bc4e2ef0ce208a3277166547f850090ef38de7f93460e8544545ca7b6fc0bbf5f868a13cfc5d35c5ee247336bfceb96f8fe68a2eb07bf44ee52452602fbacd124a4b42ce375e96a1c5bdc309b0651b72601df0fff975b600c60bb3b4e32582bdeaa348f2186cd00cd779223fa7d62aab35e662f4dfe353d1e9ba1f34cf363c39c04b902ea0185ef40fee1a9fe44530cc8e584084f7d46402744d7ad630c78b4677dc4c9533a7be910e22b12c51d6121005d01121bbb7f46ec9600aea36c4966f901abb58c77f4e2e0f5e38ddfd9a9a2d69fab6bc93e78ee83ed9fa23e6999e554d05fe98cbf4f7e62e981effa7bede4d49f83cbfa011b9453da51d3bb5ea46d66a6d8aa0129a0f3fe59d7b4144e08f43b373d4421665057750caf1a81323c082d49aca35b91b61460a25b8abbfae4a8502b7c905815a1d7fb5e95d28316b5fd0fb5789b3ca955fdc0ab9782a2d571119df4b8e38e7289fc2bcb149923a345be1fbd11bcec61cc6c82e2c2788e8cf84e1d40ba24b7606bea81d587e3da223de5884b1e60aca13f88d072d40ec0f3856c4eed4318edd0e1a8fad62a581a449ba41862410803138c219f92795c4829386dfe0fccb553d0495c7d78aa1e0e0afd76bc22a5f0befaef4c375a400df3c7d9ed396b5a174f8bd8606e99207a3bfd0a4e827f40aed2ffef3c6c614bba255af7f39cf04dd701f66b53f68c870c9849fbceebf5b17c3fa0986cd4882d176cb251f7d841a239235a68dade12458d60b9fd05bc6f71edf56f1abbbb07186486fe7fb6ad691b7fe33a8f03409cdc211f73affcc41a3a4a58f418730eb869a4ca378be6e3fca014c721fdcd5c2871d7c2ba71add57fe3c5c59615b16e9120931e233434f6fe3da502fae711c1df8a7874994c57d4a7538ae98bbdcaccc908f3dfc5b835e3f1ed09676be52eda1599d60a6cc5a911031a278ed73afe03d706c65f6bfbc1a6f772409f5e7399815acdc78ea0551718329eee3c20d017d3109ba49c71b5b0d52252f3eff3380ee8d94e8c01578a75f2f36e4519d47b195f4f421ebe8f0ad23306878f2c183f1780430eaec69e0e5e7061baa1127cdf7b36219f4d2af96bfc2bec08cc38bfe68502d437d083b6184af883f62fb1173d49d0c2a025670a5bd3a568da3b2b6d5d9da85aaa56ce20e4d3870c53a83f32b8f1ecc18cd79d0c58839b48e6344b74886b4e5f8b24036ea5f18cbba7a23e6814fc2633dd8525caaface513c4042b16ee8bbe1daca1c65a2c617ea3a29936b90f47b31d6a457259429c835137ac9f8b62b928619b8c0994c3c7ea5c8c2ab3bc69a6d971983bac7b7d629ecae7a89918d366ca17702a69a52a1b7fb8b35ea26bcbf67c44d25b5386ee7257d256554fa80a52ec5bf375c6d9563efbf383fe952f7c0880bce80e7f86c3d963350c5b15fb7d75ef89a85d635a342235740e8aa3b83adeaaf99f56d7ff0b0c6d3d170d715bd85df3e03fad572770271ed1ddc6c7280b1ee042e22a975ca352b6529a45bb8978abe2f03cdb237258dd52e517ac3b1baacafff415cfb0c51381c4d4e4549eaa86af7e74ce242199db43794dc526d5e4e05df47b76f7d755657d322ff4cafca742f30e6cc13e3f22d06c1b5600ba7446d2a993d68132a04511d9cb992385d3c5bd4fe3903f89b9225506b7be9b90a0b8ff7071920665c4947aa6c48a71544bb08ac5ce4a485af61d2853e1818fac3eafc942f7ebab8e4d9eda2119bd5db6588a7c8dd506bc47f59fdec319ab5c40e00c72d71bf54fd23b7e0e3a2fe9fdea6a7a5e561e1a93f27a4530d5dc7d5d9a3250fa814cf64f08c95e1bda1aa7b5ade91652bc3977c02ef72c17233f0c2c532d4272ac6d8f84dc1e0dd8464a70c4cdbaff36f4f72ecee38122d295452498b31a36a2d7fa250ffb6b2e448ce4da7543c57a332a0d0da2db6ebf2484e37e76f6d17e25bcd11dc2f81d8c950730811afde5bb69e3312b4bfaaef09f5e00285fa6e239f012b5ae9228489bf675d5f6922c27d2e47a033d2c5052841898e61e4162b78cb7aa116f67dc9612a6f14f9df2e60529244dd0fdb60ad3698607626b2dafbd60adb1f8acd06e25a6ca0e66a686bbc32c3a875fa38d71e97aff58c5bc56936f67d130aa3f4b2fa0373c62155158fccc43c59b39b6815866fe45f996bc13b0a7d32037c8b6553f6df8a7ce9fc326f6b206b6c499bd20b9aef47a9b92ce055819b50dce000bd314b5e69f6ef696627bfb38945f0860044bb5754bd439cd6f59fd3607b6b1df3c4e6a45fb35cb5180adaf98ac9160a3827255a0517a01f26518fcff59dd24ad647adb7acc92c2fa8ce852aadb199d11cb1a1f8eb4b4d80e48e125f1d94a251356e357514256b19b6e1a2f5ae4d303f28ab59ba179485beca3cd47d29ce36e180ddd156605dd6dca73df0c3d3b351edf94887572551f3e14c3c8cbe68618c846f58d6039e7b83757362956ff53bb1dbaea0f91f513e6646760fb0195d5ce5de1d6"}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x1038}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) perf_event_open(&(0x7f0000000400)={0x5, 0x80, 0x6, 0x1f, 0x7, 0x3, 0x0, 0x1, 0x312f0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8000, 0x1, @perf_bp={&(0x7f00000003c0), 0x7}, 0x41e32, 0xffffffffffffff7d, 0x8ec8, 0x8, 0x3, 0xffffffae, 0x200, 0x0, 0x5, 0x0, 0x40}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x230ae0718ff03c96) r8 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r8, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r2, 0x8, 0x0, 0x8000) fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) [ 1975.401877] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1975.406465] FAULT_INJECTION: forcing a failure. [ 1975.406465] name failslab, interval 1, probability 0, space 0, times 0 [ 1975.408182] CPU: 0 PID: 10026 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1975.409088] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1975.410333] Call Trace: [ 1975.410691] dump_stack+0x107/0x167 [ 1975.411150] should_fail.cold+0x5/0xa [ 1975.411645] ? xas_alloc+0x336/0x440 [ 1975.412128] should_failslab+0x5/0x20 [ 1975.412602] kmem_cache_alloc+0x5b/0x310 [ 1975.413125] ? stack_trace_consume_entry+0x160/0x160 [ 1975.413727] xas_alloc+0x336/0x440 [ 1975.414190] xas_create+0x34a/0x10d0 [ 1975.414651] ? kernel_text_address+0xf2/0x120 [ 1975.415225] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1975.415873] xas_store+0x8c/0x1c40 [ 1975.416328] __xa_store+0x164/0x2d0 [ 1975.416779] ? xa_delete_node+0x280/0x280 [ 1975.417285] ? trace_hardirqs_on+0x5b/0x180 [ 1975.417847] xa_store+0x31/0x50 [ 1975.418267] __io_uring_add_tctx_node+0x1cf/0x520 [ 1975.418844] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1975.419547] ? alloc_fd+0x2e7/0x670 [ 1975.420002] io_uring_setup+0x1fbb/0x2980 [ 1975.420538] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1975.421180] ? wait_for_completion_io+0x270/0x270 [ 1975.421801] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1975.422448] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1975.423096] do_syscall_64+0x33/0x40 [ 1975.423563] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1975.424176] RIP: 0033:0x7f624aeccb19 [ 1975.424640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1975.426807] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1975.427776] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1975.428608] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1975.429510] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1975.430351] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1975.431258] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:57:23 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x27, 0x0, 0x0, 0x0) 23:57:23 executing program 1: sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000380)="d563d4beb563c8a76aab5ec526aba6b3d8558c0d24b456f4868aa1f2fe60e8bf08611551b8f8db40094bcb0655a3de525f2d3270120a792f51965f88f3c466ac0a819f556151800823ae85930d21cb9da39ff47b4ecfa459ab56b9be8b6b1925e9468a932dce578ee8534bb54bbb18cb0ad6c45dfd2432b572d66f2b5116ec13e068dae8bc2d8b8d8797ca86507e1c7dab2af9bf5fd57d29179e71ef2717da2df1e33fa16d45fee3b8d8dc3bcdbee2b51be2b74d0c6e81d9e421853aec6440f73fdcebbd78346a39ccc4a8f94a91f099087c24e7ac916e12b4d7d346e4ee", 0xde}], 0x1, &(0x7f0000000500)=[@hopopts_2292={{0x148, 0x29, 0x36, {0x67, 0x25, '\x00', [@calipso={0x7, 0x30, {0x2, 0xa, 0x4e, 0x81, [0x668, 0x0, 0x0, 0x1f, 0x8]}}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @generic={0x6, 0xf6, "324dbbafdf729321596b50e354d68ec25959c2471aef6a253caa74d0a71595f1053595207718ae13929e7f16bacfdb3a4a81ff7697d45b2c4e84b18ba5bff19f47e5ba02adca4b7ff95eaa221d4a2bfc8bd8cb19e08d6649b9bf8facb7362f8d52b2d6b4374ad94c6c2275abe92b63f95f5d423c9762e8f25ea974bbe52cd41d496a9eceb3b946c12e6034955d239d49cef65b1cc690964e91d1e2457f85981c2fbd3b1480bba90218ca262d4e1ea403a8eb887817512cf4c6a0e96eee45817e997802d0880879e77efe41f5e8f5166205361d422df4730682fc9d75153cc84bcde30c21c7f3da82b84e69aacd9f0cae0ce3d86fa003"}]}}}, @hopopts={{0x30, 0x29, 0x36, {0x0, 0x2, '\x00', [@hao={0xc9, 0x10, @remote}]}}}], 0x178}, 0x4000000) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000480)={0x0}, 0x1, 0x0, 0x0, 0x8010}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x7, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0xfffffffe}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)) syz_io_uring_setup(0x5606, &(0x7f0000000040)={0x0, 0xef33, 0x0, 0x3, 0x256}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip6_tables_targets\x00') mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000000, 0x13, r2, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(r0, r1, &(0x7f00000006c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x3, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1, {0x0, r3}}, 0x6) syz_io_uring_setup(0x782a, &(0x7f0000000280)={0x0, 0x1507, 0x20, 0x0, 0x261}, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000300)) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wndno=', @ANYRESHEX, @ANYBLOB="2c765572e9696f6e3d3970123030302c616363040000000000010001"]) 23:57:23 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x0, &(0x7f00000011c0)="74b322437b665a8aa7ebe7a577316f346f03b1f2b976d55ec2eae101b5b2740638ec032882b61ea426688137a26ca16917323a69b15b5ff62cbde185c62fe4bcf82eae7c2e4564e3cb6216") 23:57:23 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 18) 23:57:23 executing program 6: r0 = open$dir(&(0x7f0000000040)='./file1\x00', 0x0, 0x0) lseek(r0, 0x0, 0x3) fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000080), &(0x7f0000000400)=ANY=[@ANYBLOB="00fb2a0305e90a778c76633ed20000003d0402a20e174c9be604aec55cff9112ef2d822a"], 0x2a, 0x2) r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write(0xffffffffffffffff, &(0x7f0000000000)="cd656d69f282f46caedc9da09676f7d5fb29e8f4e5806ac5ea118e763750a91ce6ccb5e3206389", 0x27) fallocate(r2, 0x2, 0x2, 0x6985) r3 = socket$netlink(0x10, 0x3, 0x0) fchownat(r0, &(0x7f0000000440)='./file1/file0\x00', 0x0, 0xee01, 0x100) getsockopt$ARPT_SO_GET_INFO(r1, 0x0, 0x60, &(0x7f0000000140)={'filter\x00', 0x0, [0xfffff4b7, 0xb6, 0x401]}, &(0x7f00000001c0)=0x44) sendmsg$nl_generic(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, 0x42, 0xe21}, 0x14}}, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[], 0xfdef) timerfd_create(0x0, 0x0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) openat$full(0xffffffffffffff9c, &(0x7f0000000340), 0x24400, 0x0) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[@ANYBLOB="06000ecbd2b900da00", @ANYRES16=r4, @ANYBLOB="000229bd7000ffdbdf25370000000c009900010400006a00000008009f000700000005001801110000000800a10004000000"], 0x38}, 0x1, 0x0, 0x0, 0x50}, 0x0) open_tree(r0, &(0x7f0000000100)='./file1\x00', 0x100) timerfd_create(0x0, 0x0) unshare(0x48020200) 23:57:23 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 39) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:57:23 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448dc, 0x0) [ 1975.482361] 9pnet: Insufficient options for proto=fd [ 1975.520026] FAULT_INJECTION: forcing a failure. [ 1975.520026] name failslab, interval 1, probability 0, space 0, times 0 [ 1975.522984] CPU: 1 PID: 10027 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 1975.524551] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1975.526380] Call Trace: [ 1975.526987] dump_stack+0x107/0x167 [ 1975.527830] should_fail.cold+0x5/0xa [ 1975.528696] ? create_object.isra.0+0x3a/0xa20 [ 1975.529771] should_failslab+0x5/0x20 [ 1975.530614] kmem_cache_alloc+0x5b/0x310 [ 1975.531592] create_object.isra.0+0x3a/0xa20 [ 1975.532565] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1975.533713] kmem_cache_alloc+0x159/0x310 [ 1975.534663] ? mempool_free_pages+0x20/0x20 [ 1975.535637] mempool_alloc+0x148/0x360 [ 1975.536546] ? mempool_resize+0x7d0/0x7d0 [ 1975.537515] ? __test_set_page_writeback+0x160/0xbb0 [ 1975.538666] bio_alloc_bioset+0x36e/0x600 [ 1975.539607] ? bvec_alloc+0x2f0/0x2f0 [ 1975.540507] ext4_bio_write_page+0xa79/0x1480 [ 1975.541572] mpage_submit_page+0x14b/0x260 [ 1975.542531] ext4_writepages+0x1f2e/0x3350 [ 1975.543646] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1975.544753] ? SOFTIRQ_verbose+0x10/0x10 [ 1975.545875] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1975.547032] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1975.548144] do_writepages+0xee/0x2a0 [ 1975.549012] ? page_writeback_cpu_online+0x20/0x20 [ 1975.550108] ? lock_acquire+0x197/0x470 [ 1975.550991] ? __ext4_ioctl+0x1543/0x4190 [ 1975.551933] ? lock_release+0x680/0x680 [ 1975.552846] __filemap_fdatawrite_range+0x24b/0x2f0 [ 1975.553958] ? delete_from_page_cache_batch+0xa30/0xa30 [ 1975.555169] ? down_write+0xe0/0x160 [ 1975.556013] ? down_write_killable+0x180/0x180 [ 1975.557052] filemap_write_and_wait_range+0x65/0x100 [ 1975.558177] __ext4_ioctl+0x1578/0x4190 [ 1975.559055] ? __switch_to_asm+0x34/0x60 [ 1975.559996] ? __schedule+0x82c/0x1ea0 [ 1975.560883] ? ext4_reset_inode_seed+0x450/0x450 [ 1975.561934] ? io_schedule_timeout+0x140/0x140 [ 1975.562935] ? SOFTIRQ_verbose+0x10/0x10 [ 1975.563920] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1975.565172] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1975.566319] ? do_vfs_ioctl+0x283/0x10d0 [ 1975.567225] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1975.568397] ? generic_block_fiemap+0x60/0x60 [ 1975.569408] ? lock_downgrade+0x6d0/0x6d0 [ 1975.570347] ? clockevents_program_event+0x131/0x360 [ 1975.571540] ? selinux_file_ioctl+0xb6/0x270 [ 1975.572535] ? __ext4_ioctl+0x4190/0x4190 [ 1975.573477] __x64_sys_ioctl+0x19a/0x210 [ 1975.574400] do_syscall_64+0x33/0x40 [ 1975.575232] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1975.576363] RIP: 0033:0x7f93b5e79b19 [ 1975.577185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1975.581197] RSP: 002b:00007f93b33ef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1975.582852] RAX: ffffffffffffffda RBX: 00007f93b5f8cf60 RCX: 00007f93b5e79b19 [ 1975.584416] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 1975.585972] RBP: 00007f93b33ef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1975.587540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1975.589091] R13: 00007ffe7c940f6f R14: 00007f93b33ef300 R15: 0000000000022000 [ 1975.597452] 9pnet: Insufficient options for proto=fd 23:57:39 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000002f00)='./file0/../file0\x00', 0x0, 0x21000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000002c0)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x2854034, &(0x7f0000000180)=ANY=[@ANYBLOB="64656275675f77616e745f65787472615f6973697a653d3078303030308c5b45f3eeaf452d303030302c00"]) 23:57:39 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 40) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:57:39 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 19) 23:57:39 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x2a, 0x0, 0x0, 0x0) 23:57:39 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540), 0x0, &(0x7f0000000580)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[], [{@context={'context', 0x3d, 'staff_u'}}, {@context={'context', 0x3d, 'sysadm_u'}}]}}) syz_io_uring_setup(0x4013, &(0x7f0000000000)={0x0, 0xa1f5, 0x8, 0x1, 0x16}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)) syz_io_uring_setup(0x3168, &(0x7f0000000140)={0x0, 0xfd02, 0x0, 0x3, 0x391}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000280)=@IORING_OP_LINK_TIMEOUT={0xf, 0x9e7743fc372f10ed, 0x0, 0x0, 0x0, &(0x7f0000000240)={0x77359400}, 0x1, 0x0, 0x1}, 0x3) 23:57:39 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r4, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x34, r5, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_EEE_MODES_OURS={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x24044021}, 0x0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000006c0)={0x1038, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x1010, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x8}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "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"}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x1038}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) perf_event_open(&(0x7f0000000400)={0x5, 0x80, 0x6, 0x1f, 0x7, 0x3, 0x0, 0x1, 0x312f0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8000, 0x1, @perf_bp={&(0x7f00000003c0), 0x7}, 0x41e32, 0xffffffffffffff7d, 0x8ec8, 0x8, 0x3, 0xffffffae, 0x200, 0x0, 0x5, 0x0, 0x40}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x230ae0718ff03c96) r8 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r8, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r2, 0x8, 0x0, 0x8000) fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) 23:57:39 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:57:39 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448dc, 0x0) (fail_nth: 1) [ 1991.590065] FAULT_INJECTION: forcing a failure. [ 1991.590065] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1991.592266] CPU: 1 PID: 10049 Comm: syz-executor.2 Not tainted 5.10.233 #1 [ 1991.593493] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1991.594968] Call Trace: [ 1991.595443] dump_stack+0x107/0x167 [ 1991.596095] should_fail.cold+0x5/0xa [ 1991.596770] _copy_to_user+0x2e/0x180 [ 1991.597446] simple_read_from_buffer+0xcc/0x160 [ 1991.598268] proc_fail_nth_read+0x198/0x230 [ 1991.599029] ? proc_sessionid_read+0x230/0x230 [ 1991.599838] ? security_file_permission+0xb1/0xe0 [ 1991.600725] ? proc_sessionid_read+0x230/0x230 [ 1991.601534] vfs_read+0x228/0x620 [ 1991.602157] ksys_read+0x12d/0x260 [ 1991.602783] ? vfs_write+0xb10/0xb10 [ 1991.603450] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1991.604385] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1991.605305] do_syscall_64+0x33/0x40 [ 1991.605970] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1991.606878] RIP: 0033:0x7f3ba3a2c69c [ 1991.607526] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1991.610775] RSP: 002b:00007f3ba0fef170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1991.612105] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007f3ba3a2c69c [ 1991.612382] FAULT_INJECTION: forcing a failure. [ 1991.612382] name failslab, interval 1, probability 0, space 0, times 0 [ 1991.613358] RDX: 000000000000000f RSI: 00007f3ba0fef1e0 RDI: 0000000000000003 [ 1991.613397] RBP: 00007f3ba0fef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1991.613406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1991.613416] R13: 00007ffd5bfc94bf R14: 00007f3ba0fef300 R15: 0000000000022000 [ 1991.622592] CPU: 0 PID: 10053 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1991.624039] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1991.625774] Call Trace: [ 1991.626326] dump_stack+0x107/0x167 [ 1991.627082] should_fail.cold+0x5/0xa [ 1991.627905] ? create_object.isra.0+0x3a/0xa20 [ 1991.628862] should_failslab+0x5/0x20 [ 1991.629658] kmem_cache_alloc+0x5b/0x310 [ 1991.630508] create_object.isra.0+0x3a/0xa20 [ 1991.631423] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1991.632500] kmem_cache_alloc+0x159/0x310 [ 1991.633375] xas_alloc+0x336/0x440 [ 1991.634120] xas_create+0x34a/0x10d0 [ 1991.634917] ? kernel_text_address+0xf2/0x120 [ 1991.635869] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1991.636969] xas_store+0x8c/0x1c40 [ 1991.637733] __xa_store+0x164/0x2d0 [ 1991.638495] ? xa_delete_node+0x280/0x280 [ 1991.639382] ? trace_hardirqs_on+0x5b/0x180 [ 1991.640309] xa_store+0x31/0x50 [ 1991.641017] __io_uring_add_tctx_node+0x1cf/0x520 [ 1991.642029] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1991.643126] ? alloc_fd+0x2e7/0x670 [ 1991.643903] io_uring_setup+0x1fbb/0x2980 [ 1991.644797] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1991.645872] ? wait_for_completion_io+0x270/0x270 [ 1991.646913] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1991.648033] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1991.649104] do_syscall_64+0x33/0x40 [ 1991.649878] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1991.650948] RIP: 0033:0x7f624aeccb19 [ 1991.651721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1991.655593] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1991.657193] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1991.658683] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1991.660193] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1991.661687] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1991.663174] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 [ 1991.675509] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1991.678500] SELinux: duplicate or incompatible mount options [ 1991.701303] SELinux: duplicate or incompatible mount options 23:57:39 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x30, 0x0, 0x0, 0x0) [ 1991.747184] FAULT_INJECTION: forcing a failure. [ 1991.747184] name failslab, interval 1, probability 0, space 0, times 0 [ 1991.750359] CPU: 1 PID: 10043 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 1991.751516] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1991.753210] Call Trace: [ 1991.753677] dump_stack+0x107/0x167 [ 1991.754310] should_fail.cold+0x5/0xa [ 1991.754947] ? mempool_alloc+0x148/0x360 [ 1991.755615] ? mempool_free_pages+0x20/0x20 [ 1991.756346] should_failslab+0x5/0x20 [ 1991.756979] kmem_cache_alloc+0x5b/0x310 [ 1991.757668] ? mempool_free_pages+0x20/0x20 [ 1991.758507] mempool_alloc+0x148/0x360 [ 1991.759227] ? mempool_resize+0x7d0/0x7d0 [ 1991.760073] ? mempool_resize+0x7d0/0x7d0 [ 1991.760813] bvec_alloc+0xd8/0x2f0 [ 1991.761422] bio_alloc_bioset+0x40a/0x600 [ 1991.762111] ? bvec_alloc+0x2f0/0x2f0 [ 1991.762788] ext4_bio_write_page+0xa79/0x1480 [ 1991.763569] mpage_submit_page+0x14b/0x260 [ 1991.764309] ext4_writepages+0x1f2e/0x3350 [ 1991.765132] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1991.765927] ? SOFTIRQ_verbose+0x10/0x10 [ 1991.766754] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1991.767805] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1991.768668] do_writepages+0xee/0x2a0 [ 1991.769310] ? page_writeback_cpu_online+0x20/0x20 [ 1991.770119] ? lock_acquire+0x197/0x470 [ 1991.770780] ? __ext4_ioctl+0x1543/0x4190 [ 1991.771475] ? lock_release+0x680/0x680 [ 1991.772168] __filemap_fdatawrite_range+0x24b/0x2f0 [ 1991.772988] ? delete_from_page_cache_batch+0xa30/0xa30 [ 1991.774056] ? down_write+0xe0/0x160 [ 1991.774682] ? down_write_killable+0x180/0x180 [ 1991.775625] filemap_write_and_wait_range+0x65/0x100 [ 1991.776464] __ext4_ioctl+0x1578/0x4190 [ 1991.777284] ? ext4_reset_inode_seed+0x450/0x450 [ 1991.778125] ? perf_trace_lock+0xac/0x490 [ 1991.778937] ? SOFTIRQ_verbose+0x10/0x10 [ 1991.779667] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1991.780789] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1991.781634] ? do_vfs_ioctl+0x283/0x10d0 [ 1991.782435] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1991.783279] ? generic_block_fiemap+0x60/0x60 [ 1991.784163] ? lock_downgrade+0x6d0/0x6d0 [ 1991.784849] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1991.785642] ? wait_for_completion_io+0x270/0x270 [ 1991.786471] ? selinux_file_ioctl+0xb6/0x270 [ 1991.787344] ? __ext4_ioctl+0x4190/0x4190 [ 1991.788033] __x64_sys_ioctl+0x19a/0x210 [ 1991.788867] do_syscall_64+0x33/0x40 [ 1991.789478] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1991.790460] RIP: 0033:0x7f93b5e79b19 [ 1991.791066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1991.794639] RSP: 002b:00007f93b33ef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1991.795875] RAX: ffffffffffffffda RBX: 00007f93b5f8cf60 RCX: 00007f93b5e79b19 [ 1991.797047] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 1991.798203] RBP: 00007f93b33ef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1991.799337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1991.800501] R13: 00007ffe7c940f6f R14: 00007f93b33ef300 R15: 0000000000022000 23:57:39 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448dc, 0x0) 23:57:39 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0xffff, 0x0, 0x0, 0x7ffc0000}]}) pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x0) 23:57:39 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1991.850732] EXT4-fs (sda): Unrecognized mount option "debug_want_extra_isize=0x0000Œ[Eóî¯E-0000" or missing value [ 1991.875965] EXT4-fs (sda): Unrecognized mount option "debug_want_extra_isize=0x0000Œ[Eóî¯E-0000" or missing value 23:57:39 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 41) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:57:39 executing program 1: timer_create(0x1, &(0x7f0000000300)={0x0, 0x1c, 0x0, @thr={&(0x7f0000000300), &(0x7f0000000400)="4f4de54f265cfb188efbf02769cf3b15e1d297de82b43664cfc66aed6f928f98737fa5a66faf0e95cdaf03826914ff1e2d1cbe1f2534e63f4448cada3c469cd171e2fb9b80b1276855a16ca038ea2c2b50b9aaadd95706a659fd8d2a3432f493f06e"}}, &(0x7f0000000040)) writev(0xffffffffffffffff, &(0x7f0000001480)=[{&(0x7f0000000280)="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", 0x120}], 0x1) pkey_mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x1, 0xffffffffffffffff) add_key$keyring(&(0x7f0000000380), 0x0, 0x0, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) timer_create(0x3, &(0x7f0000000000)={0x0, 0xc, 0x0, @thr={&(0x7f0000000300), &(0x7f0000000340)="da510959ed08bc946c0b86c0155e20d053f2e96483936e3dc4eee1b0cf5d94de92287ed24119bad6602a35afd8bc6a5ee309fd32ecb0179fc0a4cce481e7f55923cbabe7c4e72d5a91ffc1cb5421f80e09ad81dcddc8ce5d7b98b47776f70e83ef58456f391f07fd84c15c3cf2746bc871ed10432ff9932fc8170f96a8ba96f1c163b684994527d4da7ff6d54f187665d3d0175185e7037bc67877a906"}}, &(0x7f0000000040)=0x0) timer_settime(r0, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) timer_create(0x6, &(0x7f0000000180)={0x0, 0x7, 0x4, @thr={&(0x7f0000000080)="0322b55a5e7b15180dd2884eacb95140f8be28ab337e914e534d82890fcb244a4f03c80111d56e126d7ff9f5cd7af6404cbfde4e5bb01a8bd7523ed8035c9aaa202dab59f1cad38d63a77e496c35b65fff75435f418fba47339b9c5dee6018e901a99c8322dc486b25d1390c53d1a2e5a791fb1c9957820998cb71f00daf920801c4881c95bbf08145b22edbe6ad69a85f81ff98381813be24f272e2321781dba3e9bb080ead017310aa29d57b1839e12f0dc02f0da3772435cb716cc0c323050baf005db22b25efaa792627ff74cf1732f962543bf26c03f4100dad0d92df6a39e6d7e6100995ae993e73030322ec", &(0x7f0000000240)="ee91181df389e7ac34fbea6d3844699780aa811818122abf81a9d40b335b787c3a06875242b6027bc1ced02b53c942c84731241afd908f483578a072d05b689230bc7517586bafe29535bd1947da4d"}}, &(0x7f00000002c0)) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 23:57:39 executing program 6: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$nl_xfrm(0x10, 0x3, 0x6) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000900)={&(0x7f0000000200)=@l2tp6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)="a63a85f508c53b74be1cc06a8682449c18237d779b4f25f709ca", 0x1a}, {0x0}, {0x0}, {0x0}], 0x4}, 0x0, 0x4000000}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f0000000340)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x40012103, 0x1}, 0x80000001) r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000380)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000100)}, 0x0) r8 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000100)}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0) r11 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r8, 0x8000000) syz_io_uring_submit(r11, r10, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) syz_io_uring_submit(r6, r10, &(0x7f00000000c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x5c6e3b86, 0x0, &(0x7f0000000080)="ffceff07b192cd8efe2d1b1075c3c1", 0x0, 0x0, 0x0, {0x2}}, 0x401) readv(r5, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) ioctl$AUTOFS_DEV_IOCTL_READY(r5, 0xc0189376, &(0x7f0000000180)={{0x1, 0x1, 0x18, r5, {0x30}}, './file1\x00'}) [ 1991.965835] FAULT_INJECTION: forcing a failure. [ 1991.965835] name failslab, interval 1, probability 0, space 0, times 0 [ 1991.967403] CPU: 1 PID: 10075 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1991.968338] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1991.969454] Call Trace: [ 1991.969905] dump_stack+0x107/0x167 [ 1991.970525] should_fail.cold+0x5/0xa [ 1991.971180] ? xas_alloc+0x336/0x440 [ 1991.971823] should_failslab+0x5/0x20 [ 1991.972477] kmem_cache_alloc+0x5b/0x310 [ 1991.973177] xas_alloc+0x336/0x440 [ 1991.973776] xas_create+0x34a/0x10d0 [ 1991.974422] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1991.975295] xas_store+0x8c/0x1c40 [ 1991.975793] __xa_store+0x164/0x2d0 [ 1991.976423] ? xa_delete_node+0x280/0x280 [ 1991.977140] ? trace_hardirqs_on+0x5b/0x180 [ 1991.977866] xa_store+0x31/0x50 [ 1991.978424] __io_uring_add_tctx_node+0x1cf/0x520 [ 1991.979233] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1991.980138] ? alloc_fd+0x2e7/0x670 [ 1991.980767] io_uring_setup+0x1fbb/0x2980 [ 1991.981470] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1991.982314] ? wait_for_completion_io+0x270/0x270 [ 1991.983150] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1991.984049] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1991.984915] do_syscall_64+0x33/0x40 [ 1991.985543] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1991.986406] RIP: 0033:0x7f624aeccb19 [ 1991.987035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1991.990115] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1991.991393] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1991.992591] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1991.993786] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1991.994962] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1991.996151] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:57:39 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x2, 0x0) 23:57:39 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r4, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x34, r5, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_EEE_MODES_OURS={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x24044021}, 0x0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000006c0)={0x1038, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x1010, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x8}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "0942a9d067d924223403e29971e640d21e86a0520ce4c920ff0e8984c43d6cbe35a88fd6360e03e5cc3c27dee99b5c7b06f3f2460acc658dad6d559e12423cbf741797f835823427460646a278e732de54ceab1547b58574fc85d3f818842ab6d1b486ec74064fa1d5cfe7f0419b5a45a85f17ddde1ba0c5d3bffa201a53910e56afb89a4d272d4710251767233b8644b04162218df616f21ba0d8d5080ece7094e63e378deab8e09e069553d6ab212c388902ba479ee06a04f3e95f475a909939205d8583bf56482213ccfd38c95a2da8e2d0075736edbcb3c56212b13fada5586330d534ccada82f1988aaaccfc9b90448718619a9db9b75071a8ef3fe2bd6e3d83b1b446d8cc95dd7ea6793d9500ccb39aeccbaf05f0371e0a431a584b6d0fa7cb6807093a34f7d2119c3b61c2b13aa7d28802bf52a12ead916ef99d83f022ae01a308fe1becb1c2e67f19a4edde6ead9ee72c1381a9574e80c79062f10b43e9d3a3efbf9ff9020bc560462a0e74ce4c87bd68568b22669a5fb88d9a60a930ddb1d0bf7d325f7ebea61d726dbf359f4a9865c24fb53da172b2462580d7b1c31c1f818b32f852dcc4015f92a951df72112468bb1fec12d1c5ca4aede2fd41b30e16f9b03057903c35b6622475b382d2f44592fcc361608bae8795c63f63019bdedce286ca7fc0cb851d62e7dba72298cfc7263a66eaf12c3ecfd87bce35108b7da5db3c6a74130c00e877ac70ed23002a9b98a21828d9de61126c8c40644ec8cfaa70b81f6f1cd1b8fe3092eb9cf886439d476fe6fbd60d01a1cff59a56cc30ff81cc8e4a5b8ef89cc5ef808160724323a163933cfe80e4e3a374d749025e62993aa564be65b4e9856827e6046012e3adfef4623c519fe9faa411a41ce5e1cf5739eb1e4894e7f629184e52335221086002228d75c60d26541887419629a67718ba2bcdf59229ae05ecd9c498aecd0ebdcd73fcd39a382b29f382d7e554befaca7ffba91009f96fc044de54a39757d7b47be4eb7a4cb4cc3bd7b8176d86a8fdde8dfa756fa7e262ed14f9d98ea3ae15a200e5b1e839918ad9126de3c4c2a070fca33004e5e4e4e19593fd332de0f8992b994a452a7114624a96dcfd558a70b515f2f3c4a78cbb0b1b30e5f911e33edcf5d02fe416eb2a5927da29548db5e28ec940f0942ab18ed7959c5c9ce225f700b807e3572bf402ef7a45a51f634eceafc6d555aa7bf9846e639a2cb26c49cf120d7606446abe9cd2f3d8827031717fcabf1605fdac6149720b86df8376de109991df4caa60f9b385879801dbd63374df0a131b10a96287c01cc3322c2f748854160fe64f4f9ee9783edd8d4cc593e2b6d261bd339cdcac43f08a49ace65a230b7277d85234427083cf88d268c54cc83589953b522dc9cb6362595a15d6a325e39644404a2a9d495525233a8ab13076ca25338c28aa4b06658c28a517459434b1a5555e5fe0f8b6babbd071e0307f93f6a025598aacbabd4a18bccb42b0e85d650aa8efc73608086992a0f7155c238f1da9d856ea63e7a6bf669ab2050bb04eb245ff8b578f2bedcd977e081ac1f2b174a693345ddb4f0003c7f1e225fc965ee93b6f877dd355d7f570d0166d16bb129ebc7e2e15a3878055d1346b6e1d39f7b3580675ecf9826e5b23cb8c79da330f101b5e6d86f5fff2405b7718934c5886a8706db6480f2a476b73919a7b3e8dd7119ebb64a4a504886ed056b381acd88790a5d6d3e9852cb696f8023e6692d8197a356d9620e72c38a9ac1ddb15baf6452837ac12a1282af01f7bf99af03f8d1a4eadb20235dc444b5f420ef7d3297e4f2487a9306fb2d26630691f009a7bf49eff31910e7e59ea68870f8a351577985758728500c3c75176f921d0d438d959d63be3052e4f6f287af57e8c8a75c90a39211e8f8a3f2405727fc1d48e76d7ac313b558604613c740d736194a1360bba9bdd0df0e86edeefb14aaaa4ef47a06d4b64dc3f343efa9e50e33656d938505588086edc5244f0ddd0b8200a88f913ffb8c104589aa0ae885a03e770686e9fd133c7280eb5897af8df6c9600968be21af84d8dd61822419388bb05904406c4fd9fd497950fcf5341d77c4752c6f4f31c9336a6abd4704ace9ec22dd795b534b361bb497208072a9aa1c031adf9b1493fc54f4b42ccbc03bffb1cd2be25ba64c7d1304e83f151d4c5cc7a2ccf4bbd670c35118644dccd3c6f2656cab2bbf6e49ef0017709f332b0da6e381fd1e2fa523fcdd0edade72e9d82c4e9427be6aaebff4d7c70234f48eca88da018b9073bb63fc46e54aaa8248a3a6afe9876fbc41b1c6dd690b3d5f569f32eb943e374e1b5afb13bf2677b85198c39c9f775e7a0200dd2561dcbf66a4702f7e3942d7c255bdf6321d0b5c6c63c978d4742e20f84a962a20ec08fa029cc8c55f171ff9b2a614145ea5a6c6c80d88afca76e7826931230f433ad0543eb782989098b1c0d6ab1d79c5c52b5bab346d397a8a0a2c0d42efadffb3d1c98ddf2b919c28daa416fe843c38d19a708fdf71ceb0d474a413609dfe845bd019acbd65b1b6eae7d2954383be96ffba328a6566d349cc0d040f895eeacdaf85a2e51e9f2f61e68f9195ecf0e09356f0d3ada5ee9741a45fae7ade0a768058cf05f1f598da240e2dd6c2638064deb3e72692b9d27f7cfaf108c30a9f5545c07850a6b06e06ad40da90167b8aa1baf77af323fdfc27a3e3378f8ec7a0cf833c1032b42d680855baadbbec10a0639b55b3c0b5582c1f876701ea3353f950081a16af4facbaf174f1bc168e730eaae0784c4e0ec9dc9ffb786232596e4fd2e53db32cb3b7089c5a74c5dbfd7006da5d062d1444e89d90ccf5064545db039effb28b50aab91279bc7a339abe4d3e7cbd443d7cd37665cbd0132f618e1312c0aeb8bcf3083f6d689710dddc62341021d661bd533dc6f6f1610fef283ee51d81071050b628bf83dd97bff97c5441529254386dcca692088b513e5feae5e0220b952b77714557500b9a5b83fac30edb5f6a34859ac62cf449a74ff0897c0ee09368c7f3fc44df159a2248efacdf34cdf16eaa0d44246ca3d372586c99ff606b8bb82b96ad1e30a4dfa9a0026735b1c47edd5d1a831b8d59b69c7d781769ab04772a9e8aa84f80e0062112f874a697503f3552c599f7f2536adbfc6178583f3aeb13ecb6aba5aefcc73339b0b04db36a63910bb56c7d4c7aa53cd1d33fdefe4d2b3c3ac694b8b4171cca0fcdc89b03d236bc0b0ff7b37431e6edeb9b2ce454785e68c53f3f189b3bc4e2ef0ce208a3277166547f850090ef38de7f93460e8544545ca7b6fc0bbf5f868a13cfc5d35c5ee247336bfceb96f8fe68a2eb07bf44ee52452602fbacd124a4b42ce375e96a1c5bdc309b0651b72601df0fff975b600c60bb3b4e32582bdeaa348f2186cd00cd779223fa7d62aab35e662f4dfe353d1e9ba1f34cf363c39c04b902ea0185ef40fee1a9fe44530cc8e584084f7d46402744d7ad630c78b4677dc4c9533a7be910e22b12c51d6121005d01121bbb7f46ec9600aea36c4966f901abb58c77f4e2e0f5e38ddfd9a9a2d69fab6bc93e78ee83ed9fa23e6999e554d05fe98cbf4f7e62e981effa7bede4d49f83cbfa011b9453da51d3bb5ea46d66a6d8aa0129a0f3fe59d7b4144e08f43b373d4421665057750caf1a81323c082d49aca35b91b61460a25b8abbfae4a8502b7c905815a1d7fb5e95d28316b5fd0fb5789b3ca955fdc0ab9782a2d571119df4b8e38e7289fc2bcb149923a345be1fbd11bcec61cc6c82e2c2788e8cf84e1d40ba24b7606bea81d587e3da223de5884b1e60aca13f88d072d40ec0f3856c4eed4318edd0e1a8fad62a581a449ba41862410803138c219f92795c4829386dfe0fccb553d0495c7d78aa1e0e0afd76bc22a5f0befaef4c375a400df3c7d9ed396b5a174f8bd8606e99207a3bfd0a4e827f40aed2ffef3c6c614bba255af7f39cf04dd701f66b53f68c870c9849fbceebf5b17c3fa0986cd4882d176cb251f7d841a239235a68dade12458d60b9fd05bc6f71edf56f1abbbb07186486fe7fb6ad691b7fe33a8f03409cdc211f73affcc41a3a4a58f418730eb869a4ca378be6e3fca014c721fdcd5c2871d7c2ba71add57fe3c5c59615b16e9120931e233434f6fe3da502fae711c1df8a7874994c57d4a7538ae98bbdcaccc908f3dfc5b835e3f1ed09676be52eda1599d60a6cc5a911031a278ed73afe03d706c65f6bfbc1a6f772409f5e7399815acdc78ea0551718329eee3c20d017d3109ba49c71b5b0d52252f3eff3380ee8d94e8c01578a75f2f36e4519d47b195f4f421ebe8f0ad23306878f2c183f1780430eaec69e0e5e7061baa1127cdf7b36219f4d2af96bfc2bec08cc38bfe68502d437d083b6184af883f62fb1173d49d0c2a025670a5bd3a568da3b2b6d5d9da85aaa56ce20e4d3870c53a83f32b8f1ecc18cd79d0c58839b48e6344b74886b4e5f8b24036ea5f18cbba7a23e6814fc2633dd8525caaface513c4042b16ee8bbe1daca1c65a2c617ea3a29936b90f47b31d6a457259429c835137ac9f8b62b928619b8c0994c3c7ea5c8c2ab3bc69a6d971983bac7b7d629ecae7a89918d366ca17702a69a52a1b7fb8b35ea26bcbf67c44d25b5386ee7257d256554fa80a52ec5bf375c6d9563efbf383fe952f7c0880bce80e7f86c3d963350c5b15fb7d75ef89a85d635a342235740e8aa3b83adeaaf99f56d7ff0b0c6d3d170d715bd85df3e03fad572770271ed1ddc6c7280b1ee042e22a975ca352b6529a45bb8978abe2f03cdb237258dd52e517ac3b1baacafff415cfb0c51381c4d4e4549eaa86af7e74ce242199db43794dc526d5e4e05df47b76f7d755657d322ff4cafca742f30e6cc13e3f22d06c1b5600ba7446d2a993d68132a04511d9cb992385d3c5bd4fe3903f89b9225506b7be9b90a0b8ff7071920665c4947aa6c48a71544bb08ac5ce4a485af61d2853e1818fac3eafc942f7ebab8e4d9eda2119bd5db6588a7c8dd506bc47f59fdec319ab5c40e00c72d71bf54fd23b7e0e3a2fe9fdea6a7a5e561e1a93f27a4530d5dc7d5d9a3250fa814cf64f08c95e1bda1aa7b5ade91652bc3977c02ef72c17233f0c2c532d4272ac6d8f84dc1e0dd8464a70c4cdbaff36f4f72ecee38122d295452498b31a36a2d7fa250ffb6b2e448ce4da7543c57a332a0d0da2db6ebf2484e37e76f6d17e25bcd11dc2f81d8c950730811afde5bb69e3312b4bfaaef09f5e00285fa6e239f012b5ae9228489bf675d5f6922c27d2e47a033d2c5052841898e61e4162b78cb7aa116f67dc9612a6f14f9df2e60529244dd0fdb60ad3698607626b2dafbd60adb1f8acd06e25a6ca0e66a686bbc32c3a875fa38d71e97aff58c5bc56936f67d130aa3f4b2fa0373c62155158fccc43c59b39b6815866fe45f996bc13b0a7d32037c8b6553f6df8a7ce9fc326f6b206b6c499bd20b9aef47a9b92ce055819b50dce000bd314b5e69f6ef696627bfb38945f0860044bb5754bd439cd6f59fd3607b6b1df3c4e6a45fb35cb5180adaf98ac9160a3827255a0517a01f26518fcff59dd24ad647adb7acc92c2fa8ce852aadb199d11cb1a1f8eb4b4d80e48e125f1d94a251356e357514256b19b6e1a2f5ae4d303f28ab59ba179485beca3cd47d29ce36e180ddd156605dd6dca73df0c3d3b351edf94887572551f3e14c3c8cbe68618c846f58d6039e7b83757362956ff53bb1dbaea0f91f513e6646760fb0195d5ce5de1d6"}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x1038}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) perf_event_open(&(0x7f0000000400)={0x5, 0x80, 0x6, 0x1f, 0x7, 0x3, 0x0, 0x1, 0x312f0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8000, 0x1, @perf_bp={&(0x7f00000003c0), 0x7}, 0x41e32, 0xffffffffffffff7d, 0x8ec8, 0x8, 0x3, 0xffffffae, 0x200, 0x0, 0x5, 0x0, 0x40}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x230ae0718ff03c96) r8 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r8, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r2, 0x8, 0x0, 0x8000) 23:57:39 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x36, 0x0, 0x0, 0x0) [ 1992.121024] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 23:57:39 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 20) 23:57:39 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:57:39 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x4b47, 0x0) 23:57:39 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 42) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1992.210488] FAULT_INJECTION: forcing a failure. [ 1992.210488] name failslab, interval 1, probability 0, space 0, times 0 [ 1992.213236] CPU: 0 PID: 10096 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 1992.214707] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1992.216477] Call Trace: [ 1992.217041] dump_stack+0x107/0x167 [ 1992.217827] should_fail.cold+0x5/0xa [ 1992.218635] ? ___slab_alloc+0x360/0x700 [ 1992.219499] ? create_object.isra.0+0x3a/0xa20 [ 1992.220481] should_failslab+0x5/0x20 [ 1992.221160] FAULT_INJECTION: forcing a failure. [ 1992.221160] name failslab, interval 1, probability 0, space 0, times 0 [ 1992.221295] kmem_cache_alloc+0x5b/0x310 [ 1992.221324] create_object.isra.0+0x3a/0xa20 [ 1992.224353] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1992.225445] kmem_cache_alloc+0x159/0x310 [ 1992.226331] xas_alloc+0x336/0x440 [ 1992.227092] xas_create+0x34a/0x10d0 [ 1992.227912] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1992.229035] xas_store+0x8c/0x1c40 [ 1992.229815] __xa_store+0x164/0x2d0 [ 1992.230588] ? xa_delete_node+0x280/0x280 [ 1992.231475] ? trace_hardirqs_on+0x5b/0x180 [ 1992.232425] xa_store+0x31/0x50 [ 1992.233128] __io_uring_add_tctx_node+0x1cf/0x520 [ 1992.234155] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1992.235275] ? alloc_fd+0x2e7/0x670 [ 1992.236067] io_uring_setup+0x1fbb/0x2980 [ 1992.236961] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1992.238059] ? wait_for_completion_io+0x270/0x270 [ 1992.239114] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1992.240249] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1992.241351] do_syscall_64+0x33/0x40 [ 1992.242144] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1992.243233] RIP: 0033:0x7f624aeccb19 [ 1992.244029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1992.247963] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1992.249592] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 1992.251111] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 1992.252638] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 1992.254170] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 1992.255676] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 [ 1992.257234] CPU: 1 PID: 10098 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 1992.258054] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1992.258995] Call Trace: [ 1992.259310] dump_stack+0x107/0x167 [ 1992.259748] should_fail.cold+0x5/0xa [ 1992.260200] ? create_object.isra.0+0x3a/0xa20 [ 1992.260735] should_failslab+0x5/0x20 [ 1992.261172] kmem_cache_alloc+0x5b/0x310 [ 1992.261657] create_object.isra.0+0x3a/0xa20 [ 1992.262174] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1992.262774] kmem_cache_alloc+0x159/0x310 [ 1992.263270] ? mempool_free_pages+0x20/0x20 [ 1992.263765] mempool_alloc+0x148/0x360 [ 1992.264248] ? mempool_resize+0x7d0/0x7d0 [ 1992.264742] ? mempool_resize+0x7d0/0x7d0 [ 1992.265254] bvec_alloc+0xd8/0x2f0 [ 1992.265677] bio_alloc_bioset+0x40a/0x600 [ 1992.266167] ? bvec_alloc+0x2f0/0x2f0 [ 1992.266641] ext4_bio_write_page+0xa79/0x1480 [ 1992.267189] mpage_submit_page+0x14b/0x260 [ 1992.267695] ext4_writepages+0x1f2e/0x3350 [ 1992.268277] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1992.268838] ? SOFTIRQ_verbose+0x10/0x10 [ 1992.269424] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1992.270039] ? __ext4_mark_inode_dirty+0x770/0x770 [ 1992.270599] do_writepages+0xee/0x2a0 [ 1992.271056] ? page_writeback_cpu_online+0x20/0x20 [ 1992.271631] ? lock_acquire+0x197/0x470 [ 1992.272094] ? __ext4_ioctl+0x1543/0x4190 [ 1992.272580] ? lock_release+0x680/0x680 [ 1992.273061] __filemap_fdatawrite_range+0x24b/0x2f0 [ 1992.273643] ? delete_from_page_cache_batch+0xa30/0xa30 [ 1992.274271] ? down_write+0xe0/0x160 [ 1992.274706] ? down_write_killable+0x180/0x180 [ 1992.275245] filemap_write_and_wait_range+0x65/0x100 [ 1992.275832] __ext4_ioctl+0x1578/0x4190 [ 1992.276330] ? ext4_reset_inode_seed+0x450/0x450 [ 1992.276879] ? perf_trace_lock+0xac/0x490 [ 1992.277355] ? SOFTIRQ_verbose+0x10/0x10 [ 1992.277869] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1992.278525] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1992.279117] ? do_vfs_ioctl+0x283/0x10d0 [ 1992.279584] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1992.280201] ? generic_block_fiemap+0x60/0x60 [ 1992.280715] ? lock_downgrade+0x6d0/0x6d0 [ 1992.281204] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1992.281787] ? wait_for_completion_io+0x270/0x270 [ 1992.282366] ? selinux_file_ioctl+0xb6/0x270 [ 1992.282890] ? __ext4_ioctl+0x4190/0x4190 [ 1992.283374] __x64_sys_ioctl+0x19a/0x210 [ 1992.283852] do_syscall_64+0x33/0x40 [ 1992.284294] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1992.284896] RIP: 0033:0x7f93b5e79b19 [ 1992.285331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1992.287415] RSP: 002b:00007f93b33ef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1992.288284] RAX: ffffffffffffffda RBX: 00007f93b5f8cf60 RCX: 00007f93b5e79b19 [ 1992.289090] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 1992.289893] RBP: 00007f93b33ef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1992.290697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1992.291503] R13: 00007ffe7c940f6f R14: 00007f93b33ef300 R15: 0000000000022000 23:57:54 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 43) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:57:54 executing program 6: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$nl_xfrm(0x10, 0x3, 0x6) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000900)={&(0x7f0000000200)=@l2tp6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)="a63a85f508c53b74be1cc06a8682449c18237d779b4f25f709ca", 0x1a}, {0x0}, {0x0}, {0x0}], 0x4}, 0x0, 0x4000000}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f0000000340)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x40012103, 0x1}, 0x80000001) r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000380)='mountinfo\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000100)}, 0x0) r8 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000100)}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0) r11 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r8, 0x8000000) syz_io_uring_submit(r11, r10, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) syz_io_uring_submit(r6, r10, &(0x7f00000000c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x5c6e3b86, 0x0, &(0x7f0000000080)="ffceff07b192cd8efe2d1b1075c3c1", 0x0, 0x0, 0x0, {0x2}}, 0x401) readv(r5, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) ioctl$AUTOFS_DEV_IOCTL_READY(r5, 0xc0189376, &(0x7f0000000180)={{0x1, 0x1, 0x18, r5, {0x30}}, './file1\x00'}) 23:57:54 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x3c, 0x0, 0x0, 0x0) 23:57:54 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:57:54 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r4, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x34, r5, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_EEE_MODES_OURS={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x24044021}, 0x0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000006c0)={0x1038, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x1010, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x8}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "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"}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x1038}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) perf_event_open(&(0x7f0000000400)={0x5, 0x80, 0x6, 0x1f, 0x7, 0x3, 0x0, 0x1, 0x312f0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8000, 0x1, @perf_bp={&(0x7f00000003c0), 0x7}, 0x41e32, 0xffffffffffffff7d, 0x8ec8, 0x8, 0x3, 0xffffffae, 0x200, 0x0, 0x5, 0x0, 0x40}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x230ae0718ff03c96) r8 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r8, &(0x7f0000000480)="af", 0x1, 0x1000000) 23:57:54 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) [ 2006.480082] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. ioctl$sock_bt_hci(r0, 0x4b49, 0x0) 23:57:54 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 21) 23:57:54 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000980)=ANY=[@ANYBLOB="b5cc074c4c5ef5b4017224a249f416bef11806b5bcbf3074181c6a7bb9e1bf72c6ca24310829ed8d535e3c4031e7bc36b0df5ca8edfbd3ed2eb762dec6c591e1f6a9426bd2ca40f4c3a26cb5f893a5dc2fa77a0202ea590dab9a0394020000f9bb61c43782f8d262930bd95be63e89431fa07d5c5c8899fc468ad992c8bb395656129f6dd7f7bc6bf68b31e3b1debe9112f655358a38e0c14828809377f3a0aa"], 0x14}}, 0x20040000) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000600)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="eb0127222c15fd0aa6e99f25be9abd7000fedbdf250f40000005003c0006eaffff070007000000000008003b00070000000000000000000a821ade48b987dc21abc748daa3258b776d5a17da570a83b3de90bf31a4c7934e3e4146f115fdbc4296d32dc0ec4440e2cffb9cfe86809c018efa64bded78265289e3f969667af4b7d897dbf353314fd5c4b38cf3b22db3a62bd0b5583ab495dc13a6f3380b301f3c616dc7d094922978e7a939c66a835bffc911229b6e655718ff9c31a007f6e4ab0584e48d"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000003c0)={{{@in6=@private1, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@local}}, &(0x7f0000000200)=0xe8) lstat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000340)='./file0\x00', &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f00000000c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r4, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000700)={{{@in=@initdev, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@private0}, 0x0, @in=@remote}}, &(0x7f0000000800)=0xe8) fsetxattr$system_posix_acl(r0, &(0x7f0000000180)='system.posix_acl_access\x00', &(0x7f00000008c0)={{}, {}, [{0x2, 0x1, r1}, {0x2, 0x4, r2}, {0x2, 0x2, 0xee00}, {0x2, 0x6, 0xee01}, {0x2, 0x3, r3}, {0x2, 0x6, 0xee00}, {0x2, 0x4, r4}, {0x2, 0x7, r5}], {}, [{0x8, 0x6, 0xee00}, {0x8, 0x2, 0xffffffffffffffff}, {0x8, 0x1, 0xffffffffffffffff}, {0x8, 0x2}], {0x10, 0x6}, {0x20, 0xc}}, 0x84, 0x1) r6 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x2, @perf_config_ext, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) r7 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="5076ad15f91054ea148ea80700229c370400002000210c00", @ANYRES32=0x0, @ANYBLOB="0c0011000000000000000000"], 0x28}}, 0x0) close_range(r7, r6, 0x0) sendmsg$nl_generic(r7, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB], 0x14}}, 0x20040000) sendmsg$BATADV_CMD_SET_MESH(r7, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000600)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="eb0127222c15fd0aa6e99f25c09abd7000fedbdf250f40000005003c0006eaffff070007000000000008003b00070000000000000000000a821ade48b987dc21abc748daa3258b776d5a17da570a83b3de90bf31a4c7934e3e4146f115fdbc4296d32dc0ec4440e2cffb9cfe86809c018efa64bded78265289e3f969667af4b7d897dbf353314fd5c4b38cf3b22db3a62bd0b5583ab495dc13a6f3380b301f3c616dc7d094922978e7a939c66a835bffc911229b6e655718ff9c31a007f6e4ab0584e48d"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_MON_SET(r7, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r8, 0x200, 0x70bd2c, 0x25dfdbfb}, 0x14}}, 0x4044080) [ 2006.510926] FAULT_INJECTION: forcing a failure. [ 2006.510926] name failslab, interval 1, probability 0, space 0, times 0 [ 2006.513021] CPU: 0 PID: 10122 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2006.514141] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2006.515508] Call Trace: [ 2006.515941] dump_stack+0x107/0x167 [ 2006.516540] should_fail.cold+0x5/0xa [ 2006.517158] ? xas_alloc+0x336/0x440 [ 2006.517761] should_failslab+0x5/0x20 [ 2006.518383] kmem_cache_alloc+0x5b/0x310 [ 2006.519055] xas_alloc+0x336/0x440 [ 2006.519622] xas_create+0x34a/0x10d0 [ 2006.520252] ? kernel_text_address+0xf2/0x120 [ 2006.520988] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2006.521853] xas_store+0x8c/0x1c40 [ 2006.522434] __xa_store+0x164/0x2d0 [ 2006.523021] ? xa_delete_node+0x280/0x280 [ 2006.523691] ? trace_hardirqs_on+0x5b/0x180 [ 2006.524406] xa_store+0x31/0x50 [ 2006.524958] __io_uring_add_tctx_node+0x1cf/0x520 [ 2006.525746] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2006.526600] ? alloc_fd+0x2e7/0x670 [ 2006.527190] io_uring_setup+0x1fbb/0x2980 [ 2006.527879] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2006.528707] ? wait_for_completion_io+0x270/0x270 [ 2006.529524] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2006.530364] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2006.531210] do_syscall_64+0x33/0x40 [ 2006.531815] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2006.532664] RIP: 0033:0x7f624aeccb19 [ 2006.533262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2006.536250] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2006.537512] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2006.538663] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2006.539820] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2006.540973] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2006.542146] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:57:54 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x541b, 0x0) 23:57:54 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r4, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x34, r5, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_EEE_MODES_OURS={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x24044021}, 0x0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000006c0)={0x1038, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x1010, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x8}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "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"}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x1038}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) perf_event_open(&(0x7f0000000400)={0x5, 0x80, 0x6, 0x1f, 0x7, 0x3, 0x0, 0x1, 0x312f0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8000, 0x1, @perf_bp={&(0x7f00000003c0), 0x7}, 0x41e32, 0xffffffffffffff7d, 0x8ec8, 0x8, 0x3, 0xffffffae, 0x200, 0x0, 0x5, 0x0, 0x40}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x230ae0718ff03c96) creat(&(0x7f00000000c0)='./file0\x00', 0x0) [ 2006.652515] FAULT_INJECTION: forcing a failure. [ 2006.652515] name failslab, interval 1, probability 0, space 0, times 0 [ 2006.654710] CPU: 0 PID: 10128 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2006.655764] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2006.657024] Call Trace: [ 2006.657446] dump_stack+0x107/0x167 [ 2006.657998] should_fail.cold+0x5/0xa [ 2006.658581] ? create_task_io_context+0x2c/0x430 [ 2006.659304] should_failslab+0x5/0x20 [ 2006.659883] kmem_cache_alloc_node+0x55/0x330 [ 2006.660571] create_task_io_context+0x2c/0x430 [ 2006.661266] submit_bio_checks+0x1382/0x1730 [ 2006.661941] ? mark_held_locks+0x9e/0xe0 [ 2006.662558] ? trace_event_raw_event_block_rq_requeue+0x560/0x560 [ 2006.663496] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2006.664343] ? quarantine_put+0x8b/0x1a0 [ 2006.664961] ? trace_hardirqs_on+0x5b/0x180 [ 2006.665627] ? kmem_cache_free+0xa7/0x2d0 [ 2006.666263] submit_bio_noacct+0x82/0x1010 [ 2006.666904] ? slab_free_freelist_hook+0xa9/0x180 [ 2006.667634] ? blk_queue_enter+0xc30/0xc30 [ 2006.668271] ? kmem_cache_free+0x249/0x2d0 [ 2006.668924] ? mpage_release_unused_pages+0x4a7/0x600 [ 2006.669708] submit_bio+0xf3/0x4e0 [ 2006.670278] ? submit_bio_noacct+0x1010/0x1010 [ 2006.670979] ? up_write+0x191/0x550 [ 2006.671531] ? downgrade_write+0x3a0/0x3a0 [ 2006.672173] ? down_write_killable+0x180/0x180 [ 2006.672880] ext4_io_submit+0x181/0x210 [ 2006.673493] ext4_writepages+0x1265/0x3350 [ 2006.674170] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2006.674913] ? register_lock_class+0xbb/0x17b0 [ 2006.675649] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 2006.676361] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2006.677228] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2006.677977] do_writepages+0xee/0x2a0 [ 2006.678565] ? page_writeback_cpu_online+0x20/0x20 [ 2006.679306] ? lock_acquire+0x197/0x470 [ 2006.679903] ? __ext4_ioctl+0x1543/0x4190 [ 2006.680543] ? lock_release+0x680/0x680 [ 2006.681150] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2006.681906] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2006.682712] ? down_write+0xe0/0x160 [ 2006.683270] ? down_write_killable+0x180/0x180 [ 2006.683965] filemap_write_and_wait_range+0x65/0x100 [ 2006.684748] __ext4_ioctl+0x1578/0x4190 [ 2006.685364] ? ext4_reset_inode_seed+0x450/0x450 [ 2006.686075] ? perf_trace_lock+0xac/0x490 [ 2006.686718] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 2006.687659] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 2006.688458] ? do_vfs_ioctl+0x283/0x10d0 [ 2006.689067] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 2006.689858] ? generic_block_fiemap+0x60/0x60 [ 2006.690539] ? lock_downgrade+0x6d0/0x6d0 [ 2006.691170] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2006.691913] ? wait_for_completion_io+0x270/0x270 [ 2006.692668] ? selinux_file_ioctl+0xb6/0x270 [ 2006.693331] ? __ext4_ioctl+0x4190/0x4190 [ 2006.693960] __x64_sys_ioctl+0x19a/0x210 [ 2006.694575] do_syscall_64+0x33/0x40 [ 2006.695140] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2006.695927] RIP: 0033:0x7f93b5e79b19 [ 2006.696508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2006.698354] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2006.699276] RSP: 002b:00007f93b33ce188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2006.699293] RAX: ffffffffffffffda RBX: 00007f93b5f8d020 RCX: 00007f93b5e79b19 [ 2006.699302] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 2006.699311] RBP: 00007f93b33ce1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2006.699320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 23:57:54 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0x1) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x4300, 0x4) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) close_range(r1, r0, 0x0) ioctl$TIOCCONS(0xffffffffffffffff, 0x541d) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x0) close_range(0xffffffffffffffff, r2, 0x0) connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4e20, 0x5, @remote}, 0x1c) connect$inet6(0xffffffffffffffff, 0x0, 0x0) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000000900)={{}, 0x0, 0x4, @inherit={0x60, 0x0}, @devid}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) dup2(r4, r3) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0), 0x4) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xa001, 0x0) mount$9p_fd(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f00000001c0), 0x2120000, &(0x7f0000000240)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}], [{@subj_type={'subj_type', 0x3d, '\x00'}}]}}) setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000006280)={{{@in=@loopback, @in6=@local, 0x4e22, 0x3, 0x4e24, 0x0, 0x2, 0x0, 0xa0, 0x3b}, {0xfffffffffffffffd, 0x0, 0x3, 0x8, 0xfffffffffffffff7, 0x0, 0x0, 0x487}, {0x5, 0xfff, 0x3, 0x1}, 0x0, 0x800030, 0x3, 0x1, 0x0, 0xf60dea7448723268}, {{@in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x0, 0x2b}, 0x0, @in=@local, 0x0, 0x2, 0x1, 0x7e, 0x10000, 0x5, 0x3f}}, 0xe8) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x11, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1, 0x0, 0x0, 0x3}, 0x200000}], 0x7ffff000, 0x0) [ 2006.699329] R13: 00007ffe7c940f6f R14: 00007f93b33ce300 R15: 0000000000022000 23:57:54 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 2022.170871] FAULT_INJECTION: forcing a failure. [ 2022.170871] name failslab, interval 1, probability 0, space 0, times 0 [ 2022.173440] CPU: 1 PID: 10153 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2022.174921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2022.176689] Call Trace: [ 2022.177261] dump_stack+0x107/0x167 [ 2022.178041] should_fail.cold+0x5/0xa [ 2022.178850] ? create_object.isra.0+0x3a/0xa20 [ 2022.179836] should_failslab+0x5/0x20 [ 2022.180640] kmem_cache_alloc+0x5b/0x310 [ 2022.181519] ? mark_held_locks+0x9e/0xe0 [ 2022.182388] create_object.isra.0+0x3a/0xa20 [ 2022.183331] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2022.184412] kmem_cache_alloc+0x159/0x310 [ 2022.185316] xas_alloc+0x336/0x440 [ 2022.186069] xas_create+0x34a/0x10d0 [ 2022.186867] ? kernel_text_address+0xf2/0x120 [ 2022.187828] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2022.188947] xas_store+0x8c/0x1c40 [ 2022.189728] __xa_store+0x164/0x2d0 [ 2022.190504] ? xa_delete_node+0x280/0x280 [ 2022.191395] ? trace_hardirqs_on+0x5b/0x180 [ 2022.192316] xa_store+0x31/0x50 [ 2022.193029] __io_uring_add_tctx_node+0x1cf/0x520 [ 2022.194047] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2022.195160] ? alloc_fd+0x2e7/0x670 [ 2022.195939] io_uring_setup+0x1fbb/0x2980 [ 2022.196827] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2022.197917] ? wait_for_completion_io+0x270/0x270 [ 2022.198970] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2022.200084] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2022.201186] do_syscall_64+0x33/0x40 [ 2022.201968] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2022.203049] RIP: 0033:0x7f624aeccb19 [ 2022.203835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2022.207737] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2022.209348] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2022.210854] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2022.212371] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2022.213882] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2022.215414] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:58:09 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 44) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:58:09 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x2203, &(0x7f00000002c0)={0x0, 0x0, 0x1, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x66e2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0xa2c0792771366ceb}, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_DYING(r4, 0x0, 0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r6 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) close_range(r6, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(r6, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB], 0x14}}, 0x20040000) sendmsg$BATADV_CMD_SET_MESH(r6, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000600)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="eb0127222c15fd0aa6e99f25be9abd7000fedbdf250f40000005003c0006eaffff070007000000000008003b00070000000000000000000a821ade48b987dc21abc748daa3258b776d5a17da570a83b3de90bf31a4c7934e3e4146f115fdbc4296d32dc0ec4440e2cffb9cfe86809c018efa64bded78265289e3f969667af4b7d897dbf353314fd5c4b38cf3b22db3a62bd0b5583ab495dc13a6f3380b301f3c616dc7d094922978e7a939c66a835bffc911229b6e655718ff9c31a007f6e4ab0584e48d"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) r7 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r10 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) syz_io_uring_submit(r8, r9, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x10000, &(0x7f0000000280)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r10, 0xffffffffffffffff, 0xffffffffffffffff], 0x8, 0x0, 0x1, {0x0, r11}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_READ_FIXED={0x4, 0x3, 0x2007, @fd=r6, 0x8, 0x7ff, 0x0, 0x2, 0x1, {0x2, r11}}, 0xff) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:58:09 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x5421, 0x0) 23:58:09 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 22) 23:58:09 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x202, 0x0, 0x0, 0x0) 23:58:09 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r4, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x34, r5, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_EEE_MODES_OURS={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x24044021}, 0x0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000006c0)={0x1038, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x1010, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x8}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "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"}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x1038}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) perf_event_open(&(0x7f0000000400)={0x5, 0x80, 0x6, 0x1f, 0x7, 0x3, 0x0, 0x1, 0x312f0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8000, 0x1, @perf_bp={&(0x7f00000003c0), 0x7}, 0x41e32, 0xffffffffffffff7d, 0x8ec8, 0x8, 0x3, 0xffffffae, 0x200, 0x0, 0x5, 0x0, 0x40}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x230ae0718ff03c96) 23:58:09 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:58:09 executing program 6: r0 = perf_event_open(&(0x7f0000000540)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x7) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) r2 = add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x3}, 0x0, 0x0, 0x0) ioctl$KDGKBLED(r1, 0x4b64, &(0x7f0000000440)) r3 = add_key$keyring(&(0x7f0000000500), &(0x7f0000000280)={'syz', 0x3}, 0x0, 0x0, 0x0) ioctl$PIO_UNIMAP(r1, 0x4b67, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x1}]}) dup(r0) add_key$fscrypt_v1(0x0, 0x0, &(0x7f0000000440)={0x0, "9b55f610ffe7b9856842eb69443042b20caac33d7dda6ec6986b177fa13c2bd2c68577ea852c8bb47f31ee549b6a921e231ef07ee0f7fca620564faeeeafa440"}, 0x48, 0x0) request_key(&(0x7f0000000400)='ceph\x00', &(0x7f00000005c0)={'syz', 0x3}, &(0x7f00000000c0)='key_or_keyring:', r2) r4 = add_key(&(0x7f0000000080)='cifs.spnego\x00', &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, r3) r5 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$restrict_keyring(0x1d, r5, 0x0, 0x0) add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r5) request_key(&(0x7f0000000180)='.request_key_auth\x00', &(0x7f0000000200)={'syz', 0x2}, &(0x7f0000000380)='ceph\x00', r5) add_key$keyring(&(0x7f0000000740), &(0x7f0000000780)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffa) ioctl$TIOCGSERIAL(r1, 0x541e, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=""/150}) add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x0}, 0x0, 0x0, r4) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') unshare(0x48020200) [ 2022.234095] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 23:58:10 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x5450, 0x0) 23:58:10 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 2022.282951] FAULT_INJECTION: forcing a failure. [ 2022.282951] name failslab, interval 1, probability 0, space 0, times 0 [ 2022.285920] CPU: 1 PID: 10151 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2022.287401] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2022.289164] Call Trace: [ 2022.289740] dump_stack+0x107/0x167 [ 2022.290536] should_fail.cold+0x5/0xa [ 2022.291360] ? create_object.isra.0+0x3a/0xa20 [ 2022.292345] should_failslab+0x5/0x20 [ 2022.293176] kmem_cache_alloc+0x5b/0x310 [ 2022.294082] create_object.isra.0+0x3a/0xa20 [ 2022.295021] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2022.296129] kmem_cache_alloc_node+0x169/0x330 [ 2022.297155] create_task_io_context+0x2c/0x430 [ 2022.298159] submit_bio_checks+0x1382/0x1730 [ 2022.299118] ? mark_held_locks+0x9e/0xe0 [ 2022.300013] ? trace_event_raw_event_block_rq_requeue+0x560/0x560 [ 2022.301335] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2022.302461] ? quarantine_put+0x8b/0x1a0 [ 2022.303325] ? trace_hardirqs_on+0x5b/0x180 [ 2022.304268] ? kmem_cache_free+0xa7/0x2d0 [ 2022.305191] submit_bio_noacct+0x82/0x1010 [ 2022.306099] ? slab_free_freelist_hook+0xa9/0x180 [ 2022.307150] ? blk_queue_enter+0xc30/0xc30 [ 2022.308058] ? kmem_cache_free+0x249/0x2d0 [ 2022.308994] ? mpage_release_unused_pages+0x4a7/0x600 [ 2022.310144] submit_bio+0xf3/0x4e0 [ 2022.310925] ? submit_bio_noacct+0x1010/0x1010 [ 2022.311921] ? up_write+0x191/0x550 [ 2022.312723] ? downgrade_write+0x3a0/0x3a0 [ 2022.313636] ? down_write_killable+0x180/0x180 [ 2022.314643] ext4_io_submit+0x181/0x210 [ 2022.315520] ext4_writepages+0x1265/0x3350 [ 2022.316588] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2022.317659] ? SOFTIRQ_verbose+0x10/0x10 [ 2022.318725] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2022.319874] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2022.320935] do_writepages+0xee/0x2a0 [ 2022.321780] ? page_writeback_cpu_online+0x20/0x20 [ 2022.322846] ? lock_acquire+0x197/0x470 [ 2022.323713] ? __ext4_ioctl+0x1543/0x4190 [ 2022.324628] ? lock_release+0x680/0x680 [ 2022.325531] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2022.326607] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2022.327780] ? down_write+0xe0/0x160 [ 2022.328589] ? down_write_killable+0x180/0x180 [ 2022.329608] filemap_write_and_wait_range+0x65/0x100 [ 2022.330705] __ext4_ioctl+0x1578/0x4190 [ 2022.331612] ? ext4_reset_inode_seed+0x450/0x450 [ 2022.332635] ? perf_trace_lock+0xac/0x490 [ 2022.333536] ? SOFTIRQ_verbose+0x10/0x10 [ 2022.334481] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 2022.335709] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 2022.336828] ? do_vfs_ioctl+0x283/0x10d0 [ 2022.337717] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 2022.338843] ? generic_block_fiemap+0x60/0x60 [ 2022.339811] ? lock_downgrade+0x6d0/0x6d0 [ 2022.340712] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2022.341774] ? wait_for_completion_io+0x270/0x270 [ 2022.342850] ? selinux_file_ioctl+0xb6/0x270 [ 2022.343819] ? __ext4_ioctl+0x4190/0x4190 [ 2022.344721] __x64_sys_ioctl+0x19a/0x210 [ 2022.345618] do_syscall_64+0x33/0x40 [ 2022.346421] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2022.347524] RIP: 0033:0x7f93b5e79b19 [ 2022.348324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2022.352229] RSP: 002b:00007f93b33ef188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2022.353865] RAX: ffffffffffffffda RBX: 00007f93b5f8cf60 RCX: 00007f93b5e79b19 [ 2022.355389] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 2022.356912] RBP: 00007f93b33ef1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2022.358443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2022.359957] R13: 00007ffe7c940f6f R14: 00007f93b33ef300 R15: 0000000000022000 23:58:10 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r4, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x34, r5, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_EEE_MODES_OURS={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x24044021}, 0x0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000006c0)={0x1038, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x1010, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x8}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "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"}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x1038}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) 23:58:10 executing program 6: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='./file2\x00', 0x6, 0x1, &(0x7f0000000240)=[{&(0x7f0000000180)="62bdabab4cd8b39507fbff295e9620ad91465c086de2555b08c5d04ad2eb7308a2844bc452998e99d564eca6f3bbf0f0859a9457ab3114b881cec2f208aafc4309a4ac1705e2cd83843c92e9a92f3edf9e539777eba56bcd3422988dde5b7397fd2b282570a40f4a3e784938904d4f19157a7c148ae89ca3b88b78afb96ec2cdc3e18286d50f976ea2ff29748b84459a441f42c3e5e0649bcffefb88388763d86335c979534e8cc3", 0xa8, 0x3}], 0x4, &(0x7f0000000280)={[{@nodots}, {@dots}, {@fat=@flush}, {@dots}, {@fat=@nfs}, {@dots}], [{@fsmagic={'fsmagic', 0x3d, 0x3}}, {@fsuuid={'fsuuid', 0x3d, {[0x38, 0x61, 0x36, 0x39, 0x37, 0x34, 0x66, 0x37], 0x2d, [0x64, 0x7, 0x33, 0x33], 0x2d, [0x37, 0x32, 0x64, 0x57], 0x2d, [0x63, 0x35, 0x66, 0x30], 0x2d, [0x17, 0x61, 0x62, 0x36, 0x35, 0x63, 0x63, 0x62]}}}, {@smackfshat}, {@smackfsdef={'smackfsdef', 0x3d, '@\x94'}}]}) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$sock_TIOCINQ(r1, 0x541b, 0x0) statx(r1, 0x0, 0x1000, 0x2, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) move_mount(0xffffffffffffffff, &(0x7f0000000640)='./file2\x00', r2, &(0x7f0000000700)='./file2\x00', 0x46) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000340)={{0x1, 0x1, 0x18, r0}, './file2\x00'}) move_mount(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', r0, &(0x7f00000003c0)='./file1\x00', 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x4, 0x937, 0x1, 0x3}) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4306, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x0, 0x400, 0x0, 0xff}, 0x0, 0xfdffffffffffffff, 0xffffffffffffffff, 0x0) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f00000004c0)={0x20000000}) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000001d00200cfcde78ad000000000400020008000c0000000000"], 0x1c}}, 0x0) 23:58:10 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x600, 0x0, 0x0, 0x0) 23:58:10 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:58:10 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x5451, 0x0) [ 2022.481491] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 23:58:10 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 45) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:58:10 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r4, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x34, r5, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_EEE_MODES_OURS={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x24044021}, 0x0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000006c0)={0x1038, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x1010, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x8}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "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"}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x1038}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) perf_event_open(&(0x7f0000000400)={0x5, 0x80, 0x6, 0x1f, 0x7, 0x3, 0x0, 0x1, 0x312f0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8000, 0x1, @perf_bp={&(0x7f00000003c0), 0x7}, 0x41e32, 0xffffffffffffff7d, 0x8ec8, 0x8, 0x3, 0xffffffae, 0x200, 0x0, 0x5, 0x0, 0x40}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x230ae0718ff03c96) [ 2022.576911] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'. 23:58:10 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r3, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x34, r4, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_EEE_MODES_OURS={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x24044021}, 0x0) [ 2022.598480] FAULT_INJECTION: forcing a failure. [ 2022.598480] name failslab, interval 1, probability 0, space 0, times 0 [ 2022.599879] CPU: 0 PID: 10195 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2022.600668] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2022.601623] Call Trace: [ 2022.601931] dump_stack+0x107/0x167 [ 2022.602342] should_fail.cold+0x5/0xa [ 2022.602772] ? xas_alloc+0x336/0x440 [ 2022.603196] should_failslab+0x5/0x20 [ 2022.603625] kmem_cache_alloc+0x5b/0x310 [ 2022.604085] xas_alloc+0x336/0x440 [ 2022.604490] xas_create+0x34a/0x10d0 [ 2022.604920] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2022.605531] xas_store+0x8c/0x1c40 [ 2022.605956] __xa_store+0x164/0x2d0 [ 2022.606379] ? xa_delete_node+0x280/0x280 [ 2022.606862] ? trace_hardirqs_on+0x5b/0x180 [ 2022.607363] xa_store+0x31/0x50 [ 2022.607746] __io_uring_add_tctx_node+0x1cf/0x520 [ 2022.608294] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2022.608894] ? alloc_fd+0x2e7/0x670 [ 2022.609326] io_uring_setup+0x1fbb/0x2980 [ 2022.609808] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2022.610394] ? wait_for_completion_io+0x270/0x270 [ 2022.610955] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2022.611556] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2022.612139] do_syscall_64+0x33/0x40 [ 2022.612569] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2022.613169] RIP: 0033:0x7f624aeccb19 [ 2022.613594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2022.615721] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2022.616599] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2022.617423] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2022.618242] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2022.619051] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2022.619878] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 [ 2022.630729] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 23:58:25 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:58:25 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x700, 0x0, 0x0, 0x0) 23:58:25 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 23) 23:58:25 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 46) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:58:25 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r4, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x34, r5, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_EEE_MODES_OURS={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x24044021}, 0x0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000006c0)={0x1038, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x1010, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x8}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "0942a9d067d924223403e29971e640d21e86a0520ce4c920ff0e8984c43d6cbe35a88fd6360e03e5cc3c27dee99b5c7b06f3f2460acc658dad6d559e12423cbf741797f835823427460646a278e732de54ceab1547b58574fc85d3f818842ab6d1b486ec74064fa1d5cfe7f0419b5a45a85f17ddde1ba0c5d3bffa201a53910e56afb89a4d272d4710251767233b8644b04162218df616f21ba0d8d5080ece7094e63e378deab8e09e069553d6ab212c388902ba479ee06a04f3e95f475a909939205d8583bf56482213ccfd38c95a2da8e2d0075736edbcb3c56212b13fada5586330d534ccada82f1988aaaccfc9b90448718619a9db9b75071a8ef3fe2bd6e3d83b1b446d8cc95dd7ea6793d9500ccb39aeccbaf05f0371e0a431a584b6d0fa7cb6807093a34f7d2119c3b61c2b13aa7d28802bf52a12ead916ef99d83f022ae01a308fe1becb1c2e67f19a4edde6ead9ee72c1381a9574e80c79062f10b43e9d3a3efbf9ff9020bc560462a0e74ce4c87bd68568b22669a5fb88d9a60a930ddb1d0bf7d325f7ebea61d726dbf359f4a9865c24fb53da172b2462580d7b1c31c1f818b32f852dcc4015f92a951df72112468bb1fec12d1c5ca4aede2fd41b30e16f9b03057903c35b6622475b382d2f44592fcc361608bae8795c63f63019bdedce286ca7fc0cb851d62e7dba72298cfc7263a66eaf12c3ecfd87bce35108b7da5db3c6a74130c00e877ac70ed23002a9b98a21828d9de61126c8c40644ec8cfaa70b81f6f1cd1b8fe3092eb9cf886439d476fe6fbd60d01a1cff59a56cc30ff81cc8e4a5b8ef89cc5ef808160724323a163933cfe80e4e3a374d749025e62993aa564be65b4e9856827e6046012e3adfef4623c519fe9faa411a41ce5e1cf5739eb1e4894e7f629184e52335221086002228d75c60d26541887419629a67718ba2bcdf59229ae05ecd9c498aecd0ebdcd73fcd39a382b29f382d7e554befaca7ffba91009f96fc044de54a39757d7b47be4eb7a4cb4cc3bd7b8176d86a8fdde8dfa756fa7e262ed14f9d98ea3ae15a200e5b1e839918ad9126de3c4c2a070fca33004e5e4e4e19593fd332de0f8992b994a452a7114624a96dcfd558a70b515f2f3c4a78cbb0b1b30e5f911e33edcf5d02fe416eb2a5927da29548db5e28ec940f0942ab18ed7959c5c9ce225f700b807e3572bf402ef7a45a51f634eceafc6d555aa7bf9846e639a2cb26c49cf120d7606446abe9cd2f3d8827031717fcabf1605fdac6149720b86df8376de109991df4caa60f9b385879801dbd63374df0a131b10a96287c01cc3322c2f748854160fe64f4f9ee9783edd8d4cc593e2b6d261bd339cdcac43f08a49ace65a230b7277d85234427083cf88d268c54cc83589953b522dc9cb6362595a15d6a325e39644404a2a9d495525233a8ab13076ca25338c28aa4b06658c28a517459434b1a5555e5fe0f8b6babbd071e0307f93f6a025598aacbabd4a18bccb42b0e85d650aa8efc73608086992a0f7155c238f1da9d856ea63e7a6bf669ab2050bb04eb245ff8b578f2bedcd977e081ac1f2b174a693345ddb4f0003c7f1e225fc965ee93b6f877dd355d7f570d0166d16bb129ebc7e2e15a3878055d1346b6e1d39f7b3580675ecf9826e5b23cb8c79da330f101b5e6d86f5fff2405b7718934c5886a8706db6480f2a476b73919a7b3e8dd7119ebb64a4a504886ed056b381acd88790a5d6d3e9852cb696f8023e6692d8197a356d9620e72c38a9ac1ddb15baf6452837ac12a1282af01f7bf99af03f8d1a4eadb20235dc444b5f420ef7d3297e4f2487a9306fb2d26630691f009a7bf49eff31910e7e59ea68870f8a351577985758728500c3c75176f921d0d438d959d63be3052e4f6f287af57e8c8a75c90a39211e8f8a3f2405727fc1d48e76d7ac313b558604613c740d736194a1360bba9bdd0df0e86edeefb14aaaa4ef47a06d4b64dc3f343efa9e50e33656d938505588086edc5244f0ddd0b8200a88f913ffb8c104589aa0ae885a03e770686e9fd133c7280eb5897af8df6c9600968be21af84d8dd61822419388bb05904406c4fd9fd497950fcf5341d77c4752c6f4f31c9336a6abd4704ace9ec22dd795b534b361bb497208072a9aa1c031adf9b1493fc54f4b42ccbc03bffb1cd2be25ba64c7d1304e83f151d4c5cc7a2ccf4bbd670c35118644dccd3c6f2656cab2bbf6e49ef0017709f332b0da6e381fd1e2fa523fcdd0edade72e9d82c4e9427be6aaebff4d7c70234f48eca88da018b9073bb63fc46e54aaa8248a3a6afe9876fbc41b1c6dd690b3d5f569f32eb943e374e1b5afb13bf2677b85198c39c9f775e7a0200dd2561dcbf66a4702f7e3942d7c255bdf6321d0b5c6c63c978d4742e20f84a962a20ec08fa029cc8c55f171ff9b2a614145ea5a6c6c80d88afca76e7826931230f433ad0543eb782989098b1c0d6ab1d79c5c52b5bab346d397a8a0a2c0d42efadffb3d1c98ddf2b919c28daa416fe843c38d19a708fdf71ceb0d474a413609dfe845bd019acbd65b1b6eae7d2954383be96ffba328a6566d349cc0d040f895eeacdaf85a2e51e9f2f61e68f9195ecf0e09356f0d3ada5ee9741a45fae7ade0a768058cf05f1f598da240e2dd6c2638064deb3e72692b9d27f7cfaf108c30a9f5545c07850a6b06e06ad40da90167b8aa1baf77af323fdfc27a3e3378f8ec7a0cf833c1032b42d680855baadbbec10a0639b55b3c0b5582c1f876701ea3353f950081a16af4facbaf174f1bc168e730eaae0784c4e0ec9dc9ffb786232596e4fd2e53db32cb3b7089c5a74c5dbfd7006da5d062d1444e89d90ccf5064545db039effb28b50aab91279bc7a339abe4d3e7cbd443d7cd37665cbd0132f618e1312c0aeb8bcf3083f6d689710dddc62341021d661bd533dc6f6f1610fef283ee51d81071050b628bf83dd97bff97c5441529254386dcca692088b513e5feae5e0220b952b77714557500b9a5b83fac30edb5f6a34859ac62cf449a74ff0897c0ee09368c7f3fc44df159a2248efacdf34cdf16eaa0d44246ca3d372586c99ff606b8bb82b96ad1e30a4dfa9a0026735b1c47edd5d1a831b8d59b69c7d781769ab04772a9e8aa84f80e0062112f874a697503f3552c599f7f2536adbfc6178583f3aeb13ecb6aba5aefcc73339b0b04db36a63910bb56c7d4c7aa53cd1d33fdefe4d2b3c3ac694b8b4171cca0fcdc89b03d236bc0b0ff7b37431e6edeb9b2ce454785e68c53f3f189b3bc4e2ef0ce208a3277166547f850090ef38de7f93460e8544545ca7b6fc0bbf5f868a13cfc5d35c5ee247336bfceb96f8fe68a2eb07bf44ee52452602fbacd124a4b42ce375e96a1c5bdc309b0651b72601df0fff975b600c60bb3b4e32582bdeaa348f2186cd00cd779223fa7d62aab35e662f4dfe353d1e9ba1f34cf363c39c04b902ea0185ef40fee1a9fe44530cc8e584084f7d46402744d7ad630c78b4677dc4c9533a7be910e22b12c51d6121005d01121bbb7f46ec9600aea36c4966f901abb58c77f4e2e0f5e38ddfd9a9a2d69fab6bc93e78ee83ed9fa23e6999e554d05fe98cbf4f7e62e981effa7bede4d49f83cbfa011b9453da51d3bb5ea46d66a6d8aa0129a0f3fe59d7b4144e08f43b373d4421665057750caf1a81323c082d49aca35b91b61460a25b8abbfae4a8502b7c905815a1d7fb5e95d28316b5fd0fb5789b3ca955fdc0ab9782a2d571119df4b8e38e7289fc2bcb149923a345be1fbd11bcec61cc6c82e2c2788e8cf84e1d40ba24b7606bea81d587e3da223de5884b1e60aca13f88d072d40ec0f3856c4eed4318edd0e1a8fad62a581a449ba41862410803138c219f92795c4829386dfe0fccb553d0495c7d78aa1e0e0afd76bc22a5f0befaef4c375a400df3c7d9ed396b5a174f8bd8606e99207a3bfd0a4e827f40aed2ffef3c6c614bba255af7f39cf04dd701f66b53f68c870c9849fbceebf5b17c3fa0986cd4882d176cb251f7d841a239235a68dade12458d60b9fd05bc6f71edf56f1abbbb07186486fe7fb6ad691b7fe33a8f03409cdc211f73affcc41a3a4a58f418730eb869a4ca378be6e3fca014c721fdcd5c2871d7c2ba71add57fe3c5c59615b16e9120931e233434f6fe3da502fae711c1df8a7874994c57d4a7538ae98bbdcaccc908f3dfc5b835e3f1ed09676be52eda1599d60a6cc5a911031a278ed73afe03d706c65f6bfbc1a6f772409f5e7399815acdc78ea0551718329eee3c20d017d3109ba49c71b5b0d52252f3eff3380ee8d94e8c01578a75f2f36e4519d47b195f4f421ebe8f0ad23306878f2c183f1780430eaec69e0e5e7061baa1127cdf7b36219f4d2af96bfc2bec08cc38bfe68502d437d083b6184af883f62fb1173d49d0c2a025670a5bd3a568da3b2b6d5d9da85aaa56ce20e4d3870c53a83f32b8f1ecc18cd79d0c58839b48e6344b74886b4e5f8b24036ea5f18cbba7a23e6814fc2633dd8525caaface513c4042b16ee8bbe1daca1c65a2c617ea3a29936b90f47b31d6a457259429c835137ac9f8b62b928619b8c0994c3c7ea5c8c2ab3bc69a6d971983bac7b7d629ecae7a89918d366ca17702a69a52a1b7fb8b35ea26bcbf67c44d25b5386ee7257d256554fa80a52ec5bf375c6d9563efbf383fe952f7c0880bce80e7f86c3d963350c5b15fb7d75ef89a85d635a342235740e8aa3b83adeaaf99f56d7ff0b0c6d3d170d715bd85df3e03fad572770271ed1ddc6c7280b1ee042e22a975ca352b6529a45bb8978abe2f03cdb237258dd52e517ac3b1baacafff415cfb0c51381c4d4e4549eaa86af7e74ce242199db43794dc526d5e4e05df47b76f7d755657d322ff4cafca742f30e6cc13e3f22d06c1b5600ba7446d2a993d68132a04511d9cb992385d3c5bd4fe3903f89b9225506b7be9b90a0b8ff7071920665c4947aa6c48a71544bb08ac5ce4a485af61d2853e1818fac3eafc942f7ebab8e4d9eda2119bd5db6588a7c8dd506bc47f59fdec319ab5c40e00c72d71bf54fd23b7e0e3a2fe9fdea6a7a5e561e1a93f27a4530d5dc7d5d9a3250fa814cf64f08c95e1bda1aa7b5ade91652bc3977c02ef72c17233f0c2c532d4272ac6d8f84dc1e0dd8464a70c4cdbaff36f4f72ecee38122d295452498b31a36a2d7fa250ffb6b2e448ce4da7543c57a332a0d0da2db6ebf2484e37e76f6d17e25bcd11dc2f81d8c950730811afde5bb69e3312b4bfaaef09f5e00285fa6e239f012b5ae9228489bf675d5f6922c27d2e47a033d2c5052841898e61e4162b78cb7aa116f67dc9612a6f14f9df2e60529244dd0fdb60ad3698607626b2dafbd60adb1f8acd06e25a6ca0e66a686bbc32c3a875fa38d71e97aff58c5bc56936f67d130aa3f4b2fa0373c62155158fccc43c59b39b6815866fe45f996bc13b0a7d32037c8b6553f6df8a7ce9fc326f6b206b6c499bd20b9aef47a9b92ce055819b50dce000bd314b5e69f6ef696627bfb38945f0860044bb5754bd439cd6f59fd3607b6b1df3c4e6a45fb35cb5180adaf98ac9160a3827255a0517a01f26518fcff59dd24ad647adb7acc92c2fa8ce852aadb199d11cb1a1f8eb4b4d80e48e125f1d94a251356e357514256b19b6e1a2f5ae4d303f28ab59ba179485beca3cd47d29ce36e180ddd156605dd6dca73df0c3d3b351edf94887572551f3e14c3c8cbe68618c846f58d6039e7b83757362956ff53bb1dbaea0f91f513e6646760fb0195d5ce5de1d6"}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x1038}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) perf_event_open(&(0x7f0000000400)={0x5, 0x80, 0x6, 0x1f, 0x7, 0x3, 0x0, 0x1, 0x312f0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8000, 0x1, @perf_bp={&(0x7f00000003c0), 0x7}, 0x41e32, 0xffffffffffffff7d, 0x8ec8, 0x8, 0x3, 0xffffffae, 0x200, 0x0, 0x5, 0x0, 0x40}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x230ae0718ff03c96) 23:58:25 executing program 1: fork() syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x14}}}}}}, 0x0) 23:58:25 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00'}) 23:58:25 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x5452, 0x0) 23:58:25 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x5460, 0x0) [ 2037.741387] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2037.750293] FAULT_INJECTION: forcing a failure. [ 2037.750293] name failslab, interval 1, probability 0, space 0, times 0 [ 2037.753011] CPU: 0 PID: 10219 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2037.754498] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2037.756247] Call Trace: [ 2037.756809] dump_stack+0x107/0x167 [ 2037.757593] should_fail.cold+0x5/0xa [ 2037.758408] ? create_object.isra.0+0x3a/0xa20 [ 2037.759377] should_failslab+0x5/0x20 [ 2037.760190] kmem_cache_alloc+0x5b/0x310 [ 2037.761052] ? mark_held_locks+0x9e/0xe0 [ 2037.761933] create_object.isra.0+0x3a/0xa20 [ 2037.762855] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2037.763934] kmem_cache_alloc+0x159/0x310 [ 2037.764812] xas_alloc+0x336/0x440 [ 2037.765572] xas_create+0x34a/0x10d0 [ 2037.766374] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2037.767491] xas_store+0x8c/0x1c40 [ 2037.768264] __xa_store+0x164/0x2d0 [ 2037.769036] ? xa_delete_node+0x280/0x280 [ 2037.769936] ? trace_hardirqs_on+0x5b/0x180 [ 2037.770862] xa_store+0x31/0x50 [ 2037.771567] __io_uring_add_tctx_node+0x1cf/0x520 [ 2037.772585] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2037.773701] ? alloc_fd+0x2e7/0x670 [ 2037.774485] io_uring_setup+0x1fbb/0x2980 [ 2037.775387] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2037.776464] ? wait_for_completion_io+0x270/0x270 [ 2037.777518] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2037.778620] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2037.779694] do_syscall_64+0x33/0x40 [ 2037.780470] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2037.781555] RIP: 0033:0x7f624aeccb19 [ 2037.782346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2037.786234] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2037.787848] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2037.789355] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2037.790882] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2037.792386] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2037.793900] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 [ 2037.800334] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2037.841218] FAULT_INJECTION: forcing a failure. [ 2037.841218] name failslab, interval 1, probability 0, space 0, times 0 [ 2037.844177] CPU: 1 PID: 10227 Comm: syz-executor.7 Not tainted 5.10.233 #1 [ 2037.845675] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2037.847448] Call Trace: [ 2037.848020] dump_stack+0x107/0x167 [ 2037.848800] should_fail.cold+0x5/0xa [ 2037.849623] ? mark_lock+0xf5/0x2df0 [ 2037.850424] ? mempool_alloc+0x148/0x360 [ 2037.851286] ? mempool_free_pages+0x20/0x20 [ 2037.852213] should_failslab+0x5/0x20 [ 2037.853032] kmem_cache_alloc+0x5b/0x310 [ 2037.853911] ? lock_chain_count+0x20/0x20 [ 2037.854796] ? mempool_free_pages+0x20/0x20 [ 2037.855740] mempool_alloc+0x148/0x360 [ 2037.856594] ? mempool_resize+0x7d0/0x7d0 [ 2037.857502] ? mark_lock+0xf5/0x2df0 [ 2037.858310] ? perf_trace_lock+0xac/0x490 [ 2037.859207] __sg_alloc_table+0x24e/0x390 [ 2037.860110] sg_alloc_table_chained+0x9b/0x1f0 [ 2037.861085] ? sg_alloc_table_chained+0x1f0/0x1f0 [ 2037.862133] scsi_alloc_sgtables+0x236/0xaf0 [ 2037.863081] ? scsi_cmd_runtime_exceeced+0x1d0/0x1d0 [ 2037.864162] ? lockdep_init_map_type+0x2c7/0x780 [ 2037.865192] sd_init_command+0x516/0x3550 [ 2037.866089] scsi_queue_rq+0xe5e/0x27f0 [ 2037.866960] blk_mq_dispatch_rq_list+0x372/0x1c40 [ 2037.868009] ? elv_rb_del+0x50/0xa0 [ 2037.868781] ? elv_rqhash_del+0x119/0x160 [ 2037.869674] ? blk_mq_dequeue_from_ctx+0x7f0/0x7f0 [ 2037.870731] ? dd_dispatch_request+0x1c0/0x990 [ 2037.871714] blk_mq_do_dispatch_sched+0x7f4/0xa00 [ 2037.872761] ? blk_mq_sched_mark_restart_hctx+0x80/0x80 [ 2037.873909] ? lock_acquire+0x197/0x470 [ 2037.874753] ? hctx_lock+0x7f/0x200 [ 2037.875543] __blk_mq_sched_dispatch_requests+0x2d7/0x450 [ 2037.876708] ? blk_mq_do_dispatch_sched+0xa00/0xa00 [ 2037.877801] blk_mq_sched_dispatch_requests+0xfd/0x1e0 [ 2037.878923] __blk_mq_run_hw_queue+0x12c/0x290 [ 2037.879903] ? blk_mq_start_request+0x3f0/0x3f0 [ 2037.880894] ? do_raw_spin_lock+0x121/0x260 [ 2037.881818] __blk_mq_delay_run_hw_queue+0x53f/0x5a0 [ 2037.882897] blk_mq_run_hw_queue+0x170/0x2f0 [ 2037.883824] ? blk_mq_delay_run_hw_queues+0x1f0/0x1f0 [ 2037.884939] ? dd_dispatch_request+0x990/0x990 [ 2037.885923] blk_mq_sched_insert_requests+0x247/0x720 [ 2037.887027] blk_mq_flush_plug_list+0x415/0x6c0 [ 2037.888023] ? blk_mq_insert_requests+0x450/0x450 [ 2037.889070] blk_flush_plug_list+0x26c/0x3c0 [ 2037.890023] ? up_write+0x191/0x550 [ 2037.890797] ? blk_insert_cloned_request+0x450/0x450 [ 2037.891875] ? down_write_killable+0x180/0x180 [ 2037.892854] blk_finish_plug+0x50/0xa0 [ 2037.893696] ext4_writepages+0x22e6/0x3350 [ 2037.894660] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2037.895698] ? SOFTIRQ_verbose+0x10/0x10 [ 2037.896646] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2037.897782] ? __ext4_mark_inode_dirty+0x770/0x770 [ 2037.898825] do_writepages+0xee/0x2a0 [ 2037.899646] ? page_writeback_cpu_online+0x20/0x20 [ 2037.900696] ? lock_acquire+0x197/0x470 [ 2037.901548] ? __ext4_ioctl+0x1543/0x4190 [ 2037.902437] ? lock_release+0x680/0x680 [ 2037.903296] __filemap_fdatawrite_range+0x24b/0x2f0 [ 2037.904358] ? delete_from_page_cache_batch+0xa30/0xa30 [ 2037.905508] ? down_write+0xe0/0x160 [ 2037.906280] ? down_write_killable+0x180/0x180 [ 2037.907259] filemap_write_and_wait_range+0x65/0x100 [ 2037.908345] __ext4_ioctl+0x1578/0x4190 [ 2037.909212] ? ext4_reset_inode_seed+0x450/0x450 [ 2037.910235] ? perf_trace_lock+0xac/0x490 [ 2037.911115] ? SOFTIRQ_verbose+0x10/0x10 [ 2037.912013] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 2037.913237] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 2037.914354] ? do_vfs_ioctl+0x283/0x10d0 [ 2037.915222] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 2037.916338] ? generic_block_fiemap+0x60/0x60 [ 2037.917290] ? lock_downgrade+0x6d0/0x6d0 [ 2037.918189] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2037.919220] ? wait_for_completion_io+0x270/0x270 [ 2037.920259] ? selinux_file_ioctl+0xb6/0x270 [ 2037.921201] ? __ext4_ioctl+0x4190/0x4190 [ 2037.922094] __x64_sys_ioctl+0x19a/0x210 [ 2037.922963] do_syscall_64+0x33/0x40 [ 2037.923758] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2037.924852] RIP: 0033:0x7f93b5e79b19 [ 2037.925653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2037.929564] RSP: 002b:00007f93b33ce188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2037.931182] RAX: ffffffffffffffda RBX: 00007f93b5f8d020 RCX: 00007f93b5e79b19 [ 2037.932701] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000003 [ 2037.934222] RBP: 00007f93b33ce1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2037.935734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2037.937248] R13: 00007ffe7c940f6f R14: 00007f93b33ce300 R15: 0000000000022000 23:58:25 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000001a80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="1800008b478a1100290000000400"/24], 0x18}}], 0x2, 0x0) 23:58:25 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x8901, 0x0) 23:58:25 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) [ 2038.048348] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 23:58:25 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) (fail_nth: 24) 23:58:25 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x28, 0x10, 0x1, 0x0, 0x0, {}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0xa, 0x0, 0x0, 0x1, [@generic="487fec864b24"]}]}, 0x28}}, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000000), 0x4) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e22, 0xb, @empty, 0x6}, 0x1c) r0 = creat(&(0x7f0000001680)='./file0/file0\x00', 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) write$cgroup_pid(0xffffffffffffffff, &(0x7f00000004c0)=0xffffffffffffffff, 0x12) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x48, r1, 0x200, 0x70bd28, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0xfffffff9, 0x71}}}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}, @NL80211_ATTR_4ADDR={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000}, 0x4000001) pipe2$9p(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x84000) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) pipe2(&(0x7f00000002c0)={0xffffffffffffffff}, 0xc0800) ioctl$BTRFS_IOC_SYNC(r4, 0x9408, 0x0) setsockopt$inet6_int(r3, 0x29, 0x4c, &(0x7f00000015c0)=0x1100000, 0x4) ioctl$BTRFS_IOC_SNAP_CREATE(r2, 0x50009401, &(0x7f00000005c0)={{r3}, "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"}) 23:58:41 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x8902, 0x0) 23:58:41 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) dup(0xffffffffffffffff) pwrite64(r0, &(0x7f0000000340), 0x0, 0x0) flock(r0, 0x1) r2 = openat(r1, &(0x7f00000001c0)='./file1/file0\x00', 0x4000, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x24, 0x1, 0x4, 0x801, 0x0, 0x0, {0x1}}, 0x24}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000180)=ANY=[@ANYBLOB="010001000000000000000000", @ANYRES32, @ANYBLOB="ffffff7f000000002e2f66696c653000"]) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000200)}], 0x1) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f00000002c0)=ANY=[@ANYBLOB="00000000fffffdfd0201000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000032118afb9f0d4b3adaf780000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f1ff0000000000000000000000000000000000000000ed4e97b43ea394ce2165f8f6a2a7102eda282fee7b902b935759595f21c710b5284b48f816b4debd"]) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) bind$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x1b, r5, 0x1, 0x0, 0x6, @dev}, 0x14) ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8936, &(0x7f0000000240)={@loopback, 0x4, r5}) unshare(0x48020200) 23:58:41 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) 23:58:41 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0xc00, 0x0, 0x0, 0x0) 23:58:41 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:58:41 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 47) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:58:41 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) 23:58:41 executing program 6: r0 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r0}}, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 2053.876303] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2053.911430] FAULT_INJECTION: forcing a failure. [ 2053.911430] name failslab, interval 1, probability 0, space 0, times 0 [ 2053.913777] CPU: 0 PID: 10268 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2053.915094] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2053.916653] Call Trace: [ 2053.917160] dump_stack+0x107/0x167 [ 2053.917834] should_fail.cold+0x5/0xa [ 2053.918566] ? xas_alloc+0x336/0x440 [ 2053.919268] should_failslab+0x5/0x20 [ 2053.919976] kmem_cache_alloc+0x5b/0x310 [ 2053.920734] xas_alloc+0x336/0x440 [ 2053.921401] xas_create+0x34a/0x10d0 [ 2053.922137] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2053.923108] xas_store+0x8c/0x1c40 [ 2053.923790] __xa_store+0x164/0x2d0 [ 2053.924471] ? xa_delete_node+0x280/0x280 [ 2053.925247] ? trace_hardirqs_on+0x5b/0x180 [ 2053.926074] xa_store+0x31/0x50 [ 2053.926702] __io_uring_add_tctx_node+0x1cf/0x520 [ 2053.927603] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2053.928590] ? alloc_fd+0x2e7/0x670 [ 2053.929278] io_uring_setup+0x1fbb/0x2980 [ 2053.930092] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2053.931035] ? wait_for_completion_io+0x270/0x270 [ 2053.931964] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2053.932941] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2053.933909] do_syscall_64+0x33/0x40 [ 2053.934615] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2053.935572] RIP: 0033:0x7f624aeccb19 [ 2053.936260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2053.939664] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2053.941059] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2053.942382] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2053.943707] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2053.945006] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2053.946586] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:58:41 executing program 6: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x8901, 0x0) 23:58:41 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x8903, 0x0) [ 2053.975905] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'. 23:58:41 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) socket$nl_generic(0x10, 0x3, 0x10) 23:58:41 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 48) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 2054.123342] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 23:58:41 executing program 6: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x8901, 0x0) 23:58:41 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x8904, 0x0) [ 2054.171468] FAULT_INJECTION: forcing a failure. [ 2054.171468] name failslab, interval 1, probability 0, space 0, times 0 [ 2054.174146] CPU: 1 PID: 10284 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2054.175595] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2054.177343] Call Trace: [ 2054.177907] dump_stack+0x107/0x167 [ 2054.178695] should_fail.cold+0x5/0xa [ 2054.179502] ? ___slab_alloc+0x360/0x700 [ 2054.180371] ? create_object.isra.0+0x3a/0xa20 [ 2054.181352] should_failslab+0x5/0x20 [ 2054.182165] kmem_cache_alloc+0x5b/0x310 [ 2054.183033] create_object.isra.0+0x3a/0xa20 23:58:41 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x2) [ 2054.183974] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2054.185203] kmem_cache_alloc+0x159/0x310 [ 2054.186089] xas_alloc+0x336/0x440 [ 2054.186839] xas_create+0x34a/0x10d0 [ 2054.187629] ? kernel_text_address+0xf2/0x120 [ 2054.188583] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2054.189698] xas_store+0x8c/0x1c40 [ 2054.190468] __xa_store+0x164/0x2d0 [ 2054.191236] ? xa_delete_node+0x280/0x280 [ 2054.192125] ? trace_hardirqs_on+0x5b/0x180 [ 2054.193066] xa_store+0x31/0x50 [ 2054.193768] __io_uring_add_tctx_node+0x1cf/0x520 [ 2054.194795] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2054.195911] ? alloc_fd+0x2e7/0x670 [ 2054.196686] io_uring_setup+0x1fbb/0x2980 [ 2054.197564] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2054.198660] ? wait_for_completion_io+0x270/0x270 [ 2054.199699] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2054.200804] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2054.201898] do_syscall_64+0x33/0x40 [ 2054.202687] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2054.203770] RIP: 0033:0x7f624aeccb19 [ 2054.204555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2054.208446] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2054.210063] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2054.211580] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2054.213078] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2054.214602] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2054.216109] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:58:42 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='gretap0\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="004000070000000800004af3430e008c0024120000000000001414296401010044246253ac0200000004ffffffff000f58ffffffffe00000010a010102070f1b00004000ac1414aae00000020144188b00000000020000007f0000000200000200000008f6831ba7ac141421ac1414aa7f000001ac141430e0000002000000000000"]}) [ 2054.332093] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 23:58:58 executing program 6: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x8901, 0x0) 23:58:58 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 49) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:58:58 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 2070.466290] FAULT_INJECTION: forcing a failure. [ 2070.466290] name failslab, interval 1, probability 0, space 0, times 0 [ 2070.469086] CPU: 1 PID: 10309 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2070.470587] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2070.472389] Call Trace: [ 2070.472962] dump_stack+0x107/0x167 [ 2070.473754] should_fail.cold+0x5/0xa [ 2070.474581] ? xas_alloc+0x336/0x440 [ 2070.475405] should_failslab+0x5/0x20 [ 2070.476235] kmem_cache_alloc+0x5b/0x310 [ 2070.477121] xas_alloc+0x336/0x440 [ 2070.477900] xas_create+0x34a/0x10d0 [ 2070.478727] ? kernel_text_address+0xf2/0x120 [ 2070.479687] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2070.480829] xas_store+0x8c/0x1c40 [ 2070.481619] __xa_store+0x164/0x2d0 [ 2070.482414] ? xa_delete_node+0x280/0x280 [ 2070.483342] ? trace_hardirqs_on+0x5b/0x180 [ 2070.484525] xa_store+0x31/0x50 [ 2070.485251] __io_uring_add_tctx_node+0x1cf/0x520 [ 2070.486300] ? io_uring_alloc_task_context+0x6a0/0x6a0 23:58:58 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) dup(0xffffffffffffffff) pwrite64(r0, &(0x7f0000000340), 0x0, 0x0) flock(r0, 0x1) r2 = openat(r1, &(0x7f00000001c0)='./file1/file0\x00', 0x4000, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x24, 0x1, 0x4, 0x801, 0x0, 0x0, {0x1}}, 0x24}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000180)=ANY=[@ANYBLOB="010001000000000000000000", @ANYRES32, @ANYBLOB="ffffff7f000000002e2f66696c653000"]) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000200)}], 0x1) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"]) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) bind$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x1b, r5, 0x1, 0x0, 0x6, @dev}, 0x14) ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8936, &(0x7f0000000240)={@loopback, 0x4, r5}) unshare(0x48020200) 23:58:58 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x1200, 0x0, 0x0, 0x0) 23:58:58 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x8906, 0x0) 23:58:58 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x4b47) 23:58:58 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) creat(&(0x7f0000000000)='./file0\x00', 0x1c8) [ 2070.487451] ? alloc_fd+0x2e7/0x670 [ 2070.488443] io_uring_setup+0x1fbb/0x2980 [ 2070.489382] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2070.490528] ? wait_for_completion_io+0x270/0x270 [ 2070.491704] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2070.492969] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2070.494186] do_syscall_64+0x33/0x40 [ 2070.495092] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2070.496178] RIP: 0033:0x7f624aeccb19 [ 2070.496972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2070.500836] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2070.502478] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2070.504028] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2070.505567] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2070.507125] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2070.508662] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 [ 2070.515400] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2070.547395] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'. 23:58:58 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_FSYNC={0x3, 0x7, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0x1}, 0x8) r0 = syz_mount_image$vfat(&(0x7f0000000380), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x900020, &(0x7f0000000900)=ANY=[]) setfsgid(0xee01) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xb052) syz_io_uring_submit(0x0, 0x0, 0x0, 0x4) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_MADVISE={0x19, 0x3, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xb84fe180bd698aee}, 0xfffffff8) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x5, 0x0, @fd, 0x4f, 0x0, 0x7ff, 0x7, 0x0, {0x0, r1}}, 0x0) unlinkat(r0, &(0x7f00000004c0)='./file0\x00', 0x200) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x8, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x6, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = open(&(0x7f0000000180)='./file0\x00', 0x240880, 0x0) mkdirat(r2, &(0x7f0000000200)='./file0\x00', 0x86) 23:58:58 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x8907, 0x0) 23:58:58 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) 23:58:58 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:58:58 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x4b49) [ 2070.727258] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 23:58:58 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 50) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:58:58 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x8940, 0x0) 23:58:58 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x1800, 0x0, 0x0, 0x0) 23:58:58 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) 23:58:58 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) creat(&(0x7f0000000000)='./file0\x00', 0x1c8) [ 2070.864522] FAULT_INJECTION: forcing a failure. [ 2070.864522] name failslab, interval 1, probability 0, space 0, times 0 [ 2070.867368] CPU: 0 PID: 10339 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2070.868830] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2070.870580] Call Trace: [ 2070.871154] dump_stack+0x107/0x167 [ 2070.871937] should_fail.cold+0x5/0xa [ 2070.872747] ? create_object.isra.0+0x3a/0xa20 [ 2070.873713] should_failslab+0x5/0x20 [ 2070.874513] kmem_cache_alloc+0x5b/0x310 [ 2070.875374] ? mark_held_locks+0x9e/0xe0 [ 2070.876244] create_object.isra.0+0x3a/0xa20 [ 2070.877159] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2070.878236] kmem_cache_alloc+0x159/0x310 [ 2070.879140] xas_alloc+0x336/0x440 [ 2070.879898] xas_create+0x34a/0x10d0 [ 2070.880700] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2070.881813] xas_store+0x8c/0x1c40 [ 2070.882580] __xa_store+0x164/0x2d0 [ 2070.883365] ? xa_delete_node+0x280/0x280 [ 2070.884250] ? trace_hardirqs_on+0x5b/0x180 [ 2070.885168] xa_store+0x31/0x50 [ 2070.885868] __io_uring_add_tctx_node+0x1cf/0x520 [ 2070.886901] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2070.888004] ? alloc_fd+0x2e7/0x670 [ 2070.888784] io_uring_setup+0x1fbb/0x2980 [ 2070.889667] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2070.890751] ? wait_for_completion_io+0x270/0x270 [ 2070.891794] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2070.892894] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2070.893984] do_syscall_64+0x33/0x40 [ 2070.894780] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2070.895864] RIP: 0033:0x7f624aeccb19 [ 2070.896651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2070.900537] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2070.902142] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2070.903657] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2070.905161] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2070.906666] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2070.908174] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 [ 2070.968742] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2070.986856] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 23:58:58 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x10, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:59:12 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x10, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:59:12 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x541b) 23:59:12 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x1e00, 0x0, 0x0, 0x0) 23:59:12 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) creat(&(0x7f0000000000)='./file0\x00', 0x1c8) 23:59:12 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000400)={0xa, 0x0, 0x0, @empty}, 0x1c) getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x44, &(0x7f0000000000)={'TPROXY\x00'}, &(0x7f0000000040)=0x1e) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) close_range(r2, r1, 0x0) sendmsg$nl_generic(r2, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB], 0x14}}, 0x20040000) sendmsg$BATADV_CMD_SET_MESH(r2, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000600)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="eb0127222c15fd0aa6e99f25be9abd7000fedbdf250f40000005003c0006eaffff070007000000000008003b00070000000000000000000a821ade48b987dc21abc748daa3258b776d5a17da570a83b3de90bf31a4c7934e3e4146f115fdbc4296d32dc0ec4440e2cffb9cfe86809c018efa64bded78265289e3f969667af4b7d897dbf353314fd5c4b38cf3b22db3a62bd0b5583ab495dc13a6f3380b301f3c616dc7d094922978e7a939c66a835bffc911229b6e655718ff9c31a007f6e4ab0584e48d"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) dup(r2) sendmmsg$sock(r0, &(0x7f0000001d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[@mark={{0x14, 0x1, 0x24, 0x5521}}], 0x18}}], 0x2, 0x4040000) 23:59:12 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) 23:59:12 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x8941, 0x0) 23:59:12 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 51) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 2084.949349] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2084.952866] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 23:59:12 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) creat(&(0x7f0000000000)='./file0\x00', 0x1c8) [ 2085.006010] FAULT_INJECTION: forcing a failure. [ 2085.006010] name failslab, interval 1, probability 0, space 0, times 0 [ 2085.008784] CPU: 1 PID: 10377 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2085.010285] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2085.012090] Call Trace: [ 2085.012665] dump_stack+0x107/0x167 [ 2085.013456] should_fail.cold+0x5/0xa [ 2085.014284] ? xas_alloc+0x336/0x440 [ 2085.015095] should_failslab+0x5/0x20 [ 2085.015925] kmem_cache_alloc+0x5b/0x310 [ 2085.016808] xas_alloc+0x336/0x440 [ 2085.017584] xas_create+0x34a/0x10d0 [ 2085.018408] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2085.019548] xas_store+0x8c/0x1c40 [ 2085.020333] __xa_store+0x164/0x2d0 [ 2085.021119] ? xa_delete_node+0x280/0x280 [ 2085.022023] ? trace_hardirqs_on+0x5b/0x180 [ 2085.022964] xa_store+0x31/0x50 [ 2085.023687] __io_uring_add_tctx_node+0x1cf/0x520 [ 2085.024724] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2085.025853] ? alloc_fd+0x2e7/0x670 [ 2085.026652] io_uring_setup+0x1fbb/0x2980 [ 2085.027564] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2085.028657] ? wait_for_completion_io+0x270/0x270 [ 2085.029727] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2085.030852] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2085.031972] do_syscall_64+0x33/0x40 [ 2085.032772] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2085.033882] RIP: 0033:0x7f624aeccb19 [ 2085.034676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2085.038605] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2085.040246] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2085.041762] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2085.043285] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2085.044801] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2085.046316] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 [ 2085.047141] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2085.057813] cgroup: fork rejected by pids controller in /syz1 23:59:12 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) 23:59:12 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x40010, r0, 0x21a90000) 23:59:12 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x10, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:59:12 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x5421) 23:59:12 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x894c, 0x0) [ 2085.163451] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 23:59:12 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x2000, 0x0, 0x0, 0x0) [ 2085.179122] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'. 23:59:12 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 52) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:59:12 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) 23:59:13 executing program 1: ioctl$FIDEDUPERANGE(0xffffffffffffffff, 0xc0189436, &(0x7f00000000c0)={0x0, 0x7fff}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0xa418844818c0a8ce}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) read(r0, 0x0, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, 0x0}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) io_uring_enter(0xffffffffffffffff, 0x3c8d, 0x0, 0x3, &(0x7f0000000080)={[0x45c1]}, 0x8) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x2000, 0x4) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x2, 0x0, 0x0) [ 2085.251506] FAULT_INJECTION: forcing a failure. [ 2085.251506] name failslab, interval 1, probability 0, space 0, times 0 [ 2085.253944] CPU: 1 PID: 10504 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2085.255320] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2085.256922] Call Trace: [ 2085.257438] dump_stack+0x107/0x167 [ 2085.258150] should_fail.cold+0x5/0xa [ 2085.258897] ? create_object.isra.0+0x3a/0xa20 [ 2085.259815] should_failslab+0x5/0x20 [ 2085.260566] kmem_cache_alloc+0x5b/0x310 [ 2085.261353] ? mark_held_locks+0x9e/0xe0 [ 2085.262144] create_object.isra.0+0x3a/0xa20 [ 2085.263005] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2085.264017] kmem_cache_alloc+0x159/0x310 [ 2085.264649] xas_alloc+0x336/0x440 [ 2085.265348] xas_create+0x34a/0x10d0 [ 2085.266075] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2085.267106] xas_store+0x8c/0x1c40 [ 2085.267830] __xa_store+0x164/0x2d0 [ 2085.268547] ? xa_delete_node+0x280/0x280 [ 2085.269363] ? trace_hardirqs_on+0x5b/0x180 [ 2085.270218] xa_store+0x31/0x50 [ 2085.270869] __io_uring_add_tctx_node+0x1cf/0x520 [ 2085.271820] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2085.272825] ? alloc_fd+0x2e7/0x670 [ 2085.273552] io_uring_setup+0x1fbb/0x2980 [ 2085.274379] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2085.275388] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2085.276431] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2085.277441] do_syscall_64+0x33/0x40 [ 2085.278172] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2085.279218] RIP: 0033:0x7f624aeccb19 [ 2085.279937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2085.283527] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2085.284024] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2085.285013] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2085.285023] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2085.285031] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2085.285039] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2085.285055] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:59:13 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x8980, 0x0) 23:59:30 executing program 1: ioctl$FIDEDUPERANGE(0xffffffffffffffff, 0xc0189436, &(0x7f00000000c0)={0x0, 0x7fff}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0xa418844818c0a8ce}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) read(r0, 0x0, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, 0x0}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) io_uring_enter(0xffffffffffffffff, 0x3c8d, 0x0, 0x3, &(0x7f0000000080)={[0x45c1]}, 0x8) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x2000, 0x4) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x2, 0x0, 0x0) 23:59:30 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) 23:59:30 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 53) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:59:30 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) close_range(r1, r0, 0x0) 23:59:30 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:59:30 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x2400, 0x0, 0x0, 0x0) 23:59:30 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x8981, 0x0) [ 2102.769321] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'. 23:59:30 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x5450) [ 2102.806342] FAULT_INJECTION: forcing a failure. [ 2102.806342] name failslab, interval 1, probability 0, space 0, times 0 [ 2102.809438] CPU: 1 PID: 10539 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2102.810908] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2102.812672] Call Trace: [ 2102.813230] dump_stack+0x107/0x167 [ 2102.814002] should_fail.cold+0x5/0xa [ 2102.814808] ? xas_alloc+0x336/0x440 [ 2102.815596] should_failslab+0x5/0x20 [ 2102.816409] kmem_cache_alloc+0x5b/0x310 [ 2102.817271] xas_alloc+0x336/0x440 [ 2102.818027] xas_create+0x34a/0x10d0 [ 2102.818838] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2102.819956] xas_store+0x8c/0x1c40 [ 2102.820722] __xa_store+0x164/0x2d0 [ 2102.821495] ? xa_delete_node+0x280/0x280 [ 2102.822383] ? trace_hardirqs_on+0x5b/0x180 [ 2102.823302] xa_store+0x31/0x50 [ 2102.824011] __io_uring_add_tctx_node+0x1cf/0x520 [ 2102.825034] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2102.826139] ? alloc_fd+0x2e7/0x670 [ 2102.826924] io_uring_setup+0x1fbb/0x2980 [ 2102.827820] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2102.828895] ? wait_for_completion_io+0x270/0x270 [ 2102.829939] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2102.831048] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2102.832146] do_syscall_64+0x33/0x40 [ 2102.832929] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2102.834009] RIP: 0033:0x7f624aeccb19 [ 2102.834796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2102.838684] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2102.840297] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2102.841797] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2102.843313] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2102.844821] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2102.846324] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:59:30 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:59:30 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) 23:59:30 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) 23:59:30 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x8982, 0x0) [ 2102.938266] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'. 23:59:30 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) 23:59:30 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) 23:59:30 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x5451) 23:59:45 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) writev(r0, &(0x7f0000000140)=[{&(0x7f00000004c0)="f6ffd261d72c2543e2ee846add3c98ffa380dcbf8df350299bb9a10acbcb6007e53fff39b84188ee83b7d69c56808e2cf2f2d4587c7f0498287a6b3cc31c346846054c849b3245", 0x47}], 0x1) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) 23:59:45 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:59:45 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) 23:59:45 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) 23:59:45 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 54) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 23:59:45 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x2700, 0x0, 0x0, 0x0) 23:59:45 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x5452) 23:59:45 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x8983, 0x0) [ 2117.983982] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2118.015403] FAULT_INJECTION: forcing a failure. [ 2118.015403] name failslab, interval 1, probability 0, space 0, times 0 [ 2118.018807] CPU: 1 PID: 10587 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2118.020559] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2118.022647] Call Trace: [ 2118.023322] dump_stack+0x107/0x167 [ 2118.024243] should_fail.cold+0x5/0xa [ 2118.025140] ? create_object.isra.0+0x3a/0xa20 [ 2118.026094] should_failslab+0x5/0x20 [ 2118.026891] kmem_cache_alloc+0x5b/0x310 [ 2118.027739] ? mark_held_locks+0x9e/0xe0 [ 2118.028598] create_object.isra.0+0x3a/0xa20 [ 2118.029512] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2118.030576] kmem_cache_alloc+0x159/0x310 [ 2118.031449] xas_alloc+0x336/0x440 [ 2118.032200] xas_create+0x34a/0x10d0 [ 2118.032991] ? kernel_text_address+0xf2/0x120 [ 2118.033927] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2118.035026] xas_store+0x8c/0x1c40 [ 2118.035786] __xa_store+0x164/0x2d0 [ 2118.036562] ? xa_delete_node+0x280/0x280 [ 2118.037434] ? trace_hardirqs_on+0x5b/0x180 [ 2118.038340] xa_store+0x31/0x50 [ 2118.039038] __io_uring_add_tctx_node+0x1cf/0x520 [ 2118.040042] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2118.041149] ? alloc_fd+0x2e7/0x670 [ 2118.041920] io_uring_setup+0x1fbb/0x2980 [ 2118.042792] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2118.043850] ? wait_for_completion_io+0x270/0x270 [ 2118.044889] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2118.045985] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2118.047064] do_syscall_64+0x33/0x40 [ 2118.047842] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2118.048917] RIP: 0033:0x7f624aeccb19 [ 2118.049692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2118.053544] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2118.055135] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2118.056637] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2118.058125] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2118.059611] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2118.061102] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 23:59:45 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x20, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x80400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x11) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) 23:59:45 executing program 1: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet(0x2, 0x0, 0x300) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_inet_SIOCDARP(r2, 0x8953, &(0x7f0000000040)={{0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xb}}, 0x68, {0x2, 0x0, @empty}, 'lo\x00'}) r3 = socket$inet(0x2, 0x3, 0x6) connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x107800, 0x0) ioctl$sock_inet_SIOCADDRT(r4, 0x890b, &(0x7f00000003c0)={0x0, {0x2, 0x4e23, @remote}, {0x2, 0x4e23, @private=0xa010102}, {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xe}}, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x2, 0x40}) sendmmsg$inet(r3, &(0x7f0000000000), 0x400000d, 0x0) r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_submit(0x0, 0x4, &(0x7f00000008c0)=[&(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x5, r0, &(0x7f0000000480)="dbc4620ecd38d67360e19c95b2ec9fc823fe4ca246bf25e2172ac0330e2ee5c21efe33cce416f7d7a819930b480ec065bc4c15bc82674d468f4c99ff22cc", 0x3e, 0xceaa}, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x2, 0x7, 0xffffffffffffffff, &(0x7f0000000580)="a955e760351e5132bda3d8bdb134a1ff4e2b553818122edd81fff9abfcb705247d58313c956e90d13c7a01c8086b8a355dfa3eb70ea22e4deb8ccdb81f1555bb733ea8098f902f43c23e60c5e46b6d15533c6219c38ac7298693da4212372b93028b8fa4", 0x64, 0x4614, 0x0, 0x3}, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x2, 0x1ebf, 0xffffffffffffffff, &(0x7f0000000740)="b92566e4521cc587c88890d6d8e38f1f05ed21ba8e816dc157606ecb53a04ea62be2b49ddcde48eeb3e386ad27b4ed45f010295474e5c193a3b8a637dd3adce59c9c597c7e7776e58ceb1c1e6e", 0x4d, 0xff}, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x5, 0x2, 0xffffffffffffffff, &(0x7f0000000800)="f77472723c40d87185ac807c973530a687d7cacc260988859ff1dddd07932902043985a923805638783e9622ff72e50c8fa1c482bbe5a7f93e94fe8901633fbd6a45dd5559f7df9c7533adc6a057a650a5fec1eefe53cc6c9dfa42aed32daa2e65ed35a084e124b0e0000a5ff1238f1f28ed436a3862a21cce4b", 0x7a, 0x8000000000, 0x0, 0x3, r4}]) sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) close_range(r6, r5, 0x0) sendmsg$nl_generic(r6, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB], 0x14}}, 0x20040000) sendmsg$BATADV_CMD_SET_MESH(r6, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000600)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="eb0127222c15fd0aa6e99f25be9abd7000fedbdf250f40000005003c0006eaffff070007000000000008003b00070000000000000000000a821ade48b987dc21abc748daa3258b776d5a17da570a83b3de90bf31a4c7934e3e4146f115fdbc4296d32dc0ec4440e2cffb9cfe86809c018efa64bded78265289e3f969667af4b7d897dbf353314fd5c4b38cf3b22db3a62bd0b5583ab495dc13a6f3380b301f3c616dc7d094922978e7a939c66a835bffc911229b6e655718ff9c31a007f6e4ab0584e48d"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) r7 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000280)={'syztnl1\x00', &(0x7f00000001c0)={'gre0\x00', 0x0, 0x40, 0x40, 0x5, 0x9, {{0x22, 0x4, 0x1, 0xa, 0x88, 0x67, 0x0, 0x2, 0x29, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @local, {[@ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}, @timestamp={0x44, 0x28, 0xcd, 0x0, 0x9, [0x2, 0x779, 0x5, 0xe90, 0x200, 0x101, 0xfff, 0x2, 0x5]}, @end, @timestamp_prespec={0x44, 0xc, 0x89, 0x3, 0x0, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0xfff}]}, @cipso={0x86, 0x24, 0x3, [{0x0, 0xc, "8ed78a4e32d588991575"}, {0x2, 0x12, "51352222492961be162e49f26000dd2b"}]}, @timestamp={0x44, 0x8, 0x5d, 0x0, 0x0, [0x4]}, @ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}]}}}}}) sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r6, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x60, r7, 0x200, 0x70bd25, 0x25dfdbfc, {}, [@HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x4}]}, 0x60}, 0x1, 0x0, 0x0, 0x2801}, 0x0) 23:59:45 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) [ 2118.201191] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 00:00:00 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x5460) 00:00:00 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x89a0, 0x0) 00:00:00 executing program 1: r0 = syz_io_uring_setup(0x52dd, &(0x7f00000003c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index}, 0x0) syz_io_uring_setup(0x4bb8, &(0x7f0000000080)={0x0, 0x2c6f, 0x0, 0x3, 0x325}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000140)=0x0, &(0x7f0000000180)) r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x13, r0, 0x10000000) r5 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x10000, &(0x7f0000000280)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8, 0xffffffffffffffff, 0xffffffffffffffff], 0x8, 0x0, 0x1, {0x0, r9}}, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_OPENAT2={0x1c, 0x3, 0x0, 0xffffffffffffff9c, &(0x7f00000001c0)={0x19b940, 0x0, 0x8}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r9}}, 0x7) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:00:00 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x2a00, 0x0, 0x0, 0x0) 00:00:00 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) 00:00:00 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:00:00 executing program 3: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) [ 2132.372830] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'. 00:00:00 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 55) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 2132.391396] FAULT_INJECTION: forcing a failure. [ 2132.391396] name failslab, interval 1, probability 0, space 0, times 0 [ 2132.393932] CPU: 0 PID: 10622 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2132.395324] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2132.397013] Call Trace: [ 2132.397562] dump_stack+0x107/0x167 [ 2132.398307] should_fail.cold+0x5/0xa [ 2132.399083] ? xas_alloc+0x336/0x440 [ 2132.399843] should_failslab+0x5/0x20 [ 2132.400607] kmem_cache_alloc+0x5b/0x310 [ 2132.401446] xas_alloc+0x336/0x440 [ 2132.402167] xas_create+0x34a/0x10d0 [ 2132.402930] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2132.403980] xas_store+0x8c/0x1c40 [ 2132.404721] __xa_store+0x164/0x2d0 [ 2132.405463] ? xa_delete_node+0x280/0x280 [ 2132.406312] ? trace_hardirqs_on+0x5b/0x180 [ 2132.407184] xa_store+0x31/0x50 [ 2132.407852] __io_uring_add_tctx_node+0x1cf/0x520 [ 2132.408830] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2132.409879] ? alloc_fd+0x2e7/0x670 [ 2132.410626] io_uring_setup+0x1fbb/0x2980 [ 2132.411474] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2132.412525] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2132.413584] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2132.414620] do_syscall_64+0x33/0x40 [ 2132.415368] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2132.416398] RIP: 0033:0x7f624aeccb19 [ 2132.417146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2132.420828] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2132.422358] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2132.423805] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2132.425233] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2132.426672] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2132.428091] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 00:00:00 executing program 3: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) 00:00:00 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) [ 2132.554259] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'. 00:00:00 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x89a1, 0x0) 00:00:00 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 56) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:00:00 executing program 1: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x20, 0x0, 0x0, 0x0, 0x5e, 0x40040, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x3505}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001e00)=ANY=[@ANYBLOB="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"], 0x98}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffff8}, 0x0, 0x4}, 0x0, 0xffffffffffffffff, r0, 0x0) fallocate(0xffffffffffffffff, 0x1, 0x7, 0x4) syz_open_dev$tty1(0xc, 0x4, 0x1) add_key$keyring(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) r2 = add_key(&(0x7f0000000200)='keyring\x00', &(0x7f00000004c0)={'syz', 0x1}, &(0x7f0000000540)="18726d0eed55eaa57fc580dc3a0b12e0a5ee08da294ac8119c4c73f93694f2a935d17a81959d084839f846dca8739131e4a9c45c6509af44529537eae3b5a4793a9a0aacfd7a75f2b566b874939829b82a35d20d1985a92c5d7ba971251e89286f64438db33a7f05fb0d1707fd3fa27a56032a79c1d09558fbbfcb2e5f36d3e7e1c749ad35c2064fa087cf6359507a36eb69853e0cdd920cbb7586aedf5a2e5a9a1a6b8d11c08a14918b01d07c92179dfae1ef58835b5fa4be28fbd3b3eac1c9f3cf74fbe25748c55d23902439133eecfafb2e0f", 0xd4, 0xfffffffffffffffa) add_key(0x0, &(0x7f0000000480)={'syz', 0x1}, 0x0, 0x0, r2) add_key$keyring(&(0x7f0000000100), &(0x7f0000000240)={'syz', 0x1}, 0x0, 0x0, 0x0) keyctl$restrict_keyring(0x1d, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0x0) add_key(&(0x7f0000000000)='dns_resolver\x00', &(0x7f0000000140)={'syz', 0x1}, &(0x7f0000000c80)="ec4483e44308a5e1afb3f29d2fc7cc25f6479b5a1a379f467bb7faa9960a714a94885c4da3b93b5f7c37816d19a5b676606ed49d55fab713d2ab53c6fb0934e955b20bda464caffd34854a7d822578889732f2f3a6d63818fb1255a450ded9453e510a61ca88ca6dcea00fb08ebb4e5a565a2543d272bc2001cd3c271d25099c037735ec3660e9b7e0bc2e5ddf054b1a447ab52ac5a00a0ef88edc75ab7568f4923ae5184f054cd44aa843cc6d40563359d2504ba9e62b6a93d5bbdeec2c5ea70bda9e2bf8eaa02158636ba0a4af0e51a01f74d2ea61c9ad139323bdfacb80c970d9b382c41b8e52ad3d3b9afbd1b31a328ddf465f80d8de853c40b004e9b51d4d875b4919c0c30172ee575fc4c1ba858fbfa236d07eda77ee5152665c249d288f198af4f5d321f0b2b2a2fc2914a2021836ff614b78e27792d9dbd82cb723f8fedeb26fac7414aeeca0b86cc79a41be8c81fa349a6dd76d588553aa17b0ce93a74849d55e0224467291e5cc0c6d07c921bed0a89d721def9f075baba410e43bd160e5347c821c2c1de2ac6d7b9c80ee7a8f0dfecdb31149fb78d9c38a9980c5afd567e42ab15554ffedbbbe43ac4e2747e00f8bacdaf07a396288e70c77c185435fc1282db5c055cd5b74b8ebfeb13eac64d3695e0722b26fe5060566d84705a45614c65499d31a426976d0f41da356c21966e70f9694b110fee6143fdbf7300a5db35177009e82b2c3a47a3b9d3028f59f176eef59d68ecaf336240721c27ca8da51b2c799ef07d6b93b0c55d6fc8270b7ee5e14a7df26f1d6d5bce5fbc662941133d4208536f2f85b29ccc28d09999de5190caf789d2040ead540d554092d020f653e3c404f87204b228272e4d5c4db43a2630cfd48a0fd6d3b7bd67db89b527d0c7361d8d19926217475505b8645a9a6fd3b2f3395eed770a8a877b086d5a18569534a7cb045cf45f65be8022118f7a2c80dbb63c9516755910b9d1df28c795242da137747be1b481217a35ad218df68a2949be9d5c1230a8292ddf59ab4b5e25109ca47bf026e9d43e60ab1f28c7f5a80da665ea7cba81fde22455d123690a731b6ec5c6bde5a54cb5455950e51025ba95d37a36a31586da290a69a453c0393cb1058907b2ff13693dbd31572629c1cad3c149047029bf97636d7d69f6d5c2339b279a2fa8c642c70d08d9815f8ef74579354f863bc2f390b2db678ab5720f92e33cd727a0f0e9749990190da99eda54536bc16b73dd873b17fa70f0d65de653798362deefa52a069658f7980d1d152df57eb4450647302f9a12c735484235c16aab044e2828e90dc7042b86f12569cb904c122e909cb23f00d0bb696c9604077270fe0a93ce34d219e79a5e7144b49fbdf4c3067e7c676f3b7278796a478c59d1f16b716f2a4d078fe2e5de31443c2e01ebcdb91ba7b4760cd7f8b77a261e73eab8cbcb2a7b964de22ce94845a17a033de90ddd6a440e23bd7cb161b51b0c483d713f7f8388dcc258d8e57d8f1a1d6fd29187a42ea14f73cf9b31b1a17b8b0e201d6e7aa896c11c96a547b2c6286c20a49490e540a8b4a40afac85c81f56a3c5cf93f37b157fd4b347cbe6a0a0f738671e8da301450345bc50bbc40c82743f580dd0ac1d8ef6147f0755a4927d1cccc44c401654e0d1285c4f6056db14e2052600dd223748c09ccebb2f350cf2693d69c5234d64226c63d0b2c54ce67121bcdaf64510a90a54eda663f2e17b710c02a383255880a7aa1fc9f81b3140399157bc5cb71eca8d083beb4412adcd3f4a7600cc53aca5ed634c78efafb533859aad162b9a6c20600071a349cfa0a36e442af5fa0f560e1afd4a707b40c020fdac597a4756d89cf1ed52fade329e2efab953581fc0e8b91c420f5e0282290b8dd3f2dfc770d77db18857dd47aba6a79a72398b495f7db353a94b340fc767b2bc09b878f7a5b4ecae5e569e9545bad6cb7a0000fd72fd25d483216459e11122a333c248bfae08d2f27c97208f662d27a89f227c6c9d17aeb9876d4a57ddf411eea0567f3eef3aa2b80c41f8e9e8754fcb8839987bf841de6782ccca8433da8d2ceb987136389d5d73bab5fdd2429fe6d31767f3960cfd4e827d056c4d73ff4659d7449bdab11353d247148459719c02128c71afa7a107823d9001dc18b76732f19b6120b111352e347e3fbdbba81ec78a2154b2d74d8475eb83f17fafff656a03afbb5105dab892f1671ee8e92027d46c46a739c778bdbf6268e10a2166c842a7c057726fd6d7db5decba0e8d60663e4f50b4109ca20292f9f8e9255dd222490981b1e5180612256cb7886d03a34cc1ca5d3d9609d47c592d919a2e6aac600b868ffed713f56b36b2a0a8aff3b1b902c37a30eb6039f0f2e7eab890d4aa8145e0598123525348a11bca51d89fd3095697b0ab9fc84c43452d034df1a46eb095a66e4e092c6e74565e3b3613956bd47a846452b6ffd939e360b87606b8974e225b136f74c4432a8b4496fd0cc2f1057c63269b90dcf005f324fba463e4af4db0e518b2718ccad95043da5ebd0b4ec45a9c2f052643fe76589a974ef282078e90e946fb4af7e8f78ec9d9295471907bd77606523f775d5a603d113117041b616166c40304f1e5424ac79d54251dce33088d1dc123c51b7cc43eaa65aabd4393ecd9fc66dfab09c362936a9c32f4fe75918d3377abf46e142c22b72703adc4c44a6d24d884ece2706d46808b786009db5bc5dae81d98fcae8778c2ffaa321dbc47d6b559f85c38b6a17a3ec8ff3c7b521bb719e5cb82d0079c4b66ff60a00685c6605029a2457d39f1a384a2e3365f457c10a66e4b7b2a9348da7fa08ff5a68e78ae46ad126407ac2c5ff7d9066de6bef6c17d8fdb11dbf1e312b2e055e9b603f31db9a6d97f1693be0066f48e4b5afe18391fb12e6acea841d30fa4e3f1e6dbf14534a03b5fe05be9135095213421ed62a7503a9257f436790ccf4677c771d7d4aebaa22df08ab12da851958a89a01e74edd873aba5f96880dac97a6ddd840124a4ee3d7235fb49b0427e672052dc0a1d0d2eae3d2d2f7eaee684ea4b315a68794049857c85ad01069441a01124d5993191145d9ffca9a1d3d6278aacde294b821b1c4c57f46fd80c7433d08d0a995b0c978ac6f59a5ecaaf9a646326d25fc45b9d68fffdd195f57353d3d30204ecc74f239ee63277c1d766833db20d8f976bcc0c0e7d8240e76046e9822f9340afa951f2df320e4b55fa93171888adb0ee2c9e5043a0e22f5a7d0cae648a8028f30d9ba4c8596e26c25bc1c14d5899fdfcefa4868728dd9cde25067d09223a4fc6615f5698ea9f1599c3bba289574db98243497517c4fed5827f7b0f0adc0869cdee3afb4a4a7e1ef67ed5284cb47a39d651038ca04900757f49ab5a398786bba1df9d53a9158070ab53e4489170e928e16cf3640879a62624be488810d95cdcad31de7f9389fcd9df0d3e17c559a42c863600f594184e843ff469712a4da77b1231d99fdd401273703416b7d9de8ed09e853508fd6a71fe5dc15d1a3696582448f0528f1414f36be6c1182a7bd781c6c9373574fb22d314e72f1de70eb613166af230a6f42c167eef6ed808e82d61b0fdf680074cd78f4602f774d2e018c428030ae3b8350e23b336f6c873adc42a86aeb96eebcd6b9eec5fb4ff4564318ef84278ff4af5d2a4073027ff861d9918e0dd3f0fa603aa4fa7c2c623b27b90c434777904c605f3d6dac765922df05fc6bf6cc00bf3a124ca94b2b47e3c1cda00d437ee8a223eceb3ce1dc01dbafe1d786c979324d1f4e47461cc956635ddb3a50b154414439f9ad09a5c9ecb18ce87a1cdb481e09922c17a878a0db58fad50e2454afb24d8683fbe47ecc0cf32eb972a2c7c36d6c7dc4f750dbc2076951ffa316adabb9263b73b97a17d0ca7e20582c8b28cc1319b159099a06cec5659ca8dfb575ffac849d19b1f7db6bb054572bb953c61ec0e4df24c218556fbe30cd97638fb0c098e0bce4272ee10b291d93606ea24ed5ea74cb732e0b8a9aa4a9b46afc9174efedd0cd200e260c3c6373df771c125630e850ec877138b67771081b5b1dac78a2f32eed812f6a5a155dd3b3b2941b36016c94866e7233057d414f6b77188b9cd0865d44d104a8df07376cc94b5d7fcc4dc75124a1b6b92f3243e26dd386d3fcdf7e9bdbc94fa0e258837f08c2b6c274f5eba2b089d70521ad7aed5f4d7f06ebbee7d2ae3a0df7006603602442889b9964d88c42169b43e91981a09ba7253cb0b198a7fdc5dc02161a1690806092212d7ce209bdc5e61bc60c694b7bb615f75e46b41c425126a79aeab031cb26fb9828d5fef5c621f1f5f711f2c2f921a36a86e3a8ceb8d05bf91b96db3bdea6846d68042128c754041cfaf6ecdc86f8f2a32143fedbc60aa9dc67ac1d4c672c876924e8372d92fa515ca8fe1ad46f40a872b1894b57a3bdef602fa4080f9ae1762d7be0a377ec66758f99c1628bd53ff5244bd44cefe568a9b59271f47c1bbe2f736733bf33340ebfda941f0b8dafe23ae1a75c3276ae5ee229cb9f2aa5bbff5194a7edd9eed680b3bbcd4493ab3805160e4a15425bf1ede7837b8ac059f35bb965d2fc7e21f4eae359125859d53dc44fdc1a82170c692d538d2ffae52192732dfeb5f30ea7e6451bf8cb6c7d646bcab143857eb12bf36adf8be5b2bdf633f5c2f13f7c40463859f9af586633ab16c95b4047db238589b21670c20415217c7bd46b3de4402693b03127cb23003d2b71bd3219213a5cac70de1bfdc5751d24b3741b7f346db034cfa4b0ab3d01a9e536e1fd58d16cd43744f22cb85952720028a47e91826e1a8c65c644dfdde4c596fe7126ee14c1505c1385669ac2def5ec33d243fa2659185303742440371ba8d7185f946345048c533224cc06f792eb04cbf491128fad2efe1f87a8a13ca74600c99bca37ab1cc76ff5fb1dc12b18476ddc105c0fa6a9c8ca7410fcf0bcca3bd10bd746466949b2f2f993b25059b513109b441c19e1d34bae1fe672cf63dd530529472ade248eea6125f5fe514eeb8637228d2639711161a5da60013960a01d43a30cbeb0275efe803650fa055bc657fd9f64e4b52057659c1505ff8a53b4b0c8a1b8852cc69c4dfc6fb24731d1b3909dbda2eaaefb2ae822929ca4286710f0c34aaad2622350a0015b773f9b5b7edcd0d0df0ad357c73306394af94ebb1c5ba3a3832b524a5126fad86ee1ebab09b37c1b5bd93b1f4d88a46020805d77af65eeded70397f9021f130cefebc05d8372d56e71847caa729786b48ecdba21dc022bbd3eb61a5de740dced8fa75ca93c323776e717baeb12f92de58584df23a6fd7762f05c204c869f316429b36ef528d5f9f08f4e79f59c7db1b2c427d15be765054b7ceb685c58719a9049a211ea09894256cdff18a803656b24d1b332e4fa239b4d20c74b8bcd035f8d5ddb8c09ba9378fd18efab2e4943e9638f63525f21042c3d6b8f66cc2cb092ffa225ea7f854723f6906e782b7e728308688da3bf462f5b4ef1285950171e42f22e8266d65d44e6964bea4ea2698909fafacfa5df0685a62c2126e606dd50e51cba1cfd63ec98c7781eb10fa260e4d72bf03a04ebe83535294d750a656bfa09827c1e55d284d41962fa4647f5a936eec7bd9b18d20768b9b76bda55d98ea9dc78e147270c93ec2ac03bd038887863b693325f85317ed330a8add53c7c3b7f0cb34c1057ae19932159a6fa828964e992a58869fa8aae0ffe4984e2938e81ffbfe67edb2f7436ec20f9dc9f7b157b569", 0x1000, 0x0) add_key$keyring(&(0x7f0000000740), &(0x7f0000000780)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffa) keyctl$read(0xb, 0x0, &(0x7f0000000880)=""/191, 0xbf) sendmsg$NL80211_CMD_REQ_SET_REG(r1, 0x0, 0x20000010) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xa001, 0x0) add_key$keyring(&(0x7f0000000040), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0x0) unshare(0x48020200) [ 2132.616330] netlink: 124 bytes leftover after parsing attributes in process `syz-executor.1'. 00:00:00 executing program 3: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) 00:00:00 executing program 6: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) 00:00:00 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6609) [ 2132.677255] FAULT_INJECTION: forcing a failure. [ 2132.677255] name failslab, interval 1, probability 0, space 0, times 0 00:00:00 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 2132.679822] CPU: 0 PID: 10642 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2132.681318] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2132.682965] Call Trace: [ 2132.683500] dump_stack+0x107/0x167 [ 2132.684235] should_fail.cold+0x5/0xa [ 2132.685007] ? create_object.isra.0+0x3a/0xa20 [ 2132.685924] should_failslab+0x5/0x20 [ 2132.686717] kmem_cache_alloc+0x5b/0x310 [ 2132.687534] ? mark_held_locks+0x9e/0xe0 [ 2132.688385] create_object.isra.0+0x3a/0xa20 [ 2132.689447] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2132.690561] kmem_cache_alloc+0x159/0x310 [ 2132.691471] xas_alloc+0x336/0x440 [ 2132.692248] xas_create+0x34a/0x10d0 [ 2132.693090] ? kernel_text_address+0xf2/0x120 [ 2132.694063] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2132.695203] xas_store+0x8c/0x1c40 [ 2132.695992] __xa_store+0x164/0x2d0 [ 2132.696797] ? xa_delete_node+0x280/0x280 [ 2132.697728] ? trace_hardirqs_on+0x5b/0x180 [ 2132.698672] xa_store+0x31/0x50 [ 2132.699391] __io_uring_add_tctx_node+0x1cf/0x520 [ 2132.700438] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2132.701606] ? alloc_fd+0x2e7/0x670 [ 2132.702413] io_uring_setup+0x1fbb/0x2980 [ 2132.703322] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2132.704423] ? wait_for_completion_io+0x270/0x270 [ 2132.705526] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2132.706664] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2132.707786] do_syscall_64+0x33/0x40 [ 2132.708593] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2132.709730] RIP: 0033:0x7f624aeccb19 [ 2132.710535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2132.714551] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2132.716199] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2132.717774] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2132.719318] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2132.720894] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2132.722447] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 00:00:00 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) 00:00:00 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x3000, 0x0, 0x0, 0x0) 00:00:00 executing program 6: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) 00:00:00 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448c9, 0x0) 00:00:15 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448ca, 0x0) 00:00:15 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x3600, 0x0, 0x0, 0x0) 00:00:15 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 57) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:00:15 executing program 6: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0, @ANYBLOB="00f6ffffff00000000000001"], 0x28}}, 0x0) 00:00:15 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x660c) 00:00:15 executing program 1: ioctl$BTRFS_IOC_GET_FEATURES(0xffffffffffffffff, 0x80189439, &(0x7f0000000040)) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x26, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000004000008000000d2c20000120300000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38323232353731363100"/192, 0xc0, 0x400}, {&(0x7f0000010100)="00000000000000000000000091b73ef4b8d944c4be6aeaa0d6c47e6c010040000c00000000000000d4f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000040000005500000000000000", 0x40, 0x540}, {&(0x7f0000010300)="030000000400"/32, 0x20, 0x640}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000010500)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d4f4655fd4f4655fd4f4655f00"/8224, 0x2020, 0x2000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f00000000000004008000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x4400}, {&(0x7f0000012700)="20000000c4caafbcc4caafbc00000000d4f4655f00"/32, 0x20, 0x4480}, {&(0x7f0000012800)="8081000000180000d4f4655fd4f4655fd4f4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030000000", 0x40, 0x4800}, {&(0x7f0000012900)="20000000000000000000000000000000d4f4655f00"/32, 0x20, 0x4880}, {&(0x7f0000012a00)="8081000000180000d4f4655fd4f4655fd4f4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000040000000", 0x40, 0x4c00}, {&(0x7f0000012b00)="20000000000000000000000000000000d4f4655f00"/32, 0x20, 0x4c80}, {&(0x7f0000012c00)="c041000000300000d4f4655fd4f4655fd4f4655f00000000000002008000000000000800000000000af301000400000000000000000000000300000020000000", 0x40, 0x6800}, {&(0x7f0000012d00)="20000000000000000000000000000000d4f4655f000000000000000000000000000002ea00"/64, 0x40, 0x6880}, {&(0x7f0000012e00)="ed4100003c000000d5f4655fd5f4655fd5f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000005aec127300000000000000000000000000000000000000000000000020000000c4caafbcc4caafbcc4caafbcd5f4655fc4caafbc0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x6c00}, {&(0x7f0000012f00)="ed8100001a040000d5f4655fd5f4655fd5f4655f00000000000001008000000000000800010000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000392c7b8c00000000000000000000000000000000000000000000000020000000c4caafbcc4caafbcc4caafbcd5f4655fc4caafbc0000000000000000", 0xa0, 0x7000}, {&(0x7f0000013000)="ffa1000026000000d5f4655fd5f4655fd5f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3832323235373136312f66696c65302f66696c653000000000000000000000000000000000000000000000d8199c5e00000000000000000000000000000000000000000000000020000000c4caafbcc4caafbcc4caafbcd5f4655fc4caafbc0000000000000000", 0xa0, 0x7400}, {&(0x7f0000013100)="ed8100000a000000d5f4655fd5f4655fd5f4655f000000000000010000000000000000100100000073797a6b616c6c65727300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004ba95a2c00000000000000000000000000000000000000000000000020000000c4caafbcc4caafbcc4caafbcd5f4655fc4caafbc0000000000000000000002ea040700000000000000000000000000006461746106015403000000000600000000000000786174747231000006014c0300000000060000000000000078617474723200"/256, 0x100, 0x7800}, {&(0x7f0000013200)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000d5f4655fd5f4655fd5f4655f00000000000002008000000000000800010000000af301000400000000000000000000000300000060000000020000000100000062000000020000000180000062000000000000000000000000000000df980a7e00000000000000000000000000000000000000000000000020000000c4caafbcc4caafbcc4caafbcd5f4655fc4caafbc0000000000000000", 0xc0, 0x7be0}, {&(0x7f0000013300)="ed81000064000000d5f4655fd5f4655fd5f4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c852ae89800000000000000000000000000000000000000000000000020000000c4caafbcc4caafbcc4caafbcd5f4655fc4caafbc0000000000000000000002ea04073403000000002800000000000000646174610000000000000000", 0xc0, 0x8000}, {&(0x7f0000013400)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x83c0}, {&(0x7f0000013500)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c653300000011000000940f090166696c652e636f6c64000000", 0x80, 0x10000}, {&(0x7f0000013600)="0b0000000c0001022e000000020000000c0002022e2e000000000000e80f0000", 0x20, 0x20000}, {&(0x7f0000013700)="00000000001000"/32, 0x20, 0x21000}, {&(0x7f0000013800)="00000000001000"/32, 0x20, 0x22000}, {&(0x7f0000013900)="111fc0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x30000}, {&(0x7f0000013a00)="0200"/32, 0x20, 0x30400}, {&(0x7f0000013b00)="0300"/32, 0x20, 0x30800}, {&(0x7f0000013c00)="0400"/32, 0x20, 0x30c00}, {&(0x7f0000013d00)="0500"/32, 0x20, 0x31000}, {&(0x7f0000013e00)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000400"/96, 0x60, 0x31400}, {&(0x7f0000013f00)="2719c0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x40000}, {&(0x7f0000014000)="0200"/32, 0x20, 0x40400}, {&(0x7f0000014100)="0300"/32, 0x20, 0x40800}, {&(0x7f0000014200)="0400"/32, 0x20, 0x40c00}, {&(0x7f0000014300)="0500"/32, 0x20, 0x41000}, {&(0x7f0000014400)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000400"/96, 0x60, 0x41400}, {&(0x7f0000014500)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x50000}], 0x0, &(0x7f0000014a00)) 00:00:15 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:00:15 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) [ 2147.417242] FAULT_INJECTION: forcing a failure. [ 2147.417242] name failslab, interval 1, probability 0, space 0, times 0 [ 2147.419806] CPU: 1 PID: 10687 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2147.421274] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2147.423040] Call Trace: [ 2147.423617] dump_stack+0x107/0x167 [ 2147.424402] should_fail.cold+0x5/0xa [ 2147.425216] ? xas_alloc+0x336/0x440 [ 2147.426071] should_failslab+0x5/0x20 [ 2147.426881] kmem_cache_alloc+0x5b/0x310 [ 2147.427752] xas_alloc+0x336/0x440 [ 2147.428515] xas_create+0x34a/0x10d0 [ 2147.429341] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2147.430457] xas_store+0x8c/0x1c40 [ 2147.431236] __xa_store+0x164/0x2d0 [ 2147.432016] ? xa_delete_node+0x280/0x280 [ 2147.432917] ? trace_hardirqs_on+0x5b/0x180 [ 2147.433861] xa_store+0x31/0x50 [ 2147.434570] __io_uring_add_tctx_node+0x1cf/0x520 [ 2147.435599] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2147.436711] ? alloc_fd+0x2e7/0x670 [ 2147.437516] io_uring_setup+0x1fbb/0x2980 [ 2147.438408] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2147.439487] ? wait_for_completion_io+0x270/0x270 [ 2147.440542] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2147.441666] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2147.442768] do_syscall_64+0x33/0x40 [ 2147.443561] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2147.444650] RIP: 0033:0x7f624aeccb19 [ 2147.445464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2147.449361] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2147.450962] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2147.452451] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2147.453963] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2147.455460] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2147.456950] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 00:00:30 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) 00:00:30 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x3c00, 0x0, 0x0, 0x0) 00:00:30 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:00:30 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448cb, 0x0) 00:00:30 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) 00:00:30 executing program 1: perf_event_open(0x0, 0x0, 0xc, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_int(r1, 0x29, 0x5, &(0x7f0000000480)=0x3f, 0x4) r2 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r2, &(0x7f0000002540)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x0, @empty, 0x40}, 0x1c, 0x0}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) rmdir(&(0x7f0000000540)='./file0\x00') r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) close_range(r4, r3, 0x0) sendmsg$nl_generic(r4, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB], 0x14}}, 0x20040000) sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000600)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="eb0127222c15fd0aa6e99f25be9abd7000fedbdf250f40000005003c0006eaffff070007000000000008003b00070000000000000000000a821ade48b987dc21abc748daa3258b776d5a17da570a83b3de90bf31a4c7934e3e4146f115fdbc4296d32dc0ec4440e2cffb9cfe86809c018efa64bded78265289e3f969667af4b7d897dbf353314fd5c4b38cf3b22db3a62bd0b5583ab495dc13a6f3380b301f3c616dc7d094922978e7a939c66a835bffc911229b6e655718ff9c31a007f6e4ab0584e48d"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) write$binfmt_elf64(r4, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x23c) 00:00:30 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 58) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:00:30 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6612) 00:00:30 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) [ 2163.191304] FAULT_INJECTION: forcing a failure. [ 2163.191304] name failslab, interval 1, probability 0, space 0, times 0 [ 2163.194022] CPU: 1 PID: 10713 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2163.195542] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2163.197419] Call Trace: [ 2163.198039] dump_stack+0x107/0x167 [ 2163.198865] should_fail.cold+0x5/0xa [ 2163.199731] ? create_object.isra.0+0x3a/0xa20 [ 2163.200773] should_failslab+0x5/0x20 [ 2163.201637] kmem_cache_alloc+0x5b/0x310 [ 2163.202572] ? mark_held_locks+0x9e/0xe0 [ 2163.203495] create_object.isra.0+0x3a/0xa20 [ 2163.204495] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2163.205649] kmem_cache_alloc+0x159/0x310 [ 2163.206612] xas_alloc+0x336/0x440 [ 2163.207433] xas_create+0x34a/0x10d0 [ 2163.208289] ? kernel_text_address+0xf2/0x120 [ 2163.209304] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2163.210504] xas_store+0x8c/0x1c40 [ 2163.211331] __xa_store+0x164/0x2d0 [ 2163.212157] ? xa_delete_node+0x280/0x280 [ 2163.213104] ? trace_hardirqs_on+0x5b/0x180 [ 2163.214108] xa_store+0x31/0x50 [ 2163.214860] __io_uring_add_tctx_node+0x1cf/0x520 [ 2163.215919] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2163.217109] ? alloc_fd+0x2e7/0x670 [ 2163.217968] io_uring_setup+0x1fbb/0x2980 [ 2163.218920] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2163.220075] ? wait_for_completion_io+0x270/0x270 [ 2163.221196] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2163.222395] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2163.223568] do_syscall_64+0x33/0x40 [ 2163.224416] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2163.225572] RIP: 0033:0x7f624aeccb19 [ 2163.226432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2163.230593] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2163.232320] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2163.233975] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2163.235583] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2163.237193] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2163.238853] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 00:00:31 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) 00:00:31 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448cc, 0x0) 00:00:31 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) 00:00:31 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x41ed, 0x0, 0x0, 0x0) 00:00:31 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448dd, 0x0) 00:00:31 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) 00:00:31 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:00:31 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:00:31 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) 00:00:31 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) 00:00:31 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448e4, 0x0) 00:00:31 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6628) 00:00:31 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 59) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:00:31 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x28}}, 0x0) [ 2163.718150] FAULT_INJECTION: forcing a failure. [ 2163.718150] name failslab, interval 1, probability 0, space 0, times 0 [ 2163.720454] CPU: 0 PID: 10764 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2163.721842] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2163.723511] Call Trace: [ 2163.724068] dump_stack+0x107/0x167 [ 2163.724815] should_fail.cold+0x5/0xa [ 2163.725580] ? create_object.isra.0+0x3a/0xa20 [ 2163.726495] should_failslab+0x5/0x20 [ 2163.727256] kmem_cache_alloc+0x5b/0x310 [ 2163.728065] ? mark_held_locks+0x9e/0xe0 [ 2163.728880] create_object.isra.0+0x3a/0xa20 [ 2163.729747] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2163.730765] kmem_cache_alloc+0x159/0x310 [ 2163.731619] xas_alloc+0x336/0x440 [ 2163.732329] xas_create+0x34a/0x10d0 [ 2163.733086] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2163.734176] xas_store+0x8c/0x1c40 [ 2163.734904] __xa_store+0x164/0x2d0 [ 2163.735633] ? xa_delete_node+0x280/0x280 [ 2163.736466] ? trace_hardirqs_on+0x5b/0x180 [ 2163.737326] xa_store+0x31/0x50 [ 2163.737991] __io_uring_add_tctx_node+0x1cf/0x520 [ 2163.738944] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2163.739990] ? alloc_fd+0x2e7/0x670 [ 2163.740724] io_uring_setup+0x1fbb/0x2980 [ 2163.741572] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2163.742581] ? wait_for_completion_io+0x270/0x270 [ 2163.743571] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2163.744604] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2163.745641] do_syscall_64+0x33/0x40 [ 2163.746378] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2163.747395] RIP: 0033:0x7f624aeccb19 [ 2163.748128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2163.751765] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2163.753274] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2163.754685] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2163.756097] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2163.757498] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2163.758937] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 00:00:31 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x28}}, 0x0) 00:00:31 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) 00:00:31 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448e6, 0x0) 00:00:31 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:00:31 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0xed41, 0x0, 0x0, 0x0) 00:00:31 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x40046629) 00:00:46 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448e6, 0x0) 00:00:46 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x40049409) 00:00:46 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x28}}, 0x0) 00:00:46 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x1517f, 0x0, 0x0, 0x0) 00:00:46 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) 00:00:46 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448e7, 0x0) 00:00:46 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 60) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:00:46 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 2178.421903] FAULT_INJECTION: forcing a failure. [ 2178.421903] name failslab, interval 1, probability 0, space 0, times 0 [ 2178.424912] CPU: 1 PID: 10805 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2178.426386] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2178.428135] Call Trace: [ 2178.428699] dump_stack+0x107/0x167 [ 2178.429473] should_fail.cold+0x5/0xa [ 2178.430275] ? create_object.isra.0+0x3a/0xa20 [ 2178.431256] should_failslab+0x5/0x20 [ 2178.432056] kmem_cache_alloc+0x5b/0x310 [ 2178.432918] ? mark_held_locks+0x9e/0xe0 [ 2178.433783] create_object.isra.0+0x3a/0xa20 [ 2178.434722] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2178.435795] kmem_cache_alloc+0x159/0x310 [ 2178.436675] xas_alloc+0x336/0x440 [ 2178.437431] xas_create+0x34a/0x10d0 [ 2178.438233] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2178.439338] xas_store+0x8c/0x1c40 [ 2178.440100] __xa_store+0x164/0x2d0 [ 2178.440870] ? xa_delete_node+0x280/0x280 [ 2178.441739] ? trace_hardirqs_on+0x5b/0x180 [ 2178.442658] xa_store+0x31/0x50 [ 2178.443341] __io_uring_add_tctx_node+0x1cf/0x520 [ 2178.444346] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 2178.445420] ? alloc_fd+0x2e7/0x670 [ 2178.446209] io_uring_setup+0x1fbb/0x2980 [ 2178.447117] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 2178.448197] ? wait_for_completion_io+0x270/0x270 [ 2178.449241] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2178.450353] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2178.451455] do_syscall_64+0x33/0x40 [ 2178.452241] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2178.453330] RIP: 0033:0x7f624aeccb19 [ 2178.454117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2178.458010] RSP: 002b:00007f6248442108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 2178.459627] RAX: ffffffffffffffda RBX: 00007f624afdff60 RCX: 00007f624aeccb19 [ 2178.461137] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 00000000000056de [ 2178.462652] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 2178.464159] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 2178.465668] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 00:00:46 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x28}}, 0x0) 00:00:46 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x40049409, 0x0) 00:00:46 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448e7, 0x0) 00:00:46 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0], 0x28}}, 0x0) 00:00:46 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 61) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 2178.657921] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2178.695379] FAULT_INJECTION: forcing a failure. [ 2178.695379] name failslab, interval 1, probability 0, space 0, times 0 [ 2178.698336] CPU: 0 PID: 10823 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2178.699818] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2178.701581] Call Trace: [ 2178.702142] dump_stack+0x107/0x167 [ 2178.702937] should_fail.cold+0x5/0xa [ 2178.703764] ? vm_area_dup+0x78/0x290 [ 2178.704581] should_failslab+0x5/0x20 [ 2178.705408] kmem_cache_alloc+0x5b/0x310 [ 2178.706284] vm_area_dup+0x78/0x290 [ 2178.707065] ? lock_release+0x680/0x680 [ 2178.707920] ? mark_lock+0xf5/0x2df0 [ 2178.708720] ? lock_chain_count+0x20/0x20 [ 2178.709612] ? mark_lock+0xf5/0x2df0 [ 2178.710425] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2178.711534] ? lock_chain_count+0x20/0x20 [ 2178.712417] ? mark_lock+0xf5/0x2df0 [ 2178.713220] ? vm_area_alloc+0x110/0x110 [ 2178.714096] ? __lock_acquire+0x1657/0x5b00 [ 2178.715053] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2178.716176] ? vmacache_find+0x55/0x2a0 [ 2178.717019] __split_vma+0xa8/0x4e0 [ 2178.717804] __do_munmap+0x365/0x1260 [ 2178.718641] ? arch_get_unmapped_area+0x450/0x450 [ 2178.719662] ? lock_release+0x680/0x680 [ 2178.720509] mmap_region+0x7c8/0x1500 [ 2178.721347] do_mmap+0xcdb/0x11e0 [ 2178.722088] vm_mmap_pgoff+0x198/0x1f0 [ 2178.722943] ? randomize_page+0xb0/0xb0 [ 2178.723810] ksys_mmap_pgoff+0x41c/0x560 [ 2178.724677] ? find_mergeable_anon_vma+0x250/0x250 [ 2178.725734] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2178.726881] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2178.728138] do_syscall_64+0x33/0x40 [ 2178.729053] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2178.730208] RIP: 0033:0x7f624aeccb62 [ 2178.731011] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2178.734920] RSP: 002b:00007f62484420f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2178.736543] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f624aeccb62 [ 2178.738057] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2178.739601] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 2178.741114] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2178.742635] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 00:00:59 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 62) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:00:59 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x40086602) 00:00:59 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000"], 0x28}}, 0x0) 00:00:59 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:00:59 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x28}}, 0x0) 00:00:59 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x40086602, 0x0) 00:00:59 executing program 1: ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, 0x0, 0x0) getsockopt$IPT_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x0, 0x42, &(0x7f0000000280)={'NETMAP\x00'}, &(0x7f0000000400)=0x1e) r0 = perf_event_open(&(0x7f00000002c0)={0x4, 0x80, 0x96, 0x1, 0x4, 0x1, 0x0, 0x0, 0x9408, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f00000001c0)}, 0x8914a, 0xe418, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, 0x6}, 0x0, 0xd, 0xffffffffffffffff, 0x0) move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) fsetxattr$security_ima(r0, &(0x7f0000000200), &(0x7f0000000240)=@sha1={0x1, "5c19f1f345ab420dd205a583c1b90be29298faac"}, 0x15, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000002c80)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f0000018800)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000001680)=ANY=[@ANYBLOB="00000000000000000000000000000000769a5c0c6875727b360071241143270638f14409cbf275742e7f4c91485cbc25dd0f06b45d1ac95d0e947998bc0fdf40525cebb555d2de24a162e8aa76f210cfc9d740554c07d23dcd11622dbd22224659557eac9436ec5a6af95556b374cfe0b2058f1c2f56692633ddd1695738a2a1a741cb6df2b44770ba51ca6fd58365a720e6379263d27a79e96f89441798038d084b310cf7ebb49fa23e4e9ff96389cc633d6a3b17da0a12c14ae5691d4a6a6e546c8bc5377f8c8f3b083864279900194fe38f", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32], 0x20}}], 0x2, 0x0) readv(0xffffffffffffffff, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f0000001880)=ANY=[@ANYBLOB="a0000000000007280001800c00028005000100840000000c00028005000100880000000c000280050001002f00000008000440000000090c0001800600034000000000000003ff0c0002800500010021000000060013400003000006000340000200000c00028005000100010000000600034000010000140001800800010000000000080002000a01010208000440fffffffd5cf03c6fba1e96bac815b838796a78636b26bde7b1b4ba1842ed1ce6"], 0xa0}, 0x1, 0x0, 0x0, 0x8810}, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000f, 0x1f012, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4a8b, &(0x7f0000000440)={0x0, 0xece2, 0x10, 0x1, 0x3df}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000015c0), &(0x7f0000001640)) ioctl$INCFS_IOC_PERMIT_FILL(r2, 0x40046721, &(0x7f0000000000)={r2}) epoll_create(0x1) sendmsg$IEEE802154_LLSEC_GETPARAMS(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x38, 0x0, 0x100, 0x60bd29, 0x25dfdbfb, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}]}, 0x38}}, 0x4040084) bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x1, @any, 0x100}, 0xe) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x180, 0x0) r4 = ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) 00:00:59 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x80000, 0x0, 0x0, 0x0) [ 2191.759955] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 00:00:59 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x28}}, 0x0) [ 2191.788495] FAULT_INJECTION: forcing a failure. [ 2191.788495] name failslab, interval 1, probability 0, space 0, times 0 [ 2191.791832] CPU: 0 PID: 10840 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2191.793296] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2191.795045] Call Trace: [ 2191.795607] dump_stack+0x107/0x167 [ 2191.796368] should_fail.cold+0x5/0xa [ 2191.797177] ? create_object.isra.0+0x3a/0xa20 [ 2191.798142] should_failslab+0x5/0x20 [ 2191.798958] kmem_cache_alloc+0x5b/0x310 [ 2191.799817] create_object.isra.0+0x3a/0xa20 [ 2191.800759] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2191.801842] kmem_cache_alloc+0x159/0x310 [ 2191.802725] vm_area_dup+0x78/0x290 [ 2191.803509] ? lock_release+0x680/0x680 [ 2191.804349] ? mark_lock+0xf5/0x2df0 [ 2191.805143] ? lock_chain_count+0x20/0x20 [ 2191.806015] ? mark_lock+0xf5/0x2df0 [ 2191.806809] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2191.807930] ? lock_chain_count+0x20/0x20 [ 2191.808808] ? mark_lock+0xf5/0x2df0 [ 2191.809592] ? vm_area_alloc+0x110/0x110 [ 2191.810450] ? __lock_acquire+0x1657/0x5b00 [ 2191.811388] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2191.812487] ? SOFTIRQ_verbose+0x10/0x10 [ 2191.813339] ? vmacache_find+0x55/0x2a0 [ 2191.814168] __split_vma+0xa8/0x4e0 [ 2191.814952] __do_munmap+0x365/0x1260 [ 2191.815757] ? arch_get_unmapped_area+0x450/0x450 [ 2191.816779] ? lock_release+0x680/0x680 [ 2191.817633] mmap_region+0x7c8/0x1500 [ 2191.818454] do_mmap+0xcdb/0x11e0 [ 2191.819206] vm_mmap_pgoff+0x198/0x1f0 [ 2191.820028] ? randomize_page+0xb0/0xb0 [ 2191.820883] ksys_mmap_pgoff+0x41c/0x560 [ 2191.821740] ? find_mergeable_anon_vma+0x250/0x250 [ 2191.822771] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2191.823889] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2191.824981] do_syscall_64+0x33/0x40 [ 2191.825765] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2191.826847] RIP: 0033:0x7f624aeccb62 [ 2191.827631] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2191.831496] RSP: 002b:00007f62484420f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 00:00:59 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 2191.833102] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f624aeccb62 [ 2191.834752] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2191.836273] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 2191.837773] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2191.839270] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 00:00:59 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000", @ANYRES32=0x0], 0x28}}, 0x0) 00:00:59 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x1517f, 0x0, 0x0, 0x0) 00:00:59 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[], 0x28}}, 0x0) [ 2191.918063] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'. 00:01:12 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x1517f, 0x0, 0x0, 0x0) 00:01:12 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x40087602, 0x0) 00:01:12 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 63) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:01:12 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x800000, 0x0, 0x0, 0x0) 00:01:12 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[], 0x28}}, 0x0) 00:01:12 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x40086604) 00:01:12 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442463d938279ebe64569fde66bbf62f1de63b32e1c0cecc511fdd35140f15f4b8e54e39b19ebd0254988f7b17dc70f785139e5710000000000000000"], 0x28}}, 0x0) 00:01:12 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x10, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 2204.674864] FAULT_INJECTION: forcing a failure. [ 2204.674864] name failslab, interval 1, probability 0, space 0, times 0 [ 2204.677759] CPU: 1 PID: 10875 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2204.679213] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2204.680960] Call Trace: [ 2204.681523] dump_stack+0x107/0x167 [ 2204.681650] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2204.682296] should_fail.cold+0x5/0xa [ 2204.685272] ? anon_vma_clone+0xdc/0x590 [ 2204.686134] should_failslab+0x5/0x20 [ 2204.686935] kmem_cache_alloc+0x5b/0x310 [ 2204.687806] anon_vma_clone+0xdc/0x590 [ 2204.688635] __split_vma+0x17c/0x4e0 [ 2204.689430] __do_munmap+0x365/0x1260 [ 2204.690238] ? arch_get_unmapped_area+0x450/0x450 [ 2204.691247] ? lock_release+0x680/0x680 [ 2204.692092] mmap_region+0x7c8/0x1500 [ 2204.692902] do_mmap+0xcdb/0x11e0 [ 2204.693636] vm_mmap_pgoff+0x198/0x1f0 [ 2204.694451] ? randomize_page+0xb0/0xb0 [ 2204.695311] ksys_mmap_pgoff+0x41c/0x560 [ 2204.696163] ? find_mergeable_anon_vma+0x250/0x250 [ 2204.697187] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2204.698281] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2204.699388] do_syscall_64+0x33/0x40 [ 2204.700175] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2204.701252] RIP: 0033:0x7f624aeccb62 [ 2204.702028] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2204.705844] RSP: 002b:00007f62484420f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2204.706992] EXT4-fs warning (device sda): __ext4_ioctl:889: Setting inode version is not supported with metadata_csum enabled. [ 2204.707443] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f624aeccb62 [ 2204.707465] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2204.712764] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 2204.714248] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2204.715762] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 00:01:12 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[], 0x28}}, 0x0) 00:01:12 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x4020940d, 0x0) 00:01:12 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[], 0x28}}, 0x0) [ 2204.785017] EXT4-fs warning (device sda): __ext4_ioctl:889: Setting inode version is not supported with metadata_csum enabled. 00:01:12 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x10, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:01:12 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x10, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:01:12 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x800448d2, 0x0) 00:01:12 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x1000000, 0x0, 0x0, 0x0) 00:01:12 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x40086607) [ 2205.020826] EXT4-fs warning (device sda): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed [ 2205.065746] EXT4-fs warning (device sda): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed 00:01:27 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x40086602, 0x0) 00:01:27 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x28}}, 0x0) 00:01:27 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6609) 00:01:27 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x2000000, 0x0, 0x0, 0x0) 00:01:27 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 64) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:01:27 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[], 0x28}}, 0x0) 00:01:27 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x800448d3, 0x0) 00:01:27 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x10, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 2220.074104] FAULT_INJECTION: forcing a failure. [ 2220.074104] name failslab, interval 1, probability 0, space 0, times 0 [ 2220.076863] CPU: 1 PID: 10931 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2220.078365] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2220.080179] Call Trace: [ 2220.080763] dump_stack+0x107/0x167 [ 2220.081550] should_fail.cold+0x5/0xa [ 2220.082373] ? create_object.isra.0+0x3a/0xa20 [ 2220.083371] should_failslab+0x5/0x20 [ 2220.084220] kmem_cache_alloc+0x5b/0x310 [ 2220.085109] create_object.isra.0+0x3a/0xa20 [ 2220.086060] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2220.087151] kmem_cache_alloc+0x159/0x310 [ 2220.088068] anon_vma_clone+0xdc/0x590 [ 2220.088923] __split_vma+0x17c/0x4e0 [ 2220.089733] __do_munmap+0x365/0x1260 [ 2220.090550] ? arch_get_unmapped_area+0x450/0x450 [ 2220.091568] ? lock_release+0x680/0x680 [ 2220.092429] mmap_region+0x7c8/0x1500 [ 2220.093270] do_mmap+0xcdb/0x11e0 [ 2220.094018] vm_mmap_pgoff+0x198/0x1f0 [ 2220.094847] ? randomize_page+0xb0/0xb0 [ 2220.095699] ksys_mmap_pgoff+0x41c/0x560 [ 2220.096590] ? find_mergeable_anon_vma+0x250/0x250 [ 2220.097663] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2220.098790] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2220.099880] do_syscall_64+0x33/0x40 [ 2220.100681] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2220.101769] RIP: 0033:0x7f624aeccb62 [ 2220.102579] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2220.106441] RSP: 002b:00007f62484420f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2220.108069] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f624aeccb62 [ 2220.109574] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2220.111095] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 2220.112611] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2220.114113] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 00:01:27 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x40086602, 0x0) 00:01:27 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x800448d4, 0x0) 00:01:27 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x28}}, 0x0) 00:01:27 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[], 0x28}}, 0x0) 00:01:27 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x800448d5, 0x0) 00:01:28 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x40087602) 00:01:28 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 2220.431330] EXT4-fs warning (device sda): __ext4_ioctl:889: Setting inode version is not supported with metadata_csum enabled. [ 2220.455962] EXT4-fs warning (device sda): __ext4_ioctl:889: Setting inode version is not supported with metadata_csum enabled. 00:01:42 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x40086602, 0x0) 00:01:42 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x400c6615) 00:01:42 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:01:42 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x28}}, 0x0) 00:01:42 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x28}}, 0x0) 00:01:42 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x800448d7, 0x0) 00:01:42 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x2020000, 0x0, 0x0, 0x0) 00:01:42 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 65) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 2235.237217] FAULT_INJECTION: forcing a failure. [ 2235.237217] name failslab, interval 1, probability 0, space 0, times 0 [ 2235.239836] CPU: 0 PID: 10979 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2235.241318] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2235.243077] Call Trace: [ 2235.243645] dump_stack+0x107/0x167 [ 2235.244434] should_fail.cold+0x5/0xa [ 2235.245247] ? vm_area_alloc+0x1c/0x110 [ 2235.246099] should_failslab+0x5/0x20 [ 2235.246915] kmem_cache_alloc+0x5b/0x310 [ 2235.247787] vm_area_alloc+0x1c/0x110 [ 2235.248609] mmap_region+0x97e/0x1500 [ 2235.249439] ? do_mmap+0x9a4/0x11e0 [ 2235.250236] do_mmap+0xcdb/0x11e0 [ 2235.250978] vm_mmap_pgoff+0x198/0x1f0 [ 2235.251812] ? randomize_page+0xb0/0xb0 [ 2235.252681] ksys_mmap_pgoff+0x41c/0x560 [ 2235.253558] ? find_mergeable_anon_vma+0x250/0x250 [ 2235.254612] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2235.255731] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2235.256830] do_syscall_64+0x33/0x40 [ 2235.257633] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2235.258844] RIP: 0033:0x7f624aeccb62 [ 2235.259708] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2235.263619] RSP: 002b:00007f62484420f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2235.265235] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f624aeccb62 [ 2235.266761] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2235.268266] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 2235.269772] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2235.271292] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 00:01:43 executing program 1: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x800448d5, 0x0) 00:01:43 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x28}}, 0x0) 00:01:43 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442"], 0x28}}, 0x0) 00:01:43 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x800448f0, 0x0) [ 2235.358637] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 00:01:43 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:01:43 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:01:59 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x28}}, 0x0) 00:01:59 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f0000000140)='net/tcp\x00') r0 = inotify_init1(0x0) inotify_add_watch(r0, &(0x7f0000000040)='.\x00', 0x2000003) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$sock_TIOCINQ(r2, 0x541b, 0x0) ioctl$RTC_ALM_SET(r2, 0x40247007, &(0x7f0000000180)={0x16, 0x24, 0x0, 0x11, 0x6, 0x2, 0x5, 0x13, 0xfffffffffffffffe}) dup3(r1, r0, 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/timer_list\x00', 0x0, 0x0) sendmsg$AUDIT_TTY_GET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x3f8, 0x400, 0x70bd26, 0x25dfdbfd, "", [""]}, 0x10}, 0x1, 0x0, 0x0, 0x8d1}, 0x802) fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) 00:01:59 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 00:01:59 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 66) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:01:59 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x40106614) 00:01:59 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x28}}, 0x0) 00:01:59 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x80086601, 0x0) 00:01:59 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x4000000, 0x0, 0x0, 0x0) [ 2251.582480] audit: type=1400 audit(1738627319.339:133): avc: denied { watch_reads } for pid=11008 comm="syz-executor.1" path="/syzkaller-testdir000065794/syzkaller.X8tcAS/301" dev="sda" ino=16002 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=dir permissive=1 [ 2251.599995] FAULT_INJECTION: forcing a failure. [ 2251.599995] name failslab, interval 1, probability 0, space 0, times 0 [ 2251.602767] CPU: 1 PID: 11019 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2251.604248] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2251.605998] Call Trace: [ 2251.606557] dump_stack+0x107/0x167 [ 2251.607328] should_fail.cold+0x5/0xa [ 2251.608133] ? create_object.isra.0+0x3a/0xa20 [ 2251.609106] should_failslab+0x5/0x20 [ 2251.609918] kmem_cache_alloc+0x5b/0x310 [ 2251.610792] create_object.isra.0+0x3a/0xa20 [ 2251.611714] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2251.612782] kmem_cache_alloc+0x159/0x310 [ 2251.613683] vm_area_alloc+0x1c/0x110 [ 2251.614492] mmap_region+0x97e/0x1500 [ 2251.615316] do_mmap+0xcdb/0x11e0 [ 2251.616066] vm_mmap_pgoff+0x198/0x1f0 [ 2251.616886] ? randomize_page+0xb0/0xb0 [ 2251.617738] ksys_mmap_pgoff+0x41c/0x560 [ 2251.618584] ? find_mergeable_anon_vma+0x250/0x250 [ 2251.619610] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2251.620698] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2251.621803] do_syscall_64+0x33/0x40 [ 2251.622612] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2251.623700] RIP: 0033:0x7f624aeccb62 [ 2251.624492] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2251.628416] RSP: 002b:00007f62484420f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2251.630031] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f624aeccb62 [ 2251.631539] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2251.633077] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 2251.634611] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2251.636120] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 00:01:59 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x80087601, 0x0) [ 2251.638871] audit: type=1400 audit(1738627319.371:134): avc: denied { watch_reads } for pid=11008 comm="syz-executor.1" path="/syzkaller-testdir000065794/syzkaller.X8tcAS/301/file0" dev="sda" ino=16069 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file permissive=1 00:01:59 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x28}}, 0x0) 00:01:59 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff0a19ed3fc8b6bdaedfdf7871ad852e3cf29b1b1bb333abc59b665dc442"], 0x28}}, 0x0) 00:01:59 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) [ 2251.767777] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.6'. 00:01:59 executing program 1: ioctl$TIOCGSERIAL(0xffffffffffffffff, 0x541e, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=""/29}) perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x1, 0xfffd}, 0x0, 0x1, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x100000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_wakeup_irq', 0x80, 0x22) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x33}}, 0x10) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x121402) r2 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) execveat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000400), 0x0) pwritev2(r1, &(0x7f0000000280)=[{&(0x7f0000000380)="b8f54b0ed847923bd2006b94fe69ffcf5e1f117dc9f11697f36af02054676dbca24c9a7800963afb730f613d40cdc26ce6bccff1b575f0384e6c634eb06efe476395170fbe3694fa442bc0a8e634f3320084e575e013d9ac918f576d6f97800c70fb9cbb66575f309b51b4e27e70a222785ec39b28da468d4b03dea0a3a0ceef4928fbe5bb63e7c3647b4424222d9793eb9c8bde4ebfc642758b03973d772de8c81fb05ba12048f85da3c146aeb22f9399fe69e0ef541309a27369b0faea3e49b840ea64f08399bb87295fc9442db405f1eb0b6a871342b422d75552a2757c63d37620a871899cff1d5662b1e17825b496005d68cd", 0xf5}, {&(0x7f0000000740)="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", 0x1000}, {&(0x7f0000000500)="fb2e8f908ffb178025bd2612fc79be2aba6b27f27c87690e8450fee2505155265317220de52cf693cc1da8bfbde339958daf75491f8c8b79d10fcef20b1f2e08fed7b1e00c239a844e14ecf75921514cc3195207bc9f143d1fa840cd0c148857bd3cfd9723617d70701b89252801379823c10f0c991e3acfbce957c02b24583f677a3be269653d63c48ac3dd8c407ab1f12c450f32b826a35f0b65250204a9930909864cccc463d17fa20bfc17cb6309daf04bd9d43f2422247585618d6d5ea7d9a792f660925a878fbea4a1baac27fef03e6cc3ad157c", 0xd7}], 0x3, 0x9, 0x7f, 0xc) r3 = socket$nl_generic(0x10, 0x3, 0x10) flock(r2, 0x3) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001740)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="ff0200000000000000000600000008000300", @ANYRES32=r5, @ANYBLOB="48000d0001fffff9da560fbd01d4903f0e66e6859a9fdb450380fc033d656178057c7f3033640d678270addf6dc63039c999acfbafd9147b6b6e4973117e971eed94f5810b48ae5925523bbb08e15c6a98a486c48760f81e3497752897afdb7794e4a120a549641d017de5"], 0x24}}, 0x0) syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) socket$nl_xfrm(0x10, 0x3, 0x6) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0) 00:01:59 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) (fail_nth: 67) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$INCFS_IOC_FILL_BLOCKS(r4, 0x80106720, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 00:01:59 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x80108906, 0x0) 00:01:59 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x28}}, 0x0) 00:01:59 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x1) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffc}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x3) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008}, 0x4804) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x401c5820) [ 2251.867218] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 00:01:59 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x28}}, 0x0) [ 2251.915194] FAULT_INJECTION: forcing a failure. [ 2251.915194] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 2251.917897] CPU: 0 PID: 11044 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2251.919337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2251.921038] Call Trace: [ 2251.921581] dump_stack+0x107/0x167 [ 2251.922322] should_fail.cold+0x5/0xa [ 2251.923110] __alloc_pages_nodemask+0x182/0x600 [ 2251.924068] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 2251.925313] ? walk_mem_res+0x170/0x170 [ 2251.926132] alloc_pages_current+0x187/0x280 [ 2251.927030] pte_alloc_one+0x16/0x1a0 [ 2251.927828] __pte_alloc+0x1d/0x330 [ 2251.928572] remap_pfn_range_internal+0x9a3/0xf60 [ 2251.929573] ? lookup_memtype+0x5b/0x200 [ 2251.930415] ? apply_to_existing_page_range+0x40/0x40 [ 2251.931483] remap_pfn_range+0xcd/0x160 [ 2251.932299] ? remap_pfn_range_notrack+0x70/0x70 [ 2251.933276] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 2251.934343] io_uring_mmap+0x398/0x530 [ 2251.935143] mmap_file+0x5e/0xe0 [ 2251.935837] mmap_region+0xc49/0x1500 [ 2251.936645] do_mmap+0xcdb/0x11e0 [ 2251.937366] vm_mmap_pgoff+0x198/0x1f0 [ 2251.938166] ? randomize_page+0xb0/0xb0 [ 2251.938993] ksys_mmap_pgoff+0x41c/0x560 [ 2251.939826] ? find_mergeable_anon_vma+0x250/0x250 [ 2251.940831] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2251.941906] do_syscall_64+0x33/0x40 [ 2251.942667] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2251.943724] RIP: 0033:0x7f624aeccb62 [ 2251.944482] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2251.948231] RSP: 002b:00007f62484420f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2251.949785] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f624aeccb62 [ 2251.951254] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2251.952710] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 2251.954173] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2251.955625] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 00:01:59 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x80108907, 0x0) 00:01:59 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000002000e5d622fd0000000000000200000008000000dadb54868bff"], 0x28}}, 0x0) 00:01:59 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x28}}, 0x0) 00:01:59 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x56de, &(0x7f00000001c0), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r3, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) openat$bsg(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_enter(r5, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000004, 0x50, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x6000000, 0x0, 0x0, 0x0) [ 2252.040624] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 2252.117185] ------------[ cut here ]------------ [ 2252.118844] WARNING: CPU: 0 PID: 11044 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270 [ 2252.120736] Modules linked in: [ 2252.121562] CPU: 0 PID: 11044 Comm: syz-executor.5 Not tainted 5.10.233 #1 [ 2252.123558] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2252.125906] RIP: 0010:get_pat_info+0x216/0x270 [ 2252.127042] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 81 81 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 6a 81 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 f5 78 5a 00 e9 [ 2252.131636] RSP: 0018:ffff888047bff898 EFLAGS: 00010212 [ 2252.133237] RAX: 00000000000128a2 RBX: ffff888015fa7f00 RCX: ffffc9000bc41000 [ 2252.135257] RDX: 0000000000040000 RSI: ffffffff81123696 RDI: 0000000000000007 [ 2252.137102] RBP: ffff888047bff950 R08: 0000000000000000 R09: ffff888047bff820 [ 2252.142551] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028 [ 2252.145449] R13: 1ffff11008f7ff13 R14: 0000000000000000 R15: ffff888015fa7f50 [ 2252.147634] FS: 00007f6248442700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 2252.149789] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2252.151553] CR2: 00007fe5988fcd40 CR3: 0000000015d20000 CR4: 0000000000350ef0 [ 2252.153835] Call Trace: [ 2252.154755] ? __warn+0xe2/0x1f0 [ 2252.155831] ? get_pat_info+0x216/0x270 [ 2252.157095] ? report_bug+0x1c1/0x210 [ 2252.158336] ? handle_bug+0x41/0x90 [ 2252.159320] ? exc_invalid_op+0x14/0x50 [ 2252.160731] ? asm_exc_invalid_op+0x12/0x20 [ 2252.162136] ? get_pat_info+0x216/0x270 [ 2252.163240] ? get_pat_info+0x216/0x270 [ 2252.164683] ? get_pat_info+0x216/0x270 [ 2252.165831] ? pgprot_writethrough+0xc0/0xc0 [ 2252.167050] ? finish_task_switch+0x126/0x5d0 [ 2252.168580] untrack_pfn+0xdc/0x240 [ 2252.169838] ? track_pfn_insert+0x150/0x150 [ 2252.171236] ? lock_downgrade+0x6d0/0x6d0 [ 2252.172373] ? uprobe_munmap+0x1c/0x560 [ 2252.173879] unmap_single_vma+0x1bc/0x300 [ 2252.175196] zap_page_range_single+0x2ce/0x450 [ 2252.176514] ? unmap_single_vma+0x300/0x300 [ 2252.177781] ? remap_pfn_range_internal+0xc56/0xf60 [ 2252.179141] ? lookup_memtype+0x5b/0x200 [ 2252.180265] ? apply_to_existing_page_range+0x40/0x40 [ 2252.181715] remap_pfn_range+0x139/0x160 [ 2252.182746] ? remap_pfn_range_notrack+0x70/0x70 [ 2252.184035] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 2252.185504] io_uring_mmap+0x398/0x530 [ 2252.186708] mmap_file+0x5e/0xe0 [ 2252.187410] mmap_region+0xc49/0x1500 [ 2252.188524] do_mmap+0xcdb/0x11e0 [ 2252.189464] vm_mmap_pgoff+0x198/0x1f0 [ 2252.190705] ? randomize_page+0xb0/0xb0 [ 2252.191783] ksys_mmap_pgoff+0x41c/0x560 [ 2252.192875] ? find_mergeable_anon_vma+0x250/0x250 [ 2252.194160] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2252.195559] do_syscall_64+0x33/0x40 [ 2252.196438] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2252.197769] RIP: 0033:0x7f624aeccb62 [ 2252.198750] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 2252.202690] RSP: 002b:00007f62484420f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 2252.204423] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f624aeccb62 [ 2252.206004] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 0000000020ffb000 [ 2252.207572] RBP: 0000000020ffb000 R08: 0000000000000005 R09: 0000000000000000 [ 2252.209229] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 2252.210781] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffb000 [ 2252.212512] irq event stamp: 3273 [ 2252.213411] hardirqs last enabled at (3295): [] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2252.215555] hardirqs last disabled at (3312): [] sysvec_apic_timer_interrupt+0xb/0xa0 [ 2252.217592] softirqs last enabled at (1596): [] asm_call_irq_on_stack+0x12/0x20 [ 2252.219585] softirqs last disabled at (1521): [] asm_call_irq_on_stack+0x12/0x20 [ 2252.221486] ---[ end trace 4049cb1a3ac23860 ]--- VM DIAGNOSIS: 00:01:59 Registers: info registers vcpu 0 RAX=0000000000000052 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822ddd01 RDI=ffffffff879f1140 RBP=ffffffff879f1100 RSP=ffff888047bff2a8 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=0000000000000052 R13=0000000000000052 R14=ffffffff879f1100 R15=dffffc0000000000 RIP=ffffffff822ddd58 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f6248442700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe2800000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe5988fcd40 CR3=0000000015d20000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=000000000000000000000000ffffffff XMM02=7463656a6e695f31313230385f7a7973 XMM03=00007f624afb37c800007f624afb37c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffffffff85a159fb RBX=0000000000000001 RCX=ffffffff85a159fa RDX=dffffc0000000000 RSI=0000000000000000 RDI=1ffffffff0b42b3f RBP=ffff88803a3f7995 RSP=ffff88803a3f7888 R8 =ffffffff85a159ff R9 =ffff88803a3f7c98 R10=0000000000032042 R11=1ffff1100747ef19 R12=ffff88803a3f79a8 R13=ffff88803a3f7960 R14=1ffff1100747ef19 R15=ffffffff85a159fe RIP=ffffffff811076a7 RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555581426400 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe83782d630 CR3=000000003a436000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000